Change the client configuration so that it can optionally take an

magnayn · magnayn · commit 138b11ef91c0 · 2014-12-24T09:57:25.000Z
SSLConfig.

Signed-off-by: Nigel Magnay &lt;nigel.magnay@gmail.com&gt;
diff --git a/src/main/java/com/github/dockerjava/core/DockerClientConfig.java b/src/main/java/com/github/dockerjava/core/DockerClientConfig.java
@@ -6,11 +6,12 @@
 import java.io.File;
 import java.io.FileInputStream;
 import java.io.IOException;
+import java.io.Serializable;
 import java.net.URI;
 import java.util.Map;
 import java.util.Properties;
 
-public class DockerClientConfig {
+public class DockerClientConfig implements Serializable {
     private static final String DOCKER_HOST_PROPERTY = "DOCKER_HOST";
     private static final String DOCKER_CERT_PATH_PROPERTY = "DOCKER_CERT_PATH";
     private static final String DOCKER_IO_URL_PROPERTY = "docker.io.url";
@@ -41,21 +42,22 @@ public class DockerClientConfig {
             .build();
     private static final String DOCKER_IO_PROPERTIES_PROPERTY = "docker.io.properties";
     private final URI uri;
-    private final String version, username, password, email, serverAddress, dockerCertPath, dockerCfgPath;
+    private final String version, username, password, email, serverAddress, dockerCfgPath;
     private final Integer readTimeout;
     private final boolean loggingFilterEnabled;
+    private final SSLConfig sslConfig;
 
-    DockerClientConfig(URI uri, String version, String username, String password, String email, String serverAddress, String dockerCertPath, String dockerCfgPath, Integer readTimeout, boolean loggingFilterEnabled) {
+    DockerClientConfig(URI uri, String version, String username, String password, String email, String serverAddress, String dockerCfgPath, Integer readTimeout, boolean loggingFilterEnabled, SSLConfig sslConfig) {
         this.uri = uri;
         this.version = version;
         this.username = username;
         this.password = password;
         this.email = email;
         this.serverAddress = serverAddress;
-        this.dockerCertPath = dockerCertPath;
         this.dockerCfgPath = dockerCfgPath;
         this.readTimeout = readTimeout;
         this.loggingFilterEnabled = loggingFilterEnabled;
+        this.sslConfig = sslConfig;
     }
 
     private static Properties loadIncludedDockerProperties(Properties systemProperties) {
@@ -212,23 +214,23 @@ public boolean isLoggingFilterEnabled() {
         return loggingFilterEnabled;
     }
 
-    public String getDockerCertPath() {
-        return dockerCertPath;
+    public SSLConfig getSslConfig() {
+      return sslConfig;
     }
 
     public String getDockerCfgPath() {
         return dockerCfgPath;
     }
 
-    @Override
+  @Override
     public boolean equals(Object o) {
         if (this == o) return true;
         if (o == null || getClass() != o.getClass()) return false;
 
         DockerClientConfig that = (DockerClientConfig) o;
 
         if (loggingFilterEnabled != that.loggingFilterEnabled) return false;
-        if (dockerCertPath != null ? !dockerCertPath.equals(that.dockerCertPath) : that.dockerCertPath != null)
+        if (sslConfig != null ? !sslConfig.equals(that.sslConfig) : that.sslConfig != null)
             return false;
         if (dockerCfgPath != null ? !dockerCfgPath.equals(that.dockerCfgPath) : that.dockerCfgPath != null)
             return false;
@@ -252,8 +254,8 @@ public int hashCode() {
         result = 31 * result + (password != null ? password.hashCode() : 0);
         result = 31 * result + (email != null ? email.hashCode() : 0);
         result = 31 * result + (serverAddress != null ? serverAddress.hashCode() : 0);
-        result = 31 * result + (dockerCertPath != null ? dockerCertPath.hashCode() : 0);
         result = 31 * result + (dockerCfgPath != null ? dockerCfgPath.hashCode() : 0);
+        result = 31 * result + (sslConfig != null ? sslConfig.hashCode() : 0);
         result = 31 * result + (readTimeout != null ? readTimeout.hashCode() : 0);
         result = 31 * result + (loggingFilterEnabled ? 1 : 0);
         return result;
@@ -268,18 +270,19 @@ public String toString() {
                 ", password='" + password + '\'' +
                 ", email='" + email + '\'' +
                 ", serverAddress='" + serverAddress + '\'' +
-                ", dockerCertPath='" + dockerCertPath + '\'' +
                 ", dockerCfgPath='" + dockerCfgPath + '\'' +
+                ", sslConfig='" + sslConfig + '\'' +
                 ", readTimeout=" + readTimeout +
                 ", loggingFilterEnabled=" + loggingFilterEnabled +
                 '}';
     }
 
     public static class DockerClientConfigBuilder {
         private URI uri;
-        private String version, username, password, email, serverAddress, dockerCertPath, dockerCfgPath;
+        private String version, username, password, email, serverAddress, dockerCfgPath;
         private Integer readTimeout;
         private boolean loggingFilterEnabled;
+        private SSLConfig sslConfig;
 
         /**
          * This will set all fields in the builder to those contained in the Properties object. The Properties object
@@ -342,7 +345,7 @@ public final DockerClientConfigBuilder withLoggingFilter(boolean loggingFilterEn
         }
 
         public final DockerClientConfigBuilder withDockerCertPath(String dockerCertPath) {
-            this.dockerCertPath = dockerCertPath;
+            this.sslConfig = new LocalDirectorySSLConfig(dockerCertPath);
             return this;
         }
 
@@ -352,6 +355,11 @@ public final DockerClientConfigBuilder withDockerCfgPath(String dockerCfgPath) {
         }
 
 
+        public final DockerClientConfigBuilder withSSLConfig(SSLConfig config) {
+            this.sslConfig = config;
+            return this;
+        }
+
         public DockerClientConfig build() {
             return new DockerClientConfig(
                     uri,
@@ -360,10 +368,10 @@ public DockerClientConfig build() {
                     password,
                     email,
                     serverAddress,
-                    dockerCertPath,
                     dockerCfgPath,
                     readTimeout,
-                    loggingFilterEnabled
+                    loggingFilterEnabled,
+                    sslConfig
             );
         }
     }
diff --git a/src/main/java/com/github/dockerjava/jaxrs/DockerCmdExecFactoryImpl.java b/src/main/java/com/github/dockerjava/jaxrs/DockerCmdExecFactoryImpl.java
@@ -52,43 +52,16 @@ public void init(DockerClientConfig dockerClientConfig) {
 
         ClientBuilder clientBuilder = ClientBuilder.newBuilder().withConfig(clientConfig);
 
-        String dockerCertPath = dockerClientConfig.getDockerCertPath();
-
-        if (dockerCertPath != null) {
-            boolean certificatesExist = CertificateUtils.verifyCertificatesExist(dockerCertPath);
-
-            if (certificatesExist) {
-
-                try {
-
-                    Security.addProvider(new BouncyCastleProvider());
-
-                    KeyStore keyStore = CertificateUtils.createKeyStore(dockerCertPath);
-                    KeyStore trustStore = CertificateUtils.createTrustStore(dockerCertPath);
-
-                    // properties acrobatics not needed for java > 1.6
-                    String httpProtocols = System.getProperty("https.protocols");
-                    System.setProperty("https.protocols", "TLSv1");
-                    SslConfigurator sslConfig = SslConfigurator.newInstance(true);
-                    if (httpProtocols != null) System.setProperty("https.protocols", httpProtocols);
-
-                    sslConfig.keyStore(keyStore);
-                    sslConfig.keyStorePassword("docker");
-                    sslConfig.trustStore(trustStore);
-
-                    SSLContext sslContext = sslConfig.createSSLContext();
-
-
-                    clientBuilder.sslContext(sslContext);
-
-                } catch (Exception e) {
-                    throw new DockerClientException(e.getMessage(), e);
-                }
-
-            }
+        try {
+            SSLContext ssl = dockerClientConfig.getSslConfig().getSSLContext();
 
+            if (ssl != null)
+                clientBuilder.sslContext(ssl);
+        } catch(Exception ex) {
+            throw new DockerClientException("Error in SSL Configuration", ex);
         }
 
+
         client = clientBuilder.build();
 
         WebTarget webResource = client.target(dockerClientConfig.getUri());
diff --git a/src/test/java/com/github/dockerjava/core/DockerClientConfigTest.java b/src/test/java/com/github/dockerjava/core/DockerClientConfigTest.java
@@ -16,12 +16,12 @@ public class DockerClientConfigTest {
     public static final DockerClientConfig EXAMPLE_CONFIG = newExampleConfig();
 
     private static DockerClientConfig newExampleConfig() {
-        return new DockerClientConfig(URI.create("http://foo"), "bar", "baz", "qux", "blam", "wham", "flim", "flam", 877, false);
+        return new DockerClientConfig(URI.create("http://foo"), "bar", "baz", "qux", "blam", "wham", "flam", 877, false, new LocalDirectorySSLConfig("flim"));
     }
 
     @Test
     public void string() throws Exception {
-        assertEquals("DockerClientConfig{uri=http://foo, version='bar', username='baz', password='qux', email='blam', serverAddress='wham', dockerCertPath='flim', dockerCfgPath='flam', readTimeout=877, loggingFilterEnabled=false}",
+        assertEquals("DockerClientConfig{uri=http://foo, version='bar', username='baz', password='qux', email='blam', serverAddress='wham', dockerCfgPath='flam', sslConfig='LocalDirectorySSLConfig{dockerCertPath=flim}', readTimeout=877, loggingFilterEnabled=false}",
                 EXAMPLE_CONFIG.toString());
     }
 
@@ -104,8 +104,8 @@ public void defaults() throws Exception {
         assertEquals(config.getServerAddress(), AuthConfig.DEFAULT_SERVER_ADDRESS);
         assertEquals(config.getVersion(), null);
         assertEquals(config.isLoggingFilterEnabled(), true);
-        assertEquals(config.getDockerCertPath(), "someHomeDir/.docker");
         assertEquals(config.getDockerCfgPath(), "someHomeDir/.dockercfg");
+        assertEquals( ((LocalDirectorySSLConfig)config.getSslConfig()).getDockerCertPath(), "someHomeDir/.docker");
     }
 
     @Test
diff --git a/src/test/java/com/github/dockerjava/core/DockerClientImplTest.java b/src/test/java/com/github/dockerjava/core/DockerClientImplTest.java
@@ -10,7 +10,7 @@ public class DockerClientImplTest {
     @Test
     public void configuredInstanceAuthConfig() throws Exception {
         // given a config with null serverAddress
-        DockerClientConfig dockerClientConfig = new DockerClientConfig(null, null, "", "", "", null, null, null, 0, false);
+        DockerClientConfig dockerClientConfig = new DockerClientConfig(null, null, "", "", "", null, null,  0, false, null);
         DockerClientImpl dockerClient = DockerClientImpl.getInstance(dockerClientConfig);
 
         // when we get the auth config
