All Downloads are FREE. Search and download functionalities are using the official Maven repository.
  • Log In
  • Register

    • com.sap.cloud.security.x509.X509Certificate Maven / Gradle / Ivy

    /**
 * SPDX-FileCopyrightText: 2018-2023 SAP SE or an SAP affiliate company and Cloud Security Client Java contributors
 * 
    
 * SPDX-License-Identifier: Apache-2.0
 */
package com.sap.cloud.security.x509;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import javax.annotation.Nullable;
import javax.security.auth.x500.X500Principal;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateEncodingException;
import java.security.cert.CertificateException;
import java.util.Map;
import java.util.stream.Collectors;
import java.util.stream.Stream;

/**
 * The X.509 certificate
 */
public class X509Certificate implements Certificate {

	private static final Logger LOGGER = LoggerFactory.getLogger(X509Certificate.class);

	private final java.security.cert.X509Certificate x509;
	private String thumbprint;
	private final String pem;

	private X509Certificate(java.security.cert.X509Certificate x509Certificate, String pem) {
		this.x509 = x509Certificate;
		this.pem = pem;
	}

	/**
	 * Creates a new instance of X.509 certificate.
	 *
	 * @param pem
	 * 		the certificate encoded in base64 or PEM format
	 * @return instance of X509certificate
	 */
	@Nullable
	public static X509Certificate newCertificate(String pem) {
		if (pem != null && !pem.isEmpty()) {
			try {
				return new X509Certificate(X509Parser.parseCertificate(pem), pem);
			} catch (CertificateException e) {
				LOGGER.warn("Could not parse the certificate string", e);
			}
		}
		return null;
	}

	@Override
	public String getThumbprint() throws InvalidCertificateException {
		if (thumbprint == null) {
			try {
				this.thumbprint = X509Parser.getCertificateThumbprint(x509);
			} catch (NoSuchAlgorithmException | CertificateEncodingException e) {
				throw new InvalidCertificateException("Could not parse thumbprint", e);
			}
		}
		return this.thumbprint;
	}

	@Override
	public String getSubjectDN() {
		return x509.getSubjectX500Principal().getName(X500Principal.RFC1779).trim();
	}

	@Override
	public Map getSubjectDNMap() {
		return Stream.of(getSubjectDN().split(",")).collect(Collectors.toMap(
				dn -> dn.split("=")[0].trim(),
				dn -> dn.split("=")[1],
				(dn1, dn2) -> dn1 + "," + dn2));
	}

	/**
	 * @return a base64 encoded DER certificate or certificate in PEM format
	 */
	public String getPEM() {
		return this.pem;
	}

}




    © 2015 - 2025 Weber Informatics LLC | Privacy Policy