Package google.registry.networking.module

Class CertificateSupplierModule

java.lang.Object

google.registry.networking.module.CertificateSupplierModule

@Module
public final class CertificateSupplierModule
extends Object

Dagger module that provides bindings needed to inject a certificate chain the corresponding private key.

There are several ways (CertificateSupplierModule.Modes) that the certificate/key can be provided (explained later), and the user of this module needs to provide the binding to the CertificateSupplierModule.Mode in some other module to the component.

The production certificates and private key are stored in a .pem file that is encrypted by Cloud KMS. The .pem file can be generated by concatenating the .crt certificate files on the chain and the .key private file.

The production certificates in the .pem file must be stored in order, where the next certificate's subject is the previous certificate's issuer.

When running the proxy locally or in test, a self signed certificate is used.

See Also:

• Cloud Key Management Service

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static enum	CertificateSupplierModule.Mode

Method Summary

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait