public class IdentifiedCertprofile extends Object implements Closeable
| Constructor and Description |
|---|
IdentifiedCertprofile(org.xipki.ca.api.mgmt.entry.CertprofileEntry dbEntry,
org.xipki.ca.api.profile.Certprofile certprofile) |
| Modifier and Type | Method and Description |
|---|---|
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo |
checkPublicKey(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKey) |
void |
close() |
BigInteger |
generateSerialNumber(org.bouncycastle.asn1.x500.X500Name caSubject,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo caPublicKeyInfo,
org.bouncycastle.asn1.x500.X500Name requestSubject,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo,
org.xipki.util.ConfPairs caExtraControl) |
org.xipki.ca.api.profile.Certprofile.CertLevel |
getCertLevel() |
org.xipki.ca.api.mgmt.entry.CertprofileEntry |
getDbEntry() |
Set<org.xipki.ca.api.profile.Certprofile.ExtKeyUsageControl> |
getExtendedKeyUsages() |
Map<org.bouncycastle.asn1.ASN1ObjectIdentifier,org.xipki.ca.api.profile.Certprofile.ExtensionControl> |
getExtensionControls() |
org.xipki.ca.api.profile.ExtensionValues |
getExtensions(org.bouncycastle.asn1.x500.X500Name requestedSubject,
org.bouncycastle.asn1.x500.X500Name grantedSubject,
org.bouncycastle.asn1.x509.Extensions requestedExtensions,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo,
org.xipki.ca.api.PublicCaInfo publicCaInfo,
org.xipki.security.X509Cert crlSignerCert,
Date notBefore,
Date notAfter)
Get the extensions.
|
org.xipki.ca.api.NameId |
getIdent() |
org.xipki.ca.api.profile.KeypairGenControl |
getKeypairGenControl() |
Set<org.xipki.ca.api.profile.Certprofile.KeyUsageControl> |
getKeyUsage() |
int |
getMaxCertSize() |
Date |
getNotBefore(Date notBefore) |
Integer |
getPathLenBasicConstraint() |
String |
getSerialNumberMode() |
List<org.xipki.security.SignAlgo> |
getSignatureAlgorithms() |
org.xipki.ca.api.profile.Certprofile.SubjectInfo |
getSubject(org.bouncycastle.asn1.x500.X500Name requestedSubject,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo) |
org.xipki.util.Validity |
getValidity() |
org.xipki.ca.api.profile.Certprofile.X509CertVersion |
getVersion() |
String |
incSerialNumber(String currentSerialNumber) |
boolean |
isOnlyForRa() |
boolean |
isSerialNumberInReqPermitted() |
boolean |
useIssuerAndSerialInAki() |
void |
validate() |
public IdentifiedCertprofile(org.xipki.ca.api.mgmt.entry.CertprofileEntry dbEntry,
org.xipki.ca.api.profile.Certprofile certprofile)
throws org.xipki.ca.api.profile.CertprofileException
org.xipki.ca.api.profile.CertprofileExceptionpublic org.xipki.ca.api.NameId getIdent()
public org.xipki.ca.api.mgmt.entry.CertprofileEntry getDbEntry()
public org.xipki.ca.api.profile.Certprofile.X509CertVersion getVersion()
public List<org.xipki.security.SignAlgo> getSignatureAlgorithms()
public org.xipki.util.Validity getValidity()
public org.xipki.ca.api.profile.Certprofile.SubjectInfo getSubject(org.bouncycastle.asn1.x500.X500Name requestedSubject,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo)
throws org.xipki.ca.api.profile.CertprofileException,
org.xipki.ca.api.BadCertTemplateException
org.xipki.ca.api.profile.CertprofileExceptionorg.xipki.ca.api.BadCertTemplateExceptionpublic org.xipki.ca.api.profile.ExtensionValues getExtensions(org.bouncycastle.asn1.x500.X500Name requestedSubject,
org.bouncycastle.asn1.x500.X500Name grantedSubject,
org.bouncycastle.asn1.x509.Extensions requestedExtensions,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo,
org.xipki.ca.api.PublicCaInfo publicCaInfo,
org.xipki.security.X509Cert crlSignerCert,
Date notBefore,
Date notAfter)
throws org.xipki.ca.api.profile.CertprofileException,
org.xipki.ca.api.BadCertTemplateException
requestedSubject - Subject requested subject. Must not be null.grantedSubject - Granted subject. Must not be null.requestedExtensions - Extensions requested by the requestor. Could be null.publicKeyInfo - Subject public key. Must not be null.publicCaInfo - CA information. Must not be null.crlSignerCert - CRL signer certificate. Could be null.notBefore - NotBefore. Must not be null.notAfter - NotAfter. Must not be null.org.xipki.ca.api.profile.CertprofileExceptionorg.xipki.ca.api.BadCertTemplateExceptionpublic org.xipki.ca.api.profile.Certprofile.CertLevel getCertLevel()
public org.xipki.ca.api.profile.KeypairGenControl getKeypairGenControl()
public String getSerialNumberMode()
public BigInteger generateSerialNumber(org.bouncycastle.asn1.x500.X500Name caSubject, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo caPublicKeyInfo, org.bouncycastle.asn1.x500.X500Name requestSubject, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo, org.xipki.util.ConfPairs caExtraControl) throws org.xipki.ca.api.profile.CertprofileException
org.xipki.ca.api.profile.CertprofileExceptionpublic boolean isOnlyForRa()
public org.bouncycastle.asn1.x509.SubjectPublicKeyInfo checkPublicKey(org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKey)
throws org.xipki.ca.api.profile.CertprofileException,
org.xipki.ca.api.BadCertTemplateException
org.xipki.ca.api.profile.CertprofileExceptionorg.xipki.ca.api.BadCertTemplateExceptionpublic void close()
close in interface Closeableclose in interface AutoCloseablepublic boolean useIssuerAndSerialInAki()
public String incSerialNumber(String currentSerialNumber) throws org.xipki.ca.api.BadFormatException
org.xipki.ca.api.BadFormatExceptionpublic boolean isSerialNumberInReqPermitted()
public Map<org.bouncycastle.asn1.ASN1ObjectIdentifier,org.xipki.ca.api.profile.Certprofile.ExtensionControl> getExtensionControls()
public Set<org.xipki.ca.api.profile.Certprofile.KeyUsageControl> getKeyUsage()
public Integer getPathLenBasicConstraint()
public Set<org.xipki.ca.api.profile.Certprofile.ExtKeyUsageControl> getExtendedKeyUsages()
public int getMaxCertSize()
public void validate()
throws org.xipki.ca.api.profile.CertprofileException
org.xipki.ca.api.profile.CertprofileExceptionCopyright © 2021. All rights reserved.