• Home
• com.google.code.jscep
• jscep-client
• 0.20.6
• source code
• PendingEnrollmentTask.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

com.google.code.jscep.client.PendingEnrollmentTask Maven / Gradle / Ivy

/*
 * Copyright (c) 2009-2010 David Grant
 *
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in
 * all copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 * THE SOFTWARE.
 */

package com.google.code.jscep.client;

import java.security.KeyPair;
import java.security.cert.CertStore;
import java.security.cert.X509Certificate;

import org.bouncycastle.asn1.x509.X509Name;

import com.google.code.jscep.EnrollmentResult;
import com.google.code.jscep.RequestPendingException;
import com.google.code.jscep.asn1.IssuerAndSubject;
import com.google.code.jscep.operations.GetCertInitial;
import com.google.code.jscep.operations.PKIOperation;
import com.google.code.jscep.transaction.Transaction;
import com.google.code.jscep.transaction.TransactionFactory;
import com.google.code.jscep.transport.Transport;

/**
 * This class represents a subsequent attempt to enrol a certificate in a PKI.
 * 

 * This class is usually created after the client has attempted an initial enrollment.
 * 
 * @see InitialEnrollmentTask
 */
public final class PendingEnrollmentTask extends AbstractEnrollmentTask {
	private final Transport transport;
	private final X509Certificate ca;
	private final KeyPair keyPair;
	private final X509Certificate identity;
	private final String fingerprintAlgorithm;
	
	/**
	 * Creates a new instance of this class.
	 * 
	 * @param transport the transport to send enrolment requests over.
	 * @param ca the CA to sign our request.
	 * @param keyPair the key pair used for creating a CSR.
	 * @param identity the identity of the certificate to enrol.
	 * @param digestAlgorithm the message digest algorithm to use.
	 */
	PendingEnrollmentTask(Transport transport, X509Certificate ca, KeyPair keyPair, X509Certificate identity, String fingerprintAlgorithm) {
		this.transport = transport;
		this.ca = ca;
		this.keyPair = keyPair;
		this.identity = identity;
		this.fingerprintAlgorithm = fingerprintAlgorithm;
	}

	/**
	 * Attempts to complete a previous enrolment.
	 */
	@Override
	public EnrollmentResult call() throws Exception {
		final Transaction trans = TransactionFactory.createTransaction(transport, ca, identity, keyPair, fingerprintAlgorithm);
		final X509Name issuer = new X509Name(ca.getIssuerX500Principal().getName());
		final X509Name subject = new X509Name(identity.getSubjectX500Principal().getName());
		final PKIOperation req = new GetCertInitial(issuer, subject);
		try {
			final CertStore store = trans.performOperation(req);
			
			return new EnrollmentResult(getCertificates(store.getCertificates(null)));
		} catch (RequestPendingException e) {
			return new EnrollmentResult(this);
		}
	}
}