X509Ca (XiPKI :: ca-server 4.0.0 API)

java.lang.Object
- org.xipki.ca.server.impl.X509Ca

```
public class X509Ca
extends Object
```
TODO.

Since:

2.0.0

Author:

Lijun Liao

Constructor Summary

Constructors
Constructor and Description

X509Ca(CaManagerImpl caManager, CaInfo caInfo, CertStore certstore)

Constructors
Constructor and Description
`X509Ca(CaManagerImpl caManager, CaInfo caInfo, CertStore certstore)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`long`	`addRequest(byte[] request)`
`void`	`addRequestCert(long requestId, long certId)`
`org.xipki.ca.api.NameId`	`authenticateUser(String user, byte[] password)`
`void`	`checkCsr(org.bouncycastle.asn1.pkcs.CertificationRequest csr)`
`void`	`clearPublishQueue(List<String> publisherNames)`
`org.xipki.ca.api.CertificateInfo`	`generateCert(CertTemplateData certTemplate, org.xipki.ca.server.mgmt.api.RequestorInfo requestor, org.xipki.ca.api.RequestType reqType, byte[] transactionId, String msgId)`
`List<org.xipki.ca.api.CertificateInfo>`	`generateCerts(List<CertTemplateData> certTemplates, org.xipki.ca.server.mgmt.api.RequestorInfo requestor, org.xipki.ca.api.RequestType reqType, byte[] transactionId, String msgId)`
`X509CRL`	`generateCrlOnDemand(String msgId)`
`org.bouncycastle.asn1.x509.CertificateList`	`getBcCrl(BigInteger crlNumber)`
`org.bouncycastle.asn1.x509.CertificateList`	`getBcCurrentCrl()`
`ByUserRequestorInfo`	`getByUserRequestor(org.xipki.ca.api.NameId userIdent)`
`org.xipki.ca.api.NameId`	`getCaIdent()`
`CaInfo`	`getCaInfo()`
`CaManagerImpl`	`getCaManager()`
`X509Certificate`	`getCert(BigInteger serialNumber)`
`List<X509Certificate>`	`getCert(org.bouncycastle.asn1.x500.X500Name subjectName, byte[] transactionId)` Returns the certificates satisfying the given search criteria.
`byte[]`	`getCertRequest(BigInteger serialNumber)`
`org.xipki.ca.server.mgmt.api.CertWithRevocationInfo`	`getCertWithRevocationInfo(BigInteger serialNumber)`
`org.xipki.ca.server.mgmt.api.CmpControl`	`getCmpControl()`
`X509CRL`	`getCrl(BigInteger crlNumber)`
`X509CRL`	`getCurrentCrl()`
`String`	`getHexSha1OfCert()`
`CmpRequestorInfo`	`getMacRequestor(org.bouncycastle.asn1.x500.X500Name sender, byte[] senderKID)`
`CmpRequestorInfo`	`getRequestor(org.bouncycastle.asn1.x500.X500Name requestorSender)`
`CmpRequestorInfo`	`getRequestor(X509Certificate requestorCert)`
`org.xipki.ca.api.NameId`	`getUserIdent(int userId)`
`org.xipki.ca.server.impl.IdentifiedCertprofile`	`getX509Certprofile(String certprofileName)`
`org.xipki.util.HealthCheckResult`	`healthCheck()`
`KnowCertResult`	`knowsCert(X509Certificate cert)`
`List<org.xipki.ca.server.mgmt.api.CertListInfo>`	`listCerts(org.bouncycastle.asn1.x500.X500Name subjectPattern, Date validFrom, Date validTo, org.xipki.ca.server.mgmt.api.CertListOrderBy orderBy, int numEntries)`
`boolean`	`publishCert(org.xipki.ca.api.CertificateInfo certInfo)`
`boolean`	`publishCertsInQueue()`
`org.xipki.ca.api.CertificateInfo`	`regenerateCert(CertTemplateData certTemplate, org.xipki.ca.server.mgmt.api.RequestorInfo requestor, org.xipki.ca.api.RequestType reqType, byte[] transactionId, String msgId)`
`List<org.xipki.ca.api.CertificateInfo>`	`regenerateCerts(List<CertTemplateData> certTemplates, org.xipki.ca.server.mgmt.api.RequestorInfo requestor, org.xipki.ca.api.RequestType reqType, byte[] transactionId, String msgId)`
`org.xipki.ca.api.CertWithDbId`	`removeCert(BigInteger serialNumber, String msgId)`
`boolean`	`republishCerts(List<String> publisherNames, int numThreads)`
`void`	`revokeCa(org.xipki.security.CertRevocationInfo revocationInfo, String msgId)`
`org.xipki.ca.server.mgmt.api.CertWithRevocationInfo`	`revokeCert(BigInteger serialNumber, org.xipki.security.CrlReason reason, Date invalidityTime, String msgId)`
`void`	`setAuditServiceRegister(org.xipki.audit.AuditServiceRegister auditServiceRegister)`
`boolean`	`supportsCertprofile(String certprofileName)`
`void`	`unrevokeCa(String msgId)`
`org.xipki.ca.api.CertWithDbId`	`unrevokeCert(BigInteger serialNumber, String msgId)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

X509Ca

public X509Ca(CaManagerImpl caManager,
              CaInfo caInfo,
              CertStore certstore)
       throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

Method Detail

getCaInfo
```
public CaInfo getCaInfo()
```

getCmpControl

public org.xipki.ca.server.mgmt.api.CmpControl getCmpControl()

getCert

public X509Certificate getCert(BigInteger serialNumber)
                        throws CertificateException,
                               org.xipki.ca.api.OperationException

Throws:: CertificateException; org.xipki.ca.api.OperationException

getCert
```
public List<X509Certificate> getCert(org.bouncycastle.asn1.x500.X500Name subjectName,
                                     byte[] transactionId)
                              throws org.xipki.ca.api.OperationException
```
Returns the certificates satisfying the given search criteria.

Parameters:

subjectName - Subject of the certificate.

transactionId - null for all transactionIds.

Returns:

the certificates satisfying the given search criteria

Throws:

org.xipki.ca.api.OperationException - if error occurs.

knowsCert

public KnowCertResult knowsCert(X509Certificate cert)
                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCertWithRevocationInfo

public org.xipki.ca.server.mgmt.api.CertWithRevocationInfo getCertWithRevocationInfo(BigInteger serialNumber)
                                                                              throws CertificateException,
                                                                                     org.xipki.ca.api.OperationException

Throws:: CertificateException; org.xipki.ca.api.OperationException

getCertRequest

public byte[] getCertRequest(BigInteger serialNumber)
                      throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

checkCsr

public void checkCsr(org.bouncycastle.asn1.pkcs.CertificationRequest csr)
              throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

listCerts

public List<org.xipki.ca.server.mgmt.api.CertListInfo> listCerts(org.bouncycastle.asn1.x500.X500Name subjectPattern,
                                                                 Date validFrom,
                                                                 Date validTo,
                                                                 org.xipki.ca.server.mgmt.api.CertListOrderBy orderBy,
                                                                 int numEntries)
                                                          throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

authenticateUser

public org.xipki.ca.api.NameId authenticateUser(String user,
                                                byte[] password)
                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getUserIdent

public org.xipki.ca.api.NameId getUserIdent(int userId)
                                     throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getByUserRequestor

public ByUserRequestorInfo getByUserRequestor(org.xipki.ca.api.NameId userIdent)
                                       throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCurrentCrl

public X509CRL getCurrentCrl()
                      throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCrl

public X509CRL getCrl(BigInteger crlNumber)
               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getBcCurrentCrl

public org.bouncycastle.asn1.x509.CertificateList getBcCurrentCrl()
                                                           throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getBcCrl

public org.bouncycastle.asn1.x509.CertificateList getBcCrl(BigInteger crlNumber)
                                                    throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

generateCrlOnDemand

public X509CRL generateCrlOnDemand(String msgId)
                            throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

regenerateCert

public org.xipki.ca.api.CertificateInfo regenerateCert(CertTemplateData certTemplate,
                                                       org.xipki.ca.server.mgmt.api.RequestorInfo requestor,
                                                       org.xipki.ca.api.RequestType reqType,
                                                       byte[] transactionId,
                                                       String msgId)
                                                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

regenerateCerts

public List<org.xipki.ca.api.CertificateInfo> regenerateCerts(List<CertTemplateData> certTemplates,
                                                              org.xipki.ca.server.mgmt.api.RequestorInfo requestor,
                                                              org.xipki.ca.api.RequestType reqType,
                                                              byte[] transactionId,
                                                              String msgId)
                                                       throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

publishCert

public boolean publishCert(org.xipki.ca.api.CertificateInfo certInfo)

republishCerts

public boolean republishCerts(List<String> publisherNames,
                              int numThreads)

clearPublishQueue

public void clearPublishQueue(List<String> publisherNames)
                       throws org.xipki.ca.server.mgmt.api.CaMgmtException

Throws:: org.xipki.ca.server.mgmt.api.CaMgmtException

publishCertsInQueue
```
public boolean publishCertsInQueue()
```

revokeCert

public org.xipki.ca.server.mgmt.api.CertWithRevocationInfo revokeCert(BigInteger serialNumber,
                                                                      org.xipki.security.CrlReason reason,
                                                                      Date invalidityTime,
                                                                      String msgId)
                                                               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

unrevokeCert

public org.xipki.ca.api.CertWithDbId unrevokeCert(BigInteger serialNumber,
                                                  String msgId)
                                           throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

removeCert

public org.xipki.ca.api.CertWithDbId removeCert(BigInteger serialNumber,
                                                String msgId)
                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

revokeCa

public void revokeCa(org.xipki.security.CertRevocationInfo revocationInfo,
                     String msgId)
              throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

unrevokeCa

public void unrevokeCa(String msgId)
                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

addRequest

public long addRequest(byte[] request)
                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

addRequestCert

public void addRequestCert(long requestId,
                           long certId)
                    throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

generateCerts

public List<org.xipki.ca.api.CertificateInfo> generateCerts(List<CertTemplateData> certTemplates,
                                                            org.xipki.ca.server.mgmt.api.RequestorInfo requestor,
                                                            org.xipki.ca.api.RequestType reqType,
                                                            byte[] transactionId,
                                                            String msgId)
                                                     throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

generateCert

public org.xipki.ca.api.CertificateInfo generateCert(CertTemplateData certTemplate,
                                                     org.xipki.ca.server.mgmt.api.RequestorInfo requestor,
                                                     org.xipki.ca.api.RequestType reqType,
                                                     byte[] transactionId,
                                                     String msgId)
                                              throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getX509Certprofile

public org.xipki.ca.server.impl.IdentifiedCertprofile getX509Certprofile(String certprofileName)

supportsCertprofile

public boolean supportsCertprofile(String certprofileName)

getRequestor

public CmpRequestorInfo getRequestor(org.bouncycastle.asn1.x500.X500Name requestorSender)

getRequestor

public CmpRequestorInfo getRequestor(X509Certificate requestorCert)

getMacRequestor

public CmpRequestorInfo getMacRequestor(org.bouncycastle.asn1.x500.X500Name sender,
                                        byte[] senderKID)

getCaManager
```
public CaManagerImpl getCaManager()
```

healthCheck

public org.xipki.util.HealthCheckResult healthCheck()

setAuditServiceRegister

public void setAuditServiceRegister(org.xipki.audit.AuditServiceRegister auditServiceRegister)

getCaIdent

public org.xipki.ca.api.NameId getCaIdent()

getHexSha1OfCert
```
public String getHexSha1OfCert()
```

Class X509Ca

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

X509Ca

Method Detail

getCaInfo

getCmpControl

getCert

getCert

knowsCert

getCertWithRevocationInfo

getCertRequest

checkCsr

listCerts

authenticateUser

getUserIdent

getByUserRequestor

getCurrentCrl

getCrl

getBcCurrentCrl

getBcCrl

generateCrlOnDemand

regenerateCert

regenerateCerts

publishCert

republishCerts

clearPublishQueue

publishCertsInQueue

revokeCert

unrevokeCert

removeCert

revokeCa

unrevokeCa

addRequest

addRequestCert

generateCerts

generateCert

getX509Certprofile

supportsCertprofile

getRequestor

getRequestor

getMacRequestor

getCaManager

healthCheck

setAuditServiceRegister

getCaIdent

getHexSha1OfCert