Class SignedPushConfig

java.lang.Object
org.eclipse.jgit.transport.SignedPushConfig

public class SignedPushConfig extends Object
Configuration for server-side signed push verification.
Since:
4.1
  • Field Details

  • Constructor Details

    • SignedPushConfig

      public SignedPushConfig()
      Create a new config with default values disabling push verification.
    • SignedPushConfig

      SignedPushConfig(Config cfg)
  • Method Details

    • setCertNonceSeed

      public void setCertNonceSeed(String seed)
      Set the seed used by the nonce verifier.

      Setting this to a non-null value enables push certificate verification using the default HMACSHA1NonceGenerator implementation, if a different implementation was not set using setNonceGenerator(NonceGenerator).

      Parameters:
      seed - new seed value.
    • getCertNonceSeed

      public String getCertNonceSeed()
      Get the configured seed.
      Returns:
      the configured seed.
    • setCertNonceSlopLimit

      public void setCertNonceSlopLimit(int limit)
      Set the nonce slop limit.

      Old but valid nonces within this limit will be accepted.

      Parameters:
      limit - new limit in seconds.
    • getCertNonceSlopLimit

      public int getCertNonceSlopLimit()
      Get the configured nonce slop limit.
      Returns:
      the configured nonce slop limit.
    • setNonceGenerator

      public void setNonceGenerator(NonceGenerator generator)
      Set the NonceGenerator used for signed pushes.

      Setting this to a non-null value enables push certificate verification. If this method is called, this implementation will be used instead of the default HMACSHA1NonceGenerator even if setCertNonceSeed(String) was called.

      Parameters:
      generator - new nonce generator.
    • getNonceGenerator

      public NonceGenerator getNonceGenerator()
      Get the NonceGenerator used for signed pushes.

      If setNonceGenerator(NonceGenerator) was used to set a non-null implementation, that will be returned. If no custom implementation was set but setCertNonceSeed(String) was called, returns a newly-created HMACSHA1NonceGenerator.

      Returns:
      the configured nonce generator.