|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||
java.lang.Objectorg.aselect.authspserver.authsp.pki.PKIManager
public class PKIManager
The PKI Manager.
Description:
Handles all the PKI functionality of the PKI AuthSP
Concurrency issues:
None
| Field Summary | |
|---|---|
static java.lang.String |
MODULE
The name of this module, that is used in the system logging. |
| Constructor Summary | |
|---|---|
PKIManager()
|
|
| Method Summary | |
|---|---|
void |
destroy()
Destroy all running threads |
java.util.Hashtable |
getTrustedCACertificate(java.security.cert.X509Certificate oCert)
Looks up the certifcate and alias of the CA for a client certificate. |
void |
init(java.lang.Object oConfig,
AuthSPSystemLogger oSystemLogger)
Initializes the PKI Manager. |
boolean |
isClientCertRevoked(java.lang.String sCaAlias,
java.security.cert.X509Certificate oClientCert)
Checks if a certificate is revoked. |
void |
validateCertificateDate(java.security.cert.X509Certificate oCert)
Checks if the provided certificate is valid. |
boolean |
validateCertificateIsSignedByCA(java.security.cert.Certificate oClientCert,
java.security.cert.Certificate oCaCert)
Validates if the provided client certificate is signed by the provided CA cert. |
boolean |
validateCrl(java.security.cert.X509CRL crl,
java.security.cert.X509Certificate crlIssuerCert)
Validates if the provided CRL is signed by the provided Issuer. |
| Methods inherited from class java.lang.Object |
|---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
| Field Detail |
|---|
public static final java.lang.String MODULE
| Constructor Detail |
|---|
public PKIManager()
| Method Detail |
|---|
public void init(java.lang.Object oConfig,
AuthSPSystemLogger oSystemLogger)
throws ASelectException
oConfig - necessary configurationoSystemLogger - the systemlogger
ASelectException - if something goes wrong during init.public void destroy()
public java.util.Hashtable getTrustedCACertificate(java.security.cert.X509Certificate oCert)
throws ASelectException
oCert - the client certificate
ASelectException
public boolean validateCertificateIsSignedByCA(java.security.cert.Certificate oClientCert,
java.security.cert.Certificate oCaCert)
oClientCert - Client certificateoCaCert - CA certificate
public void validateCertificateDate(java.security.cert.X509Certificate oCert)
throws ASelectException
oCert -
ASelectException - if cert is not yet valid or expired.
public boolean validateCrl(java.security.cert.X509CRL crl,
java.security.cert.X509Certificate crlIssuerCert)
crl - The Certificate Revocation ListcrlIssuerCert - the CRL Issuer
public boolean isClientCertRevoked(java.lang.String sCaAlias,
java.security.cert.X509Certificate oClientCert)
throws ASelectException
sCaAlias - The Alias of the CA.oClientCert - The certificate to be checked
ASelectException
|
||||||||||
| PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
| SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD | |||||||||