• Home
• com.exasol
• bucketfs-java
• 3.2.0
• source code
• FixedSANCertificate.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.exasol.bucketfs.http.FixedSANCertificate Maven / Gradle / Ivy

package com.exasol.bucketfs.http;

import static java.util.stream.Collectors.toList;

import java.math.BigInteger;
import java.security.*;
import java.security.cert.*;
import java.util.*;
import java.util.stream.Stream;

/**
 * This certificate delegates to another {@link X509Certificate} but modifies it to add additional Subject Alternative
 * Names (SAN).
 * 

 * Based on https://stackoverflow.com/a/77538035
 */
// [impl->dsn~custom-tls-certificate.additional-subject-alternative-names~1]
@SuppressWarnings("serial") // No serialization required
class FixedSANCertificate extends X509Certificate {
    private final X509Certificate delegate;
    private final transient Collection altNames;

    FixedSANCertificate(final X509Certificate delegate, final Collection altNames) {
        this.delegate = delegate;
        this.altNames = altNames;
    }

    @Override
    public Collection> getSubjectAlternativeNames() throws CertificateParsingException {
        final Stream> existingAltNames = Optional.ofNullable(delegate.getSubjectAlternativeNames())
                .map(Collection::stream).orElseGet(Stream::empty);
        final Stream> additionalAltNames = altNames.stream()
                .map(altName -> List.of(altName.getType().getCode(), altName.getValue()));
        return Stream.concat(existingAltNames, additionalAltNames).collect(toList());
    }

    // Methods below just delegate

    @Override
    public boolean hasUnsupportedCriticalExtension() {
        return delegate.hasUnsupportedCriticalExtension();
    }

    @Override
    public Set getCriticalExtensionOIDs() {
        return delegate.getCriticalExtensionOIDs();
    }

    @Override
    public Set getNonCriticalExtensionOIDs() {
        return delegate.getNonCriticalExtensionOIDs();
    }

    @Override
    public byte[] getExtensionValue(final String oid) {
        return delegate.getExtensionValue(oid);
    }

    @Override
    public int getVersion() {
        return delegate.getVersion();
    }

    @Override
    public BigInteger getSerialNumber() {
        return delegate.getSerialNumber();
    }

    @Override
    @SuppressWarnings("deprecation") // Deprecated in Java 17 but required to implement the interface
    public Principal getIssuerDN() {
        return delegate.getIssuerDN();
    }

    @Override
    @SuppressWarnings("deprecation") // Deprecated in Java 17 but required to implement the interface
    public Principal getSubjectDN() {
        return delegate.getSubjectDN();
    }

    @Override
    public Date getNotBefore() {
        return delegate.getNotBefore();
    }

    @Override
    public Date getNotAfter() {
        return delegate.getNotAfter();
    }

    @Override
    public byte[] getTBSCertificate() throws CertificateEncodingException {
        return delegate.getTBSCertificate();
    }

    @Override
    public byte[] getSignature() {
        return delegate.getSignature();
    }

    @Override
    public String getSigAlgName() {
        return delegate.getSigAlgName();
    }

    @Override
    public String getSigAlgOID() {
        return delegate.getSigAlgOID();
    }

    @Override
    public byte[] getSigAlgParams() {
        return delegate.getSigAlgParams();
    }

    @Override
    public boolean[] getIssuerUniqueID() {
        return delegate.getIssuerUniqueID();
    }

    @Override
    public boolean[] getSubjectUniqueID() {
        return delegate.getSubjectUniqueID();
    }

    @Override
    public boolean[] getKeyUsage() {
        return delegate.getKeyUsage();
    }

    @Override
    public int getBasicConstraints() {
        return delegate.getBasicConstraints();
    }

    @Override
    public byte[] getEncoded() throws CertificateEncodingException {
        return delegate.getEncoded();
    }

    @Override
    public void checkValidity() throws CertificateExpiredException, CertificateNotYetValidException {
        delegate.checkValidity();
    }

    @Override
    public void checkValidity(final Date date) throws CertificateExpiredException, CertificateNotYetValidException {
        delegate.checkValidity(date);
    }

    @Override
    public void verify(final PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException,
            NoSuchProviderException, SignatureException {
        delegate.verify(key);
    }

    @Override
    public void verify(final PublicKey key, final String sigProvider) throws CertificateException,
            NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException {
        delegate.verify(key, sigProvider);
    }

    @Override
    public PublicKey getPublicKey() {
        return delegate.getPublicKey();
    }

    @Override
    public String toString() {
        return delegate.toString();
    }

    @Override
    public boolean equals(final Object other) {
        // This violates the equals() contract but must be defined like this, else it won't work.
        return delegate.equals(other);
    }

    @Override
    public int hashCode() {
        // This violates the hashCode() contract but must be defined like this, else it won't work.
        return delegate.hashCode();
    }
}