public class CmpResponder extends Object
| Modifier and Type | Field and Description |
|---|---|
protected CmpControl |
cmpControl |
static String |
HTTP_HEADER_certprofile |
static String |
HTTP_HEADER_groupenroll |
protected org.xipki.ca.gateway.PopControl |
popControl |
protected org.xipki.ca.sdk.SdkClient |
sdk |
protected org.xipki.security.SecurityFactory |
securityFactory |
static String |
TYPE_ccr |
static String |
TYPE_certConf |
static String |
TYPE_cr |
static String |
TYPE_error |
static String |
TYPE_genm_cacerts |
static String |
TYPE_genm_current_crl |
static String |
TYPE_ir |
static String |
TYPE_kur |
static String |
TYPE_p10cr |
static String |
TYPE_pkiconf |
static String |
TYPE_rr_revoke |
static String |
TYPE_rr_unrevoke |
| Constructor and Description |
|---|
CmpResponder(CmpControl cmpControl,
org.xipki.ca.sdk.SdkClient sdk,
org.xipki.security.SecurityFactory securityFactory,
org.xipki.ca.gateway.CaNameSigners signers,
org.xipki.ca.gateway.RequestorAuthenticator authenticator,
org.xipki.ca.gateway.PopControl popControl) |
| Modifier and Type | Method and Description |
|---|---|
protected static void |
addErrCertResp(Map<Integer,org.bouncycastle.asn1.cmp.CertResponse> resps,
int index,
org.bouncycastle.asn1.ASN1Integer certReqId,
int pkiFailureInfo,
String pkiStatusText) |
protected static org.bouncycastle.asn1.cmp.CertRepMessage |
buildErrCertResp(org.bouncycastle.asn1.ASN1Integer certReqId,
int pkiFailureInfo,
String pkiStatusText) |
protected static org.bouncycastle.asn1.cmp.PKIBody |
buildErrorMsgPkiBody(org.bouncycastle.asn1.cmp.PKIStatus pkiStatus,
int failureInfo,
String statusMessage) |
protected void |
checkPermission(org.xipki.ca.gateway.Requestor requestor,
int requiredPermission) |
protected org.bouncycastle.asn1.cmp.PKIBody |
cmpEnrollCert(String caName,
String dfltCertprofileName,
boolean groupEnroll,
org.bouncycastle.asn1.cmp.PKIMessage request,
org.bouncycastle.asn1.cmp.PKIHeaderBuilder respHeader,
org.bouncycastle.asn1.cmp.PKIHeader reqHeader,
org.bouncycastle.asn1.cmp.PKIBody reqBody,
org.xipki.ca.gateway.Requestor requestor,
org.bouncycastle.asn1.ASN1OctetString tid,
org.xipki.audit.AuditEvent event) |
protected org.bouncycastle.asn1.cmp.PKIBody |
cmpGeneralMsg(String caName,
org.bouncycastle.asn1.cmp.PKIBody reqBody,
org.xipki.audit.AuditEvent event) |
protected org.bouncycastle.asn1.cmp.PKIBody |
cmpUnRevokeCertificates(String caName,
org.bouncycastle.asn1.cmp.PKIMessage request,
org.bouncycastle.asn1.cmp.PKIHeaderBuilder respHeader,
org.bouncycastle.asn1.cmp.PKIHeader reqHeader,
org.bouncycastle.asn1.cmp.PKIBody reqBody,
org.xipki.ca.gateway.Requestor requestor,
org.xipki.audit.AuditEvent event) |
protected org.bouncycastle.asn1.cmp.PKIBody |
confirmCertificates(String caName,
org.bouncycastle.asn1.ASN1OctetString transactionId,
org.bouncycastle.asn1.cmp.CertConfirmContent certConf) |
protected static org.bouncycastle.asn1.cmp.PKIStatusInfo |
generateRejectionStatus(Integer info,
String errorMessage) |
protected static org.bouncycastle.asn1.cmp.PKIStatusInfo |
generateRejectionStatus(org.bouncycastle.asn1.cmp.PKIStatus status,
Integer info,
String errorMessage) |
protected static int |
getPKiFailureInfo(org.xipki.util.exception.OperationException ex) |
protected static org.bouncycastle.asn1.x500.X500Name |
getX500Name(org.bouncycastle.asn1.x509.GeneralName name) |
protected org.bouncycastle.asn1.cmp.CertResponse |
postProcessCertInfo(org.bouncycastle.asn1.ASN1Integer certReqId,
org.xipki.ca.gateway.Requestor requestor,
byte[] cert,
byte[] privateKeyinfo) |
org.bouncycastle.asn1.cmp.PKIMessage |
processPkiMessage(String caName,
org.bouncycastle.asn1.cmp.PKIMessage pkiMessage,
org.xipki.security.X509Cert tlsClientCert,
Map<String,String> parameters,
org.xipki.audit.AuditEvent event) |
protected org.bouncycastle.asn1.cmp.PKIBody |
revokePendingCertificates(String caName,
org.bouncycastle.asn1.ASN1OctetString transactionId) |
protected boolean |
verifyPop(org.bouncycastle.cert.crmf.CertificateRequestMessage certRequest,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo spki) |
public static final String HTTP_HEADER_certprofile
public static final String HTTP_HEADER_groupenroll
public static final String TYPE_ccr
public static final String TYPE_certConf
public static final String TYPE_ir
public static final String TYPE_cr
public static final String TYPE_error
public static final String TYPE_genm_cacerts
public static final String TYPE_genm_current_crl
public static final String TYPE_kur
public static final String TYPE_p10cr
public static final String TYPE_pkiconf
public static final String TYPE_rr_revoke
public static final String TYPE_rr_unrevoke
protected final org.xipki.security.SecurityFactory securityFactory
protected final org.xipki.ca.sdk.SdkClient sdk
protected final CmpControl cmpControl
protected final org.xipki.ca.gateway.PopControl popControl
public CmpResponder(CmpControl cmpControl, org.xipki.ca.sdk.SdkClient sdk, org.xipki.security.SecurityFactory securityFactory, org.xipki.ca.gateway.CaNameSigners signers, org.xipki.ca.gateway.RequestorAuthenticator authenticator, org.xipki.ca.gateway.PopControl popControl) throws NoSuchAlgorithmException
NoSuchAlgorithmExceptionprotected org.bouncycastle.asn1.cmp.PKIBody confirmCertificates(String caName, org.bouncycastle.asn1.ASN1OctetString transactionId, org.bouncycastle.asn1.cmp.CertConfirmContent certConf) throws org.xipki.ca.sdk.SdkErrorResponseException
org.xipki.ca.sdk.SdkErrorResponseExceptionprotected org.bouncycastle.asn1.cmp.PKIBody revokePendingCertificates(String caName, org.bouncycastle.asn1.ASN1OctetString transactionId) throws org.xipki.ca.sdk.SdkErrorResponseException
org.xipki.ca.sdk.SdkErrorResponseExceptionprotected org.bouncycastle.asn1.cmp.PKIBody cmpEnrollCert(String caName, String dfltCertprofileName, boolean groupEnroll, org.bouncycastle.asn1.cmp.PKIMessage request, org.bouncycastle.asn1.cmp.PKIHeaderBuilder respHeader, org.bouncycastle.asn1.cmp.PKIHeader reqHeader, org.bouncycastle.asn1.cmp.PKIBody reqBody, org.xipki.ca.gateway.Requestor requestor, org.bouncycastle.asn1.ASN1OctetString tid, org.xipki.audit.AuditEvent event) throws org.xipki.util.exception.InsufficientPermissionException, org.xipki.ca.sdk.SdkErrorResponseException
org.xipki.util.exception.InsufficientPermissionExceptionorg.xipki.ca.sdk.SdkErrorResponseExceptionprotected org.bouncycastle.asn1.cmp.PKIBody cmpUnRevokeCertificates(String caName, org.bouncycastle.asn1.cmp.PKIMessage request, org.bouncycastle.asn1.cmp.PKIHeaderBuilder respHeader, org.bouncycastle.asn1.cmp.PKIHeader reqHeader, org.bouncycastle.asn1.cmp.PKIBody reqBody, org.xipki.ca.gateway.Requestor requestor, org.xipki.audit.AuditEvent event) throws org.xipki.ca.sdk.SdkErrorResponseException
org.xipki.ca.sdk.SdkErrorResponseExceptionprotected static org.bouncycastle.asn1.x500.X500Name getX500Name(org.bouncycastle.asn1.x509.GeneralName name)
public org.bouncycastle.asn1.cmp.PKIMessage processPkiMessage(String caName, org.bouncycastle.asn1.cmp.PKIMessage pkiMessage, org.xipki.security.X509Cert tlsClientCert, Map<String,String> parameters, org.xipki.audit.AuditEvent event)
protected static org.bouncycastle.asn1.cmp.PKIStatusInfo generateRejectionStatus(Integer info, String errorMessage)
protected static org.bouncycastle.asn1.cmp.PKIStatusInfo generateRejectionStatus(org.bouncycastle.asn1.cmp.PKIStatus status,
Integer info,
String errorMessage)
protected static int getPKiFailureInfo(org.xipki.util.exception.OperationException ex)
protected void checkPermission(org.xipki.ca.gateway.Requestor requestor,
int requiredPermission)
throws org.xipki.util.exception.InsufficientPermissionException
org.xipki.util.exception.InsufficientPermissionExceptionprotected static org.bouncycastle.asn1.cmp.PKIBody buildErrorMsgPkiBody(org.bouncycastle.asn1.cmp.PKIStatus pkiStatus,
int failureInfo,
String statusMessage)
protected static org.bouncycastle.asn1.cmp.CertRepMessage buildErrCertResp(org.bouncycastle.asn1.ASN1Integer certReqId,
int pkiFailureInfo,
String pkiStatusText)
protected static void addErrCertResp(Map<Integer,org.bouncycastle.asn1.cmp.CertResponse> resps, int index, org.bouncycastle.asn1.ASN1Integer certReqId, int pkiFailureInfo, String pkiStatusText)
protected boolean verifyPop(org.bouncycastle.cert.crmf.CertificateRequestMessage certRequest,
org.bouncycastle.asn1.x509.SubjectPublicKeyInfo spki)
protected org.bouncycastle.asn1.cmp.CertResponse postProcessCertInfo(org.bouncycastle.asn1.ASN1Integer certReqId,
org.xipki.ca.gateway.Requestor requestor,
byte[] cert,
byte[] privateKeyinfo)
protected org.bouncycastle.asn1.cmp.PKIBody cmpGeneralMsg(String caName, org.bouncycastle.asn1.cmp.PKIBody reqBody, org.xipki.audit.AuditEvent event) throws org.xipki.util.exception.InsufficientPermissionException, org.xipki.ca.sdk.SdkErrorResponseException
org.xipki.util.exception.InsufficientPermissionExceptionorg.xipki.ca.sdk.SdkErrorResponseExceptionCopyright © 2023. All rights reserved.