JCEAccessor (PingFederate Server SDK)

java.lang.Object
- com.pingidentity.access.JCEAccessor

```
public class JCEAccessor
extends Object
```
Allows access to the JCE implementation used by PingFederate. There are 3 JCE implementations used by PingFederate, depending upon the configuration.
They are:
1. The default SUN implementation.
2. The Luna implementation, used in conjunction with one of the SafeNet FIPS compatible devices.
3. The Thales (nCipher) implementation.

Constructor Summary

Constructors
Constructor and Description

JCEAccessor()
Default constructor.

Constructors
Constructor and Description
`JCEAccessor()` Default constructor.

Method Summary

All Methods Instance Methods Concrete Methods Deprecated Methods
Modifier and Type	Method and Description
`boolean`	`allowPrivateKeyExport()` Tells whether it is possible for the JCE manager to export private keys.
`String`	`getDefaultAlgorithm()` Deprecated. No replacement.
`Cipher`	`getDefaultDecryptionCipher()` Deprecated. No replacement.
`Cipher`	`getDefaultEncryptionCipher()` Deprecated. No replacement.
`SecretKeySpec`	`getDefaultSecretKeySpec()` Deprecated. No replacement.
`boolean`	`inLunaMode()` Deprecated. As of release 6.11, use `isFIPSCompliant()`.
`boolean`	`isFIPSCompliant()` Tells whether the underlying JCE manager is FIPS compliant.
`byte[]`	`obfuscate(byte[] clearBytes)` Deprecated. No replacement.
`byte[]`	`unobfuscate(byte[] obfuscatedBytes)` Deprecated. No replacement.

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - JCEAccessor
```
public JCEAccessor()
```
    Default constructor.
- Method Detail
  - inLunaMode
```
@Deprecated
public boolean inLunaMode()
```
    Deprecated. As of release 6.11, use isFIPSCompliant().
  - isFIPSCompliant
```
public boolean isFIPSCompliant()
```
    Tells whether the underlying JCE manager is FIPS compliant.
    
    Returns:
    
    true if the JCE manager used by PingFederate is FIPS compliant. false otherwise.
  - allowPrivateKeyExport
```
public boolean allowPrivateKeyExport()
```
    Tells whether it is possible for the JCE manager to export private keys. By default, the SUN implementation allows private keys to be exported. Other implementations may not allow private keys to be exported.
    
    Returns:
    
    true if private keys can be exported, false otherwise.
  - getDefaultEncryptionCipher
```
@Deprecated
public Cipher getDefaultEncryptionCipher()
```
    Deprecated. No replacement.
    
    This provides access to the default encryption cipher used by PingFederate. If PingFederate is operating in default configuration, this will either be Blowfish for the default algorithm, or AES for the other JCE manager implementations.
    
    Returns:
    
    A Cipher object initialized to use the default algorithm.
    
    Throws:
    
    com.pingidentity.common.util.ObfuscationException
  - getDefaultDecryptionCipher
```
@Deprecated
public Cipher getDefaultDecryptionCipher()
```
    Deprecated. No replacement.
    
    Provides access to the default decryption cipher used by PingFederate. If PingFederate is operating in default configuration, this will either be Blowfish for the default algorithm, or AES for the other JCE manager implementations.
    
    Returns:
    
    A Cipher object initialized to use the default algorithm.
    
    Throws:
    
    com.pingidentity.common.util.ObfuscationException
  - getDefaultSecretKeySpec
```
@Deprecated
public SecretKeySpec getDefaultSecretKeySpec()
```
    Deprecated. No replacement.
    
    Provides a SecretKeySpec object that was initialized using SHA1PRNG and the default algorithm. The SecretKeySpec is used when creating the appropriate Cipher object.
    
    Returns:
    
    the SecretKeySpec object.
    
    Throws:
    
    com.pingidentity.common.util.ObfuscationException
  - getDefaultAlgorithm
```
@Deprecated
public String getDefaultAlgorithm()
```
    Deprecated. No replacement.
    
    Gets the appropriate algorithm as a string. This will either be Blowfish for the default algorithm, or AES for the other JCE manager implementations.
    
    Returns:
    
    Blowfish or AES, depending on which JCE manager implementation is used.
  - obfuscate
```
@Deprecated
public byte[] obfuscate(byte[] clearBytes)
```
    Deprecated. No replacement.
    
    Helper method that obfuscates the incoming bytes using getDefaultAlgorithm(), getDefaultSecretKeySpec() and getDefaultEncryptionCipher().
    
    Parameters:
    
    clearBytes - The bytes to obfuscate using the default algorithm.
    
    Returns:
    
    The obfuscated bytes.
    
    Throws:
    
    com.pingidentity.common.util.ObfuscationException
  - unobfuscate
```
@Deprecated
public byte[] unobfuscate(byte[] obfuscatedBytes)
```
    Deprecated. No replacement.
    
    Helper method that unobfuscates the incoming bytes using getDefaultAlgorithm(), getDefaultSecretKeySpec() and getDefaultDecryptionCipher().
    
    Parameters:
    
    obfuscatedBytes - The obfuscated bytes that need to be unobfuscated.
    
    Returns:
    
    The unobfuscated bytes.
    
    Throws:
    
    com.pingidentity.common.util.ObfuscationException

Class JCEAccessor

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

JCEAccessor

Method Detail

inLunaMode

isFIPSCompliant

allowPrivateKeyExport

getDefaultEncryptionCipher

getDefaultDecryptionCipher

getDefaultSecretKeySpec

getDefaultAlgorithm

obfuscate

unobfuscate