CertStore (XiPKI :: ca-server 4.0.0 API)

java.lang.Object
- org.xipki.ca.server.impl.store.CertStore

```
public class CertStore
extends Object
```
TODO.

Since:

2.0.0

Author:

Lijun Liao

Constructor Summary

Constructors
Constructor and Description

CertStore(org.xipki.datasource.DataSourceWrapper datasource, UniqueIdGenerator idGenerator)

Constructors
Constructor and Description
`CertStore(org.xipki.datasource.DataSourceWrapper datasource, UniqueIdGenerator idGenerator)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`boolean`	`addCert(org.xipki.ca.api.CertificateInfo certInfo)`
`void`	`addCrl(org.xipki.ca.api.NameId ca, X509CRL crl)`
`long`	`addRequest(byte[] request)`
`void`	`addRequestCert(long requestId, long certId)`
`void`	`addToPublishQueue(org.xipki.ca.api.NameId publisher, long certId, org.xipki.ca.api.NameId ca)`
`org.xipki.ca.api.NameId`	`authenticateUser(String user, byte[] password)`
`int`	`cleanupCrls(org.xipki.ca.api.NameId ca, int numCrls)`
`void`	`clearDeltaCrlCache(org.xipki.ca.api.NameId ca, long maxId)`
`void`	`clearPublishQueue(org.xipki.ca.api.NameId ca, org.xipki.ca.api.NameId publisher)`
`void`	`deleteUnreferencedRequests()`
`org.xipki.ca.server.mgmt.api.CaHasUserEntry`	`getCaHasUser(org.xipki.ca.api.NameId ca, org.xipki.ca.api.NameId user)`
`List<X509Certificate>`	`getCert(org.bouncycastle.asn1.x500.X500Name subjectName, byte[] transactionId)` TODO.
`org.xipki.ca.api.CertificateInfo`	`getCertForId(org.xipki.ca.api.NameId ca, org.xipki.security.X509Cert caCert, long certId, CaIdNameMap idNameMap)`
`org.xipki.ca.api.CertificateInfo`	`getCertInfo(org.xipki.ca.api.NameId ca, org.xipki.security.X509Cert caCert, BigInteger serial, CaIdNameMap idNameMap)`
`Integer`	`getCertprofileForCertId(org.xipki.ca.api.NameId ca, long cid)`
`byte[]`	`getCertRequest(org.xipki.ca.api.NameId ca, BigInteger serialNumber)`
`List<CertRevInfoWithSerial>`	`getCertsForDeltaCrl(org.xipki.ca.api.NameId ca, long startId, int numEntries, boolean onlyCaCerts, boolean onlyUserCerts)`
`CertStatus`	`getCertStatusForSubject(org.xipki.ca.api.NameId ca, org.bouncycastle.asn1.x500.X500Name subject)`
`org.xipki.ca.server.mgmt.api.CertWithRevocationInfo`	`getCertWithRevocationInfo(int caId, BigInteger serial, CaIdNameMap idNameMap)`
`long`	`getCountOfCerts(org.xipki.ca.api.NameId ca, boolean onlyRevoked)`
`byte[]`	`getEncodedCrl(org.xipki.ca.api.NameId ca, BigInteger crlNumber)`
`List<BigInteger>`	`getExpiredSerialNumbers(org.xipki.ca.api.NameId ca, long expiredAt, int numEntries)`
`String`	`getLatestSerialNumber(org.bouncycastle.asn1.x500.X500Name nameWithSn)`
`long`	`getMaxCrlNumber(org.xipki.ca.api.NameId ca)`
`long`	`getMaxIdOfDeltaCrlCache(org.xipki.ca.api.NameId ca)`
`List<Long>`	`getPublishQueueEntries(org.xipki.ca.api.NameId ca, org.xipki.ca.api.NameId publisher, int numEntries)`
`List<CertRevInfoWithSerial>`	`getRevokedCerts(org.xipki.ca.api.NameId ca, Date notExpiredAt, long startId, int numEntries, boolean onlyCaCerts, boolean onlyUserCerts)`
`List<SerialWithId>`	`getSerialNumbers(org.xipki.ca.api.NameId ca, Date notExpiredAt, long startId, int numEntries, boolean onlyRevoked, boolean onlyCaCerts, boolean onlyUserCerts)`
`List<SerialWithId>`	`getSerialNumbers(org.xipki.ca.api.NameId ca, long startId, int numEntries, boolean onlyRevoked)`
`List<BigInteger>`	`getSuspendedCertSerials(org.xipki.ca.api.NameId ca, long latestLastUpdate, int numEntries)`
`Long`	`getThisUpdateOfCurrentCrl(org.xipki.ca.api.NameId ca)`
`String`	`getUsername(int id)`
`boolean`	`hasCrl(org.xipki.ca.api.NameId ca)`
`boolean`	`isCertForKeyIssued(org.xipki.ca.api.NameId ca, long keyFp)`
`boolean`	`isCertForSubjectIssued(org.xipki.ca.api.NameId ca, long subjectFp)`
`boolean`	`isHealthy()`
`KnowCertResult`	`knowsCertForSerial(org.xipki.ca.api.NameId ca, BigInteger serial)`
`List<org.xipki.ca.server.mgmt.api.CertListInfo>`	`listCerts(org.xipki.ca.api.NameId ca, org.bouncycastle.asn1.x500.X500Name subjectPattern, Date validFrom, Date validTo, org.xipki.ca.server.mgmt.api.CertListOrderBy orderBy, int numEntries)`
`void`	`removeCert(org.xipki.ca.api.NameId ca, BigInteger serialNumber)`
`void`	`removeFromPublishQueue(org.xipki.ca.api.NameId publisher, long certId)`
`org.xipki.ca.server.mgmt.api.CertWithRevocationInfo`	`revokeCert(org.xipki.ca.api.NameId ca, BigInteger serialNumber, org.xipki.security.CertRevocationInfo revInfo, boolean force, boolean publishToDeltaCrlCache, CaIdNameMap idNameMap)`
`org.xipki.ca.server.mgmt.api.CertWithRevocationInfo`	`revokeSuspendedCert(org.xipki.ca.api.NameId ca, BigInteger serialNumber, org.xipki.security.CrlReason reason, boolean publishToDeltaCrlCache, CaIdNameMap idNameMap)`
`org.xipki.ca.api.CertWithDbId`	`unrevokeCert(org.xipki.ca.api.NameId ca, BigInteger serialNumber, boolean force, boolean publishToDeltaCrlCache, CaIdNameMap idNamMap)`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CertStore

public CertStore(org.xipki.datasource.DataSourceWrapper datasource,
                 UniqueIdGenerator idGenerator)
          throws org.xipki.datasource.DataAccessException

Throws:: org.xipki.datasource.DataAccessException

Method Detail

addCert

public boolean addCert(org.xipki.ca.api.CertificateInfo certInfo)

addToPublishQueue

public void addToPublishQueue(org.xipki.ca.api.NameId publisher,
                              long certId,
                              org.xipki.ca.api.NameId ca)
                       throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

removeFromPublishQueue

public void removeFromPublishQueue(org.xipki.ca.api.NameId publisher,
                                   long certId)
                            throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getMaxIdOfDeltaCrlCache

public long getMaxIdOfDeltaCrlCache(org.xipki.ca.api.NameId ca)
                             throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

clearDeltaCrlCache

public void clearDeltaCrlCache(org.xipki.ca.api.NameId ca,
                               long maxId)
                        throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

clearPublishQueue

public void clearPublishQueue(org.xipki.ca.api.NameId ca,
                              org.xipki.ca.api.NameId publisher)
                       throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getMaxCrlNumber

public long getMaxCrlNumber(org.xipki.ca.api.NameId ca)
                     throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getThisUpdateOfCurrentCrl

public Long getThisUpdateOfCurrentCrl(org.xipki.ca.api.NameId ca)
                               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

hasCrl

public boolean hasCrl(org.xipki.ca.api.NameId ca)
               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

addCrl

public void addCrl(org.xipki.ca.api.NameId ca,
                   X509CRL crl)
            throws org.xipki.ca.api.OperationException,
                   CRLException

Throws:: org.xipki.ca.api.OperationException; CRLException

revokeCert

public org.xipki.ca.server.mgmt.api.CertWithRevocationInfo revokeCert(org.xipki.ca.api.NameId ca,
                                                                      BigInteger serialNumber,
                                                                      org.xipki.security.CertRevocationInfo revInfo,
                                                                      boolean force,
                                                                      boolean publishToDeltaCrlCache,
                                                                      CaIdNameMap idNameMap)
                                                               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

revokeSuspendedCert

public org.xipki.ca.server.mgmt.api.CertWithRevocationInfo revokeSuspendedCert(org.xipki.ca.api.NameId ca,
                                                                               BigInteger serialNumber,
                                                                               org.xipki.security.CrlReason reason,
                                                                               boolean publishToDeltaCrlCache,
                                                                               CaIdNameMap idNameMap)
                                                                        throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

unrevokeCert

public org.xipki.ca.api.CertWithDbId unrevokeCert(org.xipki.ca.api.NameId ca,
                                                  BigInteger serialNumber,
                                                  boolean force,
                                                  boolean publishToDeltaCrlCache,
                                                  CaIdNameMap idNamMap)
                                           throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

removeCert

public void removeCert(org.xipki.ca.api.NameId ca,
                       BigInteger serialNumber)
                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getPublishQueueEntries

public List<Long> getPublishQueueEntries(org.xipki.ca.api.NameId ca,
                                         org.xipki.ca.api.NameId publisher,
                                         int numEntries)
                                  throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCountOfCerts

public long getCountOfCerts(org.xipki.ca.api.NameId ca,
                            boolean onlyRevoked)
                     throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getSerialNumbers

public List<SerialWithId> getSerialNumbers(org.xipki.ca.api.NameId ca,
                                           long startId,
                                           int numEntries,
                                           boolean onlyRevoked)
                                    throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getSerialNumbers

public List<SerialWithId> getSerialNumbers(org.xipki.ca.api.NameId ca,
                                           Date notExpiredAt,
                                           long startId,
                                           int numEntries,
                                           boolean onlyRevoked,
                                           boolean onlyCaCerts,
                                           boolean onlyUserCerts)
                                    throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getExpiredSerialNumbers

public List<BigInteger> getExpiredSerialNumbers(org.xipki.ca.api.NameId ca,
                                                long expiredAt,
                                                int numEntries)
                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getSuspendedCertSerials

public List<BigInteger> getSuspendedCertSerials(org.xipki.ca.api.NameId ca,
                                                long latestLastUpdate,
                                                int numEntries)
                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getEncodedCrl

public byte[] getEncodedCrl(org.xipki.ca.api.NameId ca,
                            BigInteger crlNumber)
                     throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

cleanupCrls

public int cleanupCrls(org.xipki.ca.api.NameId ca,
                       int numCrls)
                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCertForId

public org.xipki.ca.api.CertificateInfo getCertForId(org.xipki.ca.api.NameId ca,
                                                     org.xipki.security.X509Cert caCert,
                                                     long certId,
                                                     CaIdNameMap idNameMap)
                                              throws org.xipki.ca.api.OperationException,
                                                     CertificateException

Throws:: org.xipki.ca.api.OperationException; CertificateException

getCertWithRevocationInfo

public org.xipki.ca.server.mgmt.api.CertWithRevocationInfo getCertWithRevocationInfo(int caId,
                                                                                     BigInteger serial,
                                                                                     CaIdNameMap idNameMap)
                                                                              throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCertInfo

public org.xipki.ca.api.CertificateInfo getCertInfo(org.xipki.ca.api.NameId ca,
                                                    org.xipki.security.X509Cert caCert,
                                                    BigInteger serial,
                                                    CaIdNameMap idNameMap)
                                             throws org.xipki.ca.api.OperationException,
                                                    CertificateException

Throws:: org.xipki.ca.api.OperationException; CertificateException

getCertprofileForCertId

public Integer getCertprofileForCertId(org.xipki.ca.api.NameId ca,
                                       long cid)
                                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCert
```
public List<X509Certificate> getCert(org.bouncycastle.asn1.x500.X500Name subjectName,
                                     byte[] transactionId)
                              throws org.xipki.ca.api.OperationException
```
TODO.

Parameters:

subjectName - Subject of Certificate or requested Subject.

transactionId - will only be considered if there are more than one certificate matches the subject.

Throws:

org.xipki.ca.api.OperationException

getCertRequest

public byte[] getCertRequest(org.xipki.ca.api.NameId ca,
                             BigInteger serialNumber)
                      throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

listCerts

public List<org.xipki.ca.server.mgmt.api.CertListInfo> listCerts(org.xipki.ca.api.NameId ca,
                                                                 org.bouncycastle.asn1.x500.X500Name subjectPattern,
                                                                 Date validFrom,
                                                                 Date validTo,
                                                                 org.xipki.ca.server.mgmt.api.CertListOrderBy orderBy,
                                                                 int numEntries)
                                                          throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

authenticateUser

public org.xipki.ca.api.NameId authenticateUser(String user,
                                                byte[] password)
                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getUsername

public String getUsername(int id)
                   throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCaHasUser

public org.xipki.ca.server.mgmt.api.CaHasUserEntry getCaHasUser(org.xipki.ca.api.NameId ca,
                                                                org.xipki.ca.api.NameId user)
                                                         throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

knowsCertForSerial

public KnowCertResult knowsCertForSerial(org.xipki.ca.api.NameId ca,
                                         BigInteger serial)
                                  throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getRevokedCerts

public List<CertRevInfoWithSerial> getRevokedCerts(org.xipki.ca.api.NameId ca,
                                                   Date notExpiredAt,
                                                   long startId,
                                                   int numEntries,
                                                   boolean onlyCaCerts,
                                                   boolean onlyUserCerts)
                                            throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCertsForDeltaCrl

public List<CertRevInfoWithSerial> getCertsForDeltaCrl(org.xipki.ca.api.NameId ca,
                                                       long startId,
                                                       int numEntries,
                                                       boolean onlyCaCerts,
                                                       boolean onlyUserCerts)
                                                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

getCertStatusForSubject

public CertStatus getCertStatusForSubject(org.xipki.ca.api.NameId ca,
                                          org.bouncycastle.asn1.x500.X500Name subject)
                                   throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

isCertForSubjectIssued

public boolean isCertForSubjectIssued(org.xipki.ca.api.NameId ca,
                                      long subjectFp)
                               throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

isCertForKeyIssued

public boolean isCertForKeyIssued(org.xipki.ca.api.NameId ca,
                                  long keyFp)
                           throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

isHealthy
```
public boolean isHealthy()
```

getLatestSerialNumber

public String getLatestSerialNumber(org.bouncycastle.asn1.x500.X500Name nameWithSn)
                             throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

deleteUnreferencedRequests

public void deleteUnreferencedRequests()
                                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

addRequest

public long addRequest(byte[] request)
                throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

addRequestCert

public void addRequestCert(long requestId,
                           long certId)
                    throws org.xipki.ca.api.OperationException

Throws:: org.xipki.ca.api.OperationException

Class CertStore

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

CertStore

Method Detail

addCert

addToPublishQueue

removeFromPublishQueue

getMaxIdOfDeltaCrlCache

clearDeltaCrlCache

clearPublishQueue

getMaxCrlNumber

getThisUpdateOfCurrentCrl

hasCrl

addCrl

revokeCert

revokeSuspendedCert

unrevokeCert

removeCert

getPublishQueueEntries

getCountOfCerts

getSerialNumbers

getSerialNumbers

getExpiredSerialNumbers

getSuspendedCertSerials

getEncodedCrl

cleanupCrls

getCertForId

getCertWithRevocationInfo

getCertInfo

getCertprofileForCertId

getCert

getCertRequest

listCerts

authenticateUser

getUsername

getCaHasUser

knowsCertForSerial

getRevokedCerts

getCertsForDeltaCrl

getCertStatusForSubject

isCertForSubjectIssued

isCertForKeyIssued

isHealthy

getLatestSerialNumber

deleteUnreferencedRequests

addRequest

addRequestCert