aboutsummaryrefslogtreecommitdiff
path: root/id/server/idserverlib/src
diff options
context:
space:
mode:
authorThomas Lenz <tlenz@iaik.tugraz.at>2016-12-13 11:52:26 +0100
committerThomas Lenz <tlenz@iaik.tugraz.at>2016-12-13 11:52:26 +0100
commit26305f997cf754fa558ef745680376b47cdd221b (patch)
tree9e696d647fde3c40784ba6f8be0e16d327a25600 /id/server/idserverlib/src
parentd3352bc9db1891c8f90f8c542eac65da64a234d3 (diff)
downloadmoa-id-spss-26305f997cf754fa558ef745680376b47cdd221b.tar.gz
moa-id-spss-26305f997cf754fa558ef745680376b47cdd221b.tar.bz2
moa-id-spss-26305f997cf754fa558ef745680376b47cdd221b.zip
minimal fix in MOA-ID 1.5.1 to use 'https.cipherSuites' parameter if it is setMOA-ID-1.5.1.1
switch to version 1.5.1.1
Diffstat (limited to 'id/server/idserverlib/src')
-rw-r--r--id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/MOAIDAuthInitializer.java21
1 files changed, 9 insertions, 12 deletions
diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/MOAIDAuthInitializer.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/MOAIDAuthInitializer.java
index 924e9d643..1aa8c79d9 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/MOAIDAuthInitializer.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/MOAIDAuthInitializer.java
@@ -24,12 +24,10 @@
package at.gv.egovernment.moa.id.auth;
-import iaik.pki.PKIException;
-import iaik.pki.jsse.IAIKX509TrustManager;
-
import java.io.IOException;
import java.security.GeneralSecurityException;
import java.util.Properties;
+import java.util.logging.Logger;
import javax.activation.CommandMap;
import javax.activation.MailcapCommandMap;
@@ -37,18 +35,15 @@ import javax.mail.Session;
import javax.net.ssl.SSLSocketFactory;
import at.gv.egovernment.moa.id.config.ConfigurationException;
+import at.gv.egovernment.moa.id.config.ConfigurationProvider;
import at.gv.egovernment.moa.id.config.ConnectionParameter;
import at.gv.egovernment.moa.id.config.auth.AuthConfigurationProvider;
import at.gv.egovernment.moa.id.iaik.config.LoggerConfigImpl;
import at.gv.egovernment.moa.id.util.AxisSecureSocketFactory;
import at.gv.egovernment.moa.id.util.MOAIDMessageProvider;
import at.gv.egovernment.moa.id.util.SSLUtils;
-import at.gv.egovernment.moa.logging.Logger;
-import at.gv.egovernment.moa.logging.LoggingContext;
-import at.gv.egovernment.moa.logging.LoggingContextManager;
-import at.gv.egovernment.moa.spss.server.config.ConfigurationProvider;
-import at.gv.egovernment.moa.spss.server.iaik.config.IaikConfigurator;
-import at.gv.egovernment.moa.util.Constants;
+import iaik.pki.PKIException;
+import iaik.pki.jsse.IAIKX509TrustManager;
/**
* Web application initializer
@@ -85,9 +80,11 @@ public class MOAIDAuthInitializer {
Session session = Session.getDefaultInstance(props, null);
// Restricts TLS cipher suites
- System.setProperty(
- "https.cipherSuites",
- "SSL_RSA_WITH_RC4_128_SHA,SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_3DES_EDE_CBC_SHA");
+ if ((System.getProperty("https.cipherSuites") == null) ||
+ System.getProperty("https.cipherSuites").isEmpty() )
+ System.setProperty(
+ "https.cipherSuites",
+ "SSL_RSA_WITH_RC4_128_SHA,SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_3DES_EDE_CBC_SHA");
// load some jsse classes so that the integrity of the jars can be
// verified
// before the iaik jce is installed as the security provider
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-06 02:57:48 +0000