org.xipki.litecaclient

Class CmpCaClient

java.lang.Object

org.xipki.litecaclient.CmpCaClient

Direct Known Subclasses:

PbmMacCmpCaClient, SignatureCmpCaClient

public abstract class CmpCaClient
extends Object

TODO.

Author:

Lijun Liao

Field Summary

Fields

Modifier and Type	Field and Description
protected org.bouncycastle.asn1.x509.GeneralName	responderSubject

Constructor Summary

Constructors

Constructor and Description
CmpCaClient(String caUri, X509Certificate caCert, org.bouncycastle.asn1.x500.X500Name requestorSubject, org.bouncycastle.asn1.x500.X500Name responderSubject, String hashAlgo)

Method Summary

Modifier and Type	Method and Description
protected abstract org.bouncycastle.cert.cmp.ProtectedPKIMessage	build(org.bouncycastle.cert.cmp.ProtectedPKIMessageBuilder builder)
protected org.bouncycastle.operator.ContentSigner	buildSigner(PrivateKey signingKey)
protected abstract byte[]	decrypt(org.bouncycastle.asn1.crmf.EncryptedValue ev)
X509Certificate[]	enrollCertsViaCrmf(String[] certprofiles, PrivateKey[] privateKey, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo[] publicKeyInfo, String[] subject, boolean profileInUri)
KeyAndCert[]	enrollCertsViaCrmfCaGenKeypair(String[] certprofiles, String[] subject, boolean profileAndMetaInUri)
X509Certificate	enrollCertViaCrmf(String certprofile, PrivateKey privateKey, org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo, String subject, boolean profileInUri)
KeyAndCert	enrollCertViaCrmfCaGenKeypair(String certprofile, String subject, boolean profileAndMetaInUri)
X509Certificate	enrollCertViaCsr(String certprofile, org.bouncycastle.asn1.pkcs.CertificationRequest csr, boolean profileInUri)
X509Certificate	getCaCert()
void	init()
boolean	revokeCert(BigInteger serialNumber, org.bouncycastle.asn1.x509.CRLReason reason)
byte[]	send(byte[] request, String uri)
void	shutdown()
boolean	unrevokeCert(BigInteger serialNumber)
X509Certificate[]	updateCertsViaCrmf(PrivateKey[] privateKey, org.bouncycastle.asn1.x500.X500Name issuer, BigInteger[] oldCertSerialNumbers)
KeyAndCert[]	updateCertsViaCrmfCaGenKeypair(org.bouncycastle.asn1.x500.X500Name issuer, BigInteger[] oldCertSerialNumbers, boolean profileAndMetaInUri)
X509Certificate	updateCertViaCrmf(PrivateKey privateKey, org.bouncycastle.asn1.x500.X500Name issuer, BigInteger oldCertSerialNumber)
KeyAndCert	updateCertViaCrmfCaGenKeypair(org.bouncycastle.asn1.x500.X500Name issuer, BigInteger oldCertSerialNumber, boolean profileAndMetaInUri)
protected abstract boolean	verifyProtection(org.bouncycastle.cert.cmp.GeneralPKIMessage pkiMessage)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

responderSubject

protected final org.bouncycastle.asn1.x509.GeneralName responderSubject

Constructor Detail

CmpCaClient

public CmpCaClient(String caUri,
                   X509Certificate caCert,
                   org.bouncycastle.asn1.x500.X500Name requestorSubject,
                   org.bouncycastle.asn1.x500.X500Name responderSubject,
                   String hashAlgo)
            throws Exception

Throws:

Exception

Method Detail

init

public void init()
          throws Exception

Throws:

Exception

shutdown

public void shutdown()

getCaCert

public X509Certificate getCaCert()

build

protected abstract org.bouncycastle.cert.cmp.ProtectedPKIMessage build(org.bouncycastle.cert.cmp.ProtectedPKIMessageBuilder builder)
                                                                throws Exception

Throws:

Exception

verifyProtection

protected abstract boolean verifyProtection(org.bouncycastle.cert.cmp.GeneralPKIMessage pkiMessage)
                                     throws Exception

Throws:

Exception

enrollCertViaCsr

public X509Certificate enrollCertViaCsr(String certprofile,
                                        org.bouncycastle.asn1.pkcs.CertificationRequest csr,
                                        boolean profileInUri)
                                 throws Exception

Throws:

Exception

enrollCertViaCrmf

public X509Certificate enrollCertViaCrmf(String certprofile,
                                         PrivateKey privateKey,
                                         org.bouncycastle.asn1.x509.SubjectPublicKeyInfo publicKeyInfo,
                                         String subject,
                                         boolean profileInUri)
                                  throws Exception

Throws:

Exception

enrollCertsViaCrmf

public X509Certificate[] enrollCertsViaCrmf(String[] certprofiles,
                                            PrivateKey[] privateKey,
                                            org.bouncycastle.asn1.x509.SubjectPublicKeyInfo[] publicKeyInfo,
                                            String[] subject,
                                            boolean profileInUri)
                                     throws Exception

Throws:

Exception

enrollCertViaCrmfCaGenKeypair

public KeyAndCert enrollCertViaCrmfCaGenKeypair(String certprofile,
                                                String subject,
                                                boolean profileAndMetaInUri)
                                         throws Exception

Throws:

Exception

enrollCertsViaCrmfCaGenKeypair

public KeyAndCert[] enrollCertsViaCrmfCaGenKeypair(String[] certprofiles,
                                                   String[] subject,
                                                   boolean profileAndMetaInUri)
                                            throws Exception

Throws:

Exception

updateCertViaCrmf

public X509Certificate updateCertViaCrmf(PrivateKey privateKey,
                                         org.bouncycastle.asn1.x500.X500Name issuer,
                                         BigInteger oldCertSerialNumber)
                                  throws Exception

Throws:

Exception

updateCertsViaCrmf

public X509Certificate[] updateCertsViaCrmf(PrivateKey[] privateKey,
                                            org.bouncycastle.asn1.x500.X500Name issuer,
                                            BigInteger[] oldCertSerialNumbers)
                                     throws Exception

Throws:

Exception

updateCertViaCrmfCaGenKeypair

public KeyAndCert updateCertViaCrmfCaGenKeypair(org.bouncycastle.asn1.x500.X500Name issuer,
                                                BigInteger oldCertSerialNumber,
                                                boolean profileAndMetaInUri)
                                         throws Exception

Throws:

Exception

updateCertsViaCrmfCaGenKeypair

public KeyAndCert[] updateCertsViaCrmfCaGenKeypair(org.bouncycastle.asn1.x500.X500Name issuer,
                                                   BigInteger[] oldCertSerialNumbers,
                                                   boolean profileAndMetaInUri)
                                            throws Exception

Throws:

Exception

revokeCert

public boolean revokeCert(BigInteger serialNumber,
                          org.bouncycastle.asn1.x509.CRLReason reason)
                   throws Exception

Throws:

Exception

unrevokeCert

public boolean unrevokeCert(BigInteger serialNumber)
                     throws Exception

Throws:

Exception

send

public byte[] send(byte[] request,
                   String uri)
            throws IOException

Throws:

IOException

decrypt

protected abstract byte[] decrypt(org.bouncycastle.asn1.crmf.EncryptedValue ev)
                           throws Exception

Throws:

Exception

buildSigner

protected org.bouncycastle.operator.ContentSigner buildSigner(PrivateKey signingKey)
                                                       throws org.bouncycastle.operator.OperatorCreationException

Throws:

org.bouncycastle.operator.OperatorCreationException