Package network.oxalis.pkix.ocsp

Class OcspClient

java.lang.Object

network.oxalis.pkix.ocsp.OcspClient

public class OcspClient
extends Object

Implementation of OCSP client supporting verification of a single certificate.

Author:

erlend

Field Summary

Fields

Modifier and Type	Field	Description
static Property<Boolean>	EXCEPTION_ON_NO_PATH
static Property<Boolean>	EXCEPTION_ON_REVOKED
static Property<Boolean>	EXCEPTION_ON_UNKNOWN
static Property<OcspFetcher>	FETCHER
static Property<List<X509Certificate>>	INTERMEDIATES
static Property<Boolean>	NONCE
static Property<URI>	OVERRIDE_URL
protected Properties	properties	Properties provided by the builder.

Method Summary

Modifier and Type	Method	Description
static Builder<OcspClient>	builder()	Builder to create an instance of the client.
protected URI	detectOcspUri(X509Certificate certificate)
protected network.oxalis.pkix.ocsp.OcspResponse	fetch(network.oxalis.pkix.ocsp.OcspRequest ocspReq, URI uri)
protected X509Certificate	findIntermediate(X509Certificate certificate)	Method for finding issuer by provided issuers in properties given an issued certificate.
CertificateResult	verify(URI uri, CertificateIssuer issuer, BigInteger serialNumber)
CertificateResult	verify(X509Certificate certificate)
CertificateResult	verify(X509Certificate certificate, X509Certificate issuer)
CertificateResult	verify(CertificateIssuer issuer, X509Certificate certificate)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

EXCEPTION_ON_REVOKED

public static final Property<Boolean> EXCEPTION_ON_REVOKED

EXCEPTION_ON_UNKNOWN

public static final Property<Boolean> EXCEPTION_ON_UNKNOWN

EXCEPTION_ON_NO_PATH

public static final Property<Boolean> EXCEPTION_ON_NO_PATH

FETCHER

public static final Property<OcspFetcher> FETCHER

INTERMEDIATES

public static final Property<List<X509Certificate>> INTERMEDIATES

OVERRIDE_URL

public static final Property<URI> OVERRIDE_URL

NONCE

public static final Property<Boolean> NONCE

properties

protected final Properties properties

Properties provided by the builder.

Method Detail

builder

public static Builder<OcspClient> builder()

Builder to create an instance of the client.

Returns:

Prepared client.

verify

public CertificateResult verify(X509Certificate certificate)
                         throws OcspException

Throws:

OcspException

verify

public CertificateResult verify(X509Certificate certificate,
                                X509Certificate issuer)
                         throws OcspException

Throws:

OcspException

verify

public CertificateResult verify(CertificateIssuer issuer,
                                X509Certificate certificate)
                         throws OcspException

Throws:

OcspException

verify

public CertificateResult verify(URI uri,
                                CertificateIssuer issuer,
                                BigInteger serialNumber)
                         throws OcspException

Throws:

OcspException

findIntermediate

protected X509Certificate findIntermediate(X509Certificate certificate)
                                    throws OcspException

Method for finding issuer by provided issuers in properties given an issued certificate.

Parameters:

certificate - Issued certificate.

Returns:

Issuer of the issued certificate.

Throws:

OcspException - Thrown when no issuer is found.

detectOcspUri

protected URI detectOcspUri(X509Certificate certificate)
                     throws OcspException

Throws:

OcspException

fetch

protected network.oxalis.pkix.ocsp.OcspResponse fetch(network.oxalis.pkix.ocsp.OcspRequest ocspReq,
                                                      URI uri)
                                               throws OcspException

Throws:

OcspException