org.opensaml.xml.security.x509.BasicX509Credential Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of xmltooling Show documentation
Show all versions of xmltooling Show documentation
XMLTooling-J is a low-level library that may be used to construct libraries that allow developers to work with XML in a Java beans manner.
/*
* Licensed to the University Corporation for Advanced Internet Development,
* Inc. (UCAID) under one or more contributor license agreements. See the
* NOTICE file distributed with this work for additional information regarding
* copyright ownership. The UCAID licenses this file to You under the Apache
* License, Version 2.0 (the "License"); you may not use this file except in
* compliance with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.opensaml.xml.security.x509;
import java.security.PublicKey;
import java.security.cert.X509CRL;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Collection;
import java.util.HashSet;
import javax.crypto.SecretKey;
import org.opensaml.xml.security.credential.BasicCredential;
import org.opensaml.xml.security.credential.Credential;
/**
* A basic implementation of {@link X509Credential}.
*/
public class BasicX509Credential extends BasicCredential implements X509Credential {
/** Entity certificate. */
private X509Certificate entityCert;
/** Entity certificate chain, must include entity certificate. */
private Collection entityCertChain;
/** CRLs for this credential. */
private Collection crls;
/** {@inheritDoc} */
public Class extends Credential> getCredentialType() {
return X509Credential.class;
}
/** {@inheritDoc} */
public Collection getCRLs() {
return crls;
}
/**
* Sets the CRLs for this credential.
*
* @param newCRLs CRLs for this credential
*/
public void setCRLs(Collection newCRLs) {
crls = newCRLs;
}
/** {@inheritDoc} */
public X509Certificate getEntityCertificate() {
return entityCert;
}
/**
* Sets the entity certificate for this credential.
*
* @param cert entity certificate for this credential
*/
public void setEntityCertificate(X509Certificate cert) {
entityCert = cert;
if (cert != null) {
setPublicKey(cert.getPublicKey());
} else {
setPublicKey(null);
}
}
/** {@inheritDoc} */
public Collection getEntityCertificateChain() {
if (entityCertChain == null && entityCert != null) {
HashSet constructedChain = new HashSet(5);
constructedChain.add(entityCert);
return constructedChain;
}
return entityCertChain;
}
/**
* Sets the entity certificate chain for this credential. This MUST include the entity
* certificate.
*
* @param certs ntity certificate chain for this credential
*/
public void setEntityCertificateChain(Collection certs) {
entityCertChain = new ArrayList(certs);
}
/** {@inheritDoc} */
public void setPublicKey(PublicKey key) {
if (entityCert != null) {
if (! entityCert.getPublicKey().equals(key)) {
throw new IllegalArgumentException("X509Credential already contains a certificate "
+ "with a different public key");
}
}
super.setPublicKey(key);
}
/** {@inheritDoc} */
public void setSecretKey(SecretKey key) {
if (key != null) {
throw new UnsupportedOperationException("Secret (symmetric) key may not be set "
+ "on an X509Credential instance");
}
}
/** {@inheritDoc} */
public SecretKey getSecretKey() {
return null;
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy