Component org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManagerImpl

In bundle org.nuxeo.ecm.platform.oauth

Documentation

Component and Service to manage Asymetric key pair (RSA) used in OAUth signing process

Implementation

Class: org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManagerImpl

Services

org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManager

Extension Points

serverKeyPair

XML Source

<?xml version="1.0"?>
<component name="org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManagerImpl">
  <implementation
          class="org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManagerImpl" />
  <documentation>
    Component and Service to manage Asymetric key pair (RSA) used in OAUth signing process

    @author Thierry Delprat (td@nuxeo.com)
  </documentation>

  <service>
        <provide interface="org.nuxeo.ecm.platform.oauth.keys.OAuthServerKeyManager" />
  </service>


 <extension-point name="serverKeyPair">

    <documentation>

      Extension allowing to contribute a RSA Key pair

      For instance :
      <code>

         <serverKeyPair>
            <privateKeyName>nuxeo</privateKeyName>
            <privateKey>-----BEGIN PRIVATE KEY-----YOUR_KEY_HERE-----END PRIVATE KEY-----</privateKey>
            <publicCertificate>-----BEGIN CERTIFICATE-----YOUR_KEY_HERE-----END CERTIFICATE-----</publicCertificate>
        </serverKeyPair>

      </code>

      You should contribute your own key pair for your Nuxeo server.
      You can use OpenSSL to generate this key pair :

      <code>
        openssl req -newkey rsa:1024 -days 365 -nodes -x509 -keyout testkey.pem -out testkey.pem -subj '/CN=mytestkey'
        openssl pkcs8 -in testkey.pem -out oauthkey.pem -topk8 -nocrypt -outform PEM
      </code>

    </documentation>

    <object class="org.nuxeo.ecm.platform.oauth.keys.ServerKeyDescriptor" />

  </extension-point>
</component>