org.openoces.ooapi.cert
Class OcesCertificate
java.lang.Object
org.openoces.ooapi.cert.OcesCertificate
- Direct Known Subclasses:
- EmployeeOcesCertificate, OrganizationalOcesCertificate, PersonalOcesCertificate
- public abstract class OcesCertificate
- extends java.lang.Object
This class is a high-level representation of a OCES certificate
- Author:
- Carsten Raskgaard
|
Constructor Summary |
OcesCertificate(java.security.cert.X509Certificate encapsulatedCert)
|
| Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
encapsulatedCert
protected java.security.cert.X509Certificate encapsulatedCert
parsedSubjectDN
protected org.bouncycastle.asn1.x509.X509Name parsedSubjectDN
OcesCertificate
public OcesCertificate(java.security.cert.X509Certificate encapsulatedCert)
canSignOCSPRequests
public boolean canSignOCSPRequests()
throws InternalException
- Return whether the extended keyusage contains the oid 1.3.6.1.5.5.7.3.9 indicating
that the certificate can be used to sign OCSP requests
Reference http://www.ietf.org/rfc/rfc3280.txt
- Returns:
- whether the certificate can be used to sign OCSP requests
- Throws:
InternalException - in case of any expected error situation
extractCRLDistributionPoints
protected void extractCRLDistributionPoints()
getEncapsulatedCertificate
public java.security.cert.X509Certificate getEncapsulatedCertificate()
getPartitionedCRLDistributionPoint
public java.lang.String getPartitionedCRLDistributionPoint()
getCRLDistributionPoint
public java.lang.String getCRLDistributionPoint()
getSubjectEmail
public java.lang.String getSubjectEmail()
throws InternalException
- Returns the e-mail of the subject contained in the certificate
- Returns:
- e-mail address or null is no e-mail is included in the certificate
- Throws:
InternalException - certificate parsing failed
getOcesId
public abstract OcesId getOcesId()
throws NonOcesCertificateException
- Throws:
NonOcesCertificateException
getSubjectCN
public java.lang.String getSubjectCN()
throws NonOcesCertificateException
- Returns the name of the subject
- Returns:
- name of the identity to which the OCES certificate has been issued
- Throws:
NonOcesCertificateException - no common name was found
getParsedSubjectDN
protected org.bouncycastle.asn1.x509.X509Name getParsedSubjectDN()
verify
public void verify()
throws InternalException,
SignatureVerificationException,
CertificateHasExpiredException,
CertificateIsNotYetValidException,
CRLExpiredException,
CRLNotYetValidException,
CertificateRevokedException
- Throws:
InternalException
SignatureVerificationException
CertificateHasExpiredException
CertificateIsNotYetValidException
CRLExpiredException
CRLNotYetValidException
CertificateRevokedException
verify
public void verify(java.util.Date date)
throws InternalException,
SignatureVerificationException,
CertificateHasExpiredException,
CertificateIsNotYetValidException,
CRLExpiredException,
CRLNotYetValidException,
CertificateRevokedException
- Throws:
InternalException
SignatureVerificationException
CertificateHasExpiredException
CertificateIsNotYetValidException
CRLExpiredException
CRLNotYetValidException
CertificateRevokedException