All Downloads are FREE. Search and download functionalities are using the official Maven repository.

eu.europa.esig.dss.AbstractSignatureParameters Maven / Gradle / Ivy

Go to download

DSS Document contains the code for the creation and validation of XAdES, CAdES, PAdES and ASiC signatures.

The newest version!
/**
 * DSS - Digital Signature Services
 * Copyright (C) 2015 European Commission, provided under the CEF programme
 * 
 * This file is part of the "DSS - Digital Signature Services" project.
 * 
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 * 
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 * 
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 */
package eu.europa.esig.dss;

import eu.europa.esig.dss.enumerations.EncryptionAlgorithm;
import eu.europa.esig.dss.model.AbstractSerializableSignatureParameters;
import eu.europa.esig.dss.model.DSSDocument;
import eu.europa.esig.dss.model.SerializableTimestampParameters;
import eu.europa.esig.dss.model.identifier.TokenIdentifier;
import eu.europa.esig.dss.model.x509.CertificateToken;
import eu.europa.esig.dss.spi.DSSUtils;
import eu.europa.esig.dss.utils.Utils;
import eu.europa.esig.dss.spi.x509.tsp.TimestampToken;

import java.util.Collections;
import java.util.LinkedList;
import java.util.List;

/**
 * Parameters for a Signature creation/extension
 *
 * @param  implementation of certain format signature parameters
 */
@SuppressWarnings("serial")
public abstract class AbstractSignatureParameters extends AbstractSerializableSignatureParameters {

	/**
	 * The internal signature processing variable
	 */
	protected ProfileParameters context;

	/**
	 * The documents to be signed
	 */
	private List detachedContents;

	/**
	 * This field contains the signing certificate.
	 */
	private CertificateToken signingCertificate;

	/**
	 * Optional parameter that contains the actual canonicalized data that was used when creating the
	 * signature value. This allows scenarios were ToBeSigned was externally updated before signature
	 * value was created (i.e. signature certificate was appended). If this parameter is specified it
	 * will be used in the signed document.
	 */
	private byte[] signedData;

	/**
	 * This field contains the {@code List} of chain of certificates. It includes the signing certificate.
	 */
	private List certificateChain = new LinkedList<>();

	/**
	 * This parameter is here because that's a signed attribute. It must be computed before getDataToSign/signDocument
	 */
	private List contentTimestamps;

	/**
	 * Default constructor instantiating object with null values
	 */
	protected AbstractSignatureParameters() {
		// empty
	}

	/**
	 * Returns the list of the {@code TimestampToken} to be incorporated within the signature and representing the
	 * content-timestamp.
	 *
	 * @return {@code List} of {@code TimestampToken}
	 */
	public List getContentTimestamps() {
		return contentTimestamps;
	}

	/**
	 * Sets a list of content timestamps to be included into the signature
	 *
	 * @param contentTimestamps a list of {@link TimestampToken}s
	 */
	public void setContentTimestamps(final List contentTimestamps) {
		this.contentTimestamps = contentTimestamps;
	}

	/**
	 * This method returns the documents to sign.
	 * In the case of the DETACHED signature this is the detached document.
	 *
	 * @return the list of detached documents
	 */
	public List getDetachedContents() {
		if (Utils.isCollectionNotEmpty(detachedContents)) {
			return detachedContents;
		}
		if (context != null) {
			return context.getDetachedContents();
		}
		return Collections.emptyList();
	}

	/**
	 * When signing this method is internally invoked by the {@code AbstractSignatureService} and the related variable
	 * {@code detachedContent} is overwritten by the service
	 * parameter. In the case of the DETACHED signature this is the detached document. In the case of ASiC-S this is the
	 * document to be signed.
	 * 

* When extending this method must be invoked to indicate the {@code detachedContent}. * * @param detachedContents * the list of detached documents */ public void setDetachedContents(final List detachedContents) { this.detachedContents = detachedContents; } /** * Get the signing certificate * * @return the signing certificate */ @Override public CertificateToken getSigningCertificate() { return signingCertificate; } /** * Set the signing certificate. The encryption algorithm is also set from the * public key. * * @param signingCertificate the signing certificate */ public void setSigningCertificate(final CertificateToken signingCertificate) { this.signingCertificate = signingCertificate; setEncryptionAlgorithm(EncryptionAlgorithm.forKey(signingCertificate.getPublicKey())); } /** * Get signed data * * @return signed data binaries */ public byte[] getSignedData() { return signedData; } /** * Set signed data * * @param signedData data that was used when creating the signature value. */ public void setSignedData(final byte[] signedData) { this.signedData = signedData; } /** * Set the certificate chain * * @return the certificate chain */ public List getCertificateChain() { return certificateChain; } /** * Set the certificate chain * * @param certificateChain the {@code List} of {@code CertificateToken}s */ public void setCertificateChain(final List certificateChain) { this.certificateChain = certificateChain; } /** * This method sets the list of certificates which constitute the chain. If the * certificate is already present in the array then it is ignored. * * @param certificateChainArray the array containing all certificates composing * the chain */ public void setCertificateChain(final CertificateToken... certificateChainArray) { for (final CertificateToken certificate : certificateChainArray) { if (certificate != null && !certificateChain.contains(certificate)) { certificateChain.add(certificate); } } } /** * The deterministic identifier used for unique identification of a created signature (used in XAdES and PAdES). * The identifier shall be built in a deterministic way to ensure the same value on both method calls * during the signature creation. * * @return the unique ID for the current signature or a document */ public String getDeterministicId() { String deterministicId = getContext().getDeterministicId(); if (deterministicId == null) { final TokenIdentifier identifier = (getSigningCertificate() == null ? null : getSigningCertificate().getDSSId()); deterministicId = DSSUtils.getDeterministicId(bLevel().getSigningDate(), identifier); getContext().setDeterministicId(deterministicId); } return deterministicId; } /** * Gets the signature creation context (internal variable) * * @return {@link ProfileParameters} */ public ProfileParameters getContext() { if (context == null) { context = new ProfileParameters(); } return context; } /** * This method re-inits signature parameters to clean temporary settings */ public void reinit() { context = null; } }





© 2015 - 2024 Weber Informatics LLC | Privacy Policy