|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.aselect.authspserver.authsp.pki.PKIManager
public class PKIManager
The PKI Manager.
Description:
Handles all the PKI functionality of the PKI AuthSP
Concurrency issues:
None
Field Summary | |
---|---|
static java.lang.String |
MODULE
The name of this module, that is used in the system logging. |
Constructor Summary | |
---|---|
PKIManager()
|
Method Summary | |
---|---|
void |
destroy()
Destroy all running threads |
java.util.Hashtable |
getTrustedCACertificate(java.security.cert.X509Certificate oCert)
Looks up the certifcate and alias of the CA for a client certificate. |
void |
init(java.lang.Object oConfig,
AuthSPSystemLogger oSystemLogger)
Initializes the PKI Manager. |
boolean |
isClientCertRevoked(java.lang.String sCaAlias,
java.security.cert.X509Certificate oClientCert)
Checks if a certificate is revoked. |
void |
validateCertificateDate(java.security.cert.X509Certificate oCert)
Checks if the provided certificate is valid. |
boolean |
validateCertificateIsSignedByCA(java.security.cert.Certificate oClientCert,
java.security.cert.Certificate oCaCert)
Validates if the provided client certificate is signed by the provided CA cert. |
boolean |
validateCrl(java.security.cert.X509CRL crl,
java.security.cert.X509Certificate crlIssuerCert)
Validates if the provided CRL is signed by the provided Issuer. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static final java.lang.String MODULE
Constructor Detail |
---|
public PKIManager()
Method Detail |
---|
public void init(java.lang.Object oConfig, AuthSPSystemLogger oSystemLogger) throws ASelectException
oConfig
- necessary configurationoSystemLogger
- the systemlogger
ASelectException
- if something goes wrong during init.public void destroy()
public java.util.Hashtable getTrustedCACertificate(java.security.cert.X509Certificate oCert) throws ASelectException
oCert
- the client certificate
ASelectException
public boolean validateCertificateIsSignedByCA(java.security.cert.Certificate oClientCert, java.security.cert.Certificate oCaCert)
oClientCert
- Client certificateoCaCert
- CA certificate
public void validateCertificateDate(java.security.cert.X509Certificate oCert) throws ASelectException
oCert
-
ASelectException
- if cert is not yet valid or expired.public boolean validateCrl(java.security.cert.X509CRL crl, java.security.cert.X509Certificate crlIssuerCert)
crl
- The Certificate Revocation ListcrlIssuerCert
- the CRL Issuer
public boolean isClientCertRevoked(java.lang.String sCaAlias, java.security.cert.X509Certificate oClientCert) throws ASelectException
sCaAlias
- The Alias of the CA.oClientCert
- The certificate to be checked
ASelectException
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |