spiffe
/
java-spiffe
mirror of https://github.com/spiffe/java-spiffe.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Java library for SPIFFE support
69 Commits 8 Branches 22 Tags 1.9 MiB
Java 99.9%
Go to file
Max Lambrecht 219a2e2e71 Refactoring SSL Context factory. Refactoring WorkloadAPIClient and X509Source 
Signed-off-by: Max Lambrecht <maxlambrecht@gmail.com>
 		2020-04-22 10:01:55 -03:00
gradle/wrapper [WIP]-Define v2 interface, refactor in modules 2020-04-10 14:21:27 -03:00
java-spiffe-core Refactoring SSL Context factory. Refactoring WorkloadAPIClient and X509Source 2020-04-22 10:01:55 -03:00
java-spiffe-helper Refactoring SSL Context factory. Refactoring WorkloadAPIClient and X509Source 2020-04-22 10:01:55 -03:00
java-spiffe-provider Refactoring SSL Context factory. Refactoring WorkloadAPIClient and X509Source 2020-04-22 10:01:55 -03:00
testdata Changing return value from Optional to Result. Other refactors. Improving comments. 2020-04-20 10:56:36 -03:00
.gitignore First commit 2018-05-28 12:39:13 -03:00
LICENSE Adding LICENSE 2018-08-22 10:53:38 -03:00
README.md Changing return value from Optional to Result. Other refactors. Improving comments. 2020-04-20 10:56:36 -03:00
build.gradle Refactoring Results in multiple methods. Refactoring the X509Source config. 2020-04-21 13:01:26 -03:00
gradlew First commit 2018-05-28 12:39:13 -03:00
gradlew.bat First commit 2018-05-28 12:39:13 -03:00
settings.gradle [WIP]-Define v2 interface, refactor in modules 2020-04-10 14:21:27 -03:00

README.md

JAVA-SPIFFE library

Overview

The JAVA-SPIFFE library provides functionality to interact with the Workload API to fetch X509 and JWT SVIDs and Bundles, and a Java Security Provider implementation to be plugged into the Java Security Interface plumbing. This is essentially a X509-SVID based KeyStore and TrustStore implementation that handles the certificates in memory and receives the updates asynchronously from the Workload API. The KeyStore handles the Certificate chain and Private Key to prove identity in a TLS connection, and the TrustStore handles the trusted bundles (supporting federated bundles) and performs peer's certificate and SPIFFE ID verification.

This library is composed of three modules:

java-spiffe-core: core functionality to interact with the Workload API.

java-spiffe-provider: Java Provider implementation.

java-spiffe-helper: Helper to store X509-SVID Certificates in a Java Keystore in disk.

Build the JARs

 $ ./gradlew build
 
 BUILD SUCCESSFUL

jar files are placed in build/libs in each module.