Table of Contents
This chapter explains user-cert-map.xmlwhich
defines the information of the certificates contained in the keystore that
will be mapped to the user.
XML schema file:
JEUS_HOME/lib/schemas/jeus/user-cert-map.xsd
XML references are configured in the following format.
XML Schema/XML Tree: Summarizes all the tags of XML configuration file. Each node is defined in the following format.
Tag reference enables quick search for tags. Each tag is attached with index numbers ( ex: (11) ). Tags are explained with this number in tag reference.
The XML tag name defined in the XML schema is expressed in the format of <tag name>.
Tags are set with cardinality defined in XML schema.
“?” is for 0 or 1 element, “+” is for 1 or more elements, “*” is for 0 or more elements, (no symbol) is for exactly one element
Several tags have "P" character, meaning that they are the tags related to performance. These tags are used to tune the setting.
Element Reference: Explains XML tags in the tree.
Dynamic: Allowed to change the configuration dynamically.
Non-Dynamic: Not allowed to change the configuration dynamically. This is expressed only for the special case to comment out.
Description: A short description for tags.
Value Description: The value and type.
Value Type: Data type of the value. (ex: String)
Value Type Description: Description for the data type of the value.
Default Value: The value to be used by default when the XML is not used.
Defined Value: The default value.
Example: The XML tag example.
Performance Recommendation: The value recommended to improve performance.
Child Elements:The tags contained in its own tag element.
(1) <user-cert-map>
(2) <user-cert> *
(3) <username>
(4) <alias>
(5) <keypassword> ?
(6) <secretkey> ?
(7) <keyname>
(8) <keyalgorithm>
(9) <keyvalue>
(1)
<user-cert-map>
| |
| Description | Information about the mapping of users to certificates in the keystore. |
| Value Type | UserCertMapType |
| Child Elements |
(3)
|
(2)
<
user-cert-map
>
<user-cert>
| |
| Description | Maps users to certificates. |
| Value Type | UserCertType |
| Child Elements |
(4)
(5)
(6)
(7)
|
(3)
<
user-cert-map
><
user-cert
>
<username>
| |
| Description | User name of the certificate within the keystore. This is the primary identification and must be unique. |
| Value Type | token |
(4)
<
user-cert-map
><
user-cert
>
<alias>
| |
| Description | Alias of the certificate within the keystore. |
| Value Type | token |
(5)
<
user-cert-map
><
user-cert
>
<keypassword>
| |
| Description | Key password to retrieve the private key of the certificate within the keystore. To save it in an encrypted form, use the format {algorithm}ciphertext. For example, {DES}FQrLbQ/D8O1lDVS71L28rw== |
| Value Type | token |
(6)
<
user-cert-map
><
user-cert
>
<secretkey>
| |
| Description | Private key. |
| Value Type | SecretKeyType |
| Child Elements |
(8)
(9)
(10)
|
(7)
<
user-cert-map
><
user-cert
><
secretkey
>
<keyname>
| |
| Description | Private key name. |
| Value Type | token |
(8)
<
user-cert-map
><
user-cert
><
secretkey
>
<keyalgorithm>
| |
| Description | Private key algorithm. |
| Value Type | token |
(9)
<
user-cert-map
><
user-cert
><
secretkey
>
<keyvalue>
| |
| Description | Private key value in Base64 format. |
| Value Type | token |
[Example 16.1] Example File
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<user-cert-map xmlns="http://www.tmaxsoft.com/xml/ns/jeus">
<user-cert>
<username>choco</username>
<alias>chococa</alias>
<keypassword>changeit</keypassword>
<secretkey>
<keyname>testkeypass</keyname>
<keyalgorithm>AES</keyalgorithm>
<keyvalue>bjhTUjJvSXRTOGlkVEdlNHJnM2N3VnljSDZXV0JkYz0=</keyvalue>
</secretkey>
</user-cert>
</user-cert-map>