Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance. Project price only 1 $
You can buy this project and download/modify it how often you want.
/*************************************************************************
* *
* CESeCore: CE Security Core *
* *
* This software is free software; you can redistribute it and/or *
* modify it under the terms of the GNU Lesser General Public *
* License as published by the Free Software Foundation; either *
* version 2.1 of the License, or any later version. *
* *
* See terms of license at gnu.org. *
* *
*************************************************************************/
package org.cesecore.certificates.ca;
import java.security.NoSuchProviderException;
import java.security.cert.Certificate;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Collection;
import java.util.Date;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import org.cesecore.certificates.ca.catoken.CAToken;
import org.cesecore.certificates.ca.extendedservices.ExtendedCAServiceInfo;
import org.cesecore.certificates.certificateprofile.CertificatePolicy;
import org.cesecore.util.CertTools;
import org.cesecore.util.SimpleTime;
import org.cesecore.util.StringTools;
/**
* Holds non-sensitive information about a X509CA.
*
* @version $Id: X509CAInfo.java 29149 2018-06-07 14:42:22Z andrey_s_helmes $
*/
public class X509CAInfo extends CAInfo {
private static final long serialVersionUID = 2L;
private List policies;
private boolean useauthoritykeyidentifier;
private boolean authoritykeyidentifiercritical;
private boolean usecrlnumber;
private boolean crlnumbercritical;
private String defaultcrldistpoint;
private String defaultcrlissuer;
private String defaultocsplocator;
private String cadefinedfreshestcrl;
private String subjectaltname;
private boolean useUTF8PolicyText;
private boolean usePrintableStringSubjectDN;
private boolean useLdapDNOrder;
private boolean useCrlDistributionPointOnCrl;
private boolean crlDistributionPointOnCrlCritical;
private String cmpRaAuthSecret = "";
private List authorityInformationAccess;
private List certificateAiaDefaultCaIssuerUri;
private List nameConstraintsPermitted;
private List nameConstraintsExcluded;
private String externalCdp;
private boolean nameChanged;
/**
* This constructor can be used when creating a CA.
* This constructor uses defaults for the fields that are not specified.
*/
public X509CAInfo(final String subjectdn, final String name, final int status,
final int certificateProfileId, final String encodedValidity, int signedby, final Collection certificatechain, final CAToken catoken) {
this(subjectdn,
name,
status, // CA status (CAConstants.CA_ACTIVE, etc.)
new Date(), // update time
"", // Subject Alternative name
certificateProfileId, // CA certificate profile
0, // default ca profile
false, // default is certificate data table
encodedValidity, null, // Expiretime
CAInfo.CATYPE_X509, // CA type (X509/CVC)
signedby, // Signed by CA
certificatechain, // Certificate chain
catoken, // CA Token
"", // Description
-1, // Revocation reason
null, // Revocation date
null, // PolicyId
24 * SimpleTime.MILLISECONDS_PER_HOUR, // CRLPeriod
0 * SimpleTime.MILLISECONDS_PER_HOUR, // CRLIssueInterval
10 * SimpleTime.MILLISECONDS_PER_HOUR, // CRLOverlapTime
10 * SimpleTime.MILLISECONDS_PER_HOUR, // DeltaCRLPeriod
new ArrayList(),
new ArrayList(),
true, // Authority Key Identifier
false, // Authority Key Identifier Critical
true, // CRL Number
false, // CRL Number Critical
null, // defaultcrldistpoint
null, // defaultcrlissuer
null, // defaultocsplocator
null, // CRL Authority Information Access (AIA) extension
null, // Certificate AIA default CA issuer URI
null, null, // Name Constraints (permitted/excluded)
null, // defaultfreshestcrl
true, // Finish User
new ArrayList(), // no extended services
false, // use default utf8 settings
new HashMap(), //approvals
false, // Use UTF8 subject DN by default
true, // Use LDAP DN order by default
false, // Use CRL Distribution Point on CRL
false, // CRL Distribution Point on CRL critical
true, // Include in HealthCheck
true, // isDoEnforceUniquePublicKeys
true, // isDoEnforceUniqueDistinguishedName
false, // isDoEnforceUniqueSubjectDNSerialnumber
false, // useCertReqHistory
true, // useUserStorage
true, // useCertificateStorage
false, // acceptRevocationNonExistingEntry
null, // cmpRaAuthSecret
false // keepExpiredCertsOnCRL
);
}
/**
* Constructor that should be used when creating CA and retrieving CA info.
* Please use the shorter form if you do not need to set all of the values.
* @param subjectDn the Subject DN of the CA as found in the certificate
* @param name the name of the CA shown in EJBCA, can be changed by the user
* @param status the operational status of the CA, one of the constants in {@link #CAConstants}
* @param updateTime the last time this CA was updated, normally the current date and time
* @param subjectaltname the Subject Alternative Name (SAN) of the CA, as found in the certificate
* @param certificateprofileid the ID of the certificate profile for this CA
* @param defaultCertprofileId the id of default cetificate profile for certificates this CA issues
* @param useNoConflictCertificateData should use NoConflictCertificate data table to write to
* @param encodedValidity the validity of this CA as a human-readable string, e.g. 25y
* @param expiretime the date when this CA expires
* @param catype the type of CA, in this case CAInfo.CATYPE_X509
* @param signedBy the id of the CA which signed this CA
* @param certificatechain the certificate chain containing the CA certificate of this CA
* @param catoken the CA token for this CA, containing e.g. a reference to the crypto token
* @param description a text describing this CA
* @param revocationReason the reason why this CA was revoked, or -1 if not revoked
* @param revocationDate the date of revocation, or null if not revoked
* @param policies a policy OID
* @param crlperiod the CRL validity period in ms
* @param crlIssueInterval how often in ms the CRLs should be distributed, e.g. 3600000 will generate a new CRL every hour
* @param crlOverlapTime the validity overlap in ms for a subsequent CRL, e.g. 5000 will generate a CRL 5m before the previous CRL expires
* @param deltacrlperiod how often Delta CRLs should be distributed
* @param crlpublishers a collection of publisher IDs for this CA
* @param keyValidators a collection of key validator IDs for this CA
* @param useauthoritykeyidentifier
* @param authoritykeyidentifiercritical
* @param usecrlnumber
* @param crlnumbercritical
* @param defaultcrldistpoint the URI of the default CRL distribution point
* @param defaultcrlissuer
* @param defaultocspservicelocator
* @param authorityInformationAccess
* @param certificateAiaDefaultCaIssuerUri
* @param nameConstraintsPermitted a list of name constraints which should be permitted
* @param nameConstraintsExcluded a list of name constraints which should be excluded
* @param cadefinedfreshestcrl
* @param finishuser
* @param extendedcaserviceinfos
* @param useUTF8PolicyText
* @param approvals a map of approval profiles which should be used for different operations
* @param usePrintableStringSubjectDN
* @param useLdapDnOrder
* @param useCrlDistributionPointOnCrl
* @param crlDistributionPointOnCrlCritical
* @param includeInHealthCheck enable healthcheck for this CA
* @param _doEnforceUniquePublicKeys
* @param _doEnforceUniqueDistinguishedName
* @param _doEnforceUniqueSubjectDNSerialnumber
* @param _useCertReqHistory
* @param _useUserStorage
* @param _useCertificateStorage
* @param _acceptRevocationNonExistingEntry
* @param _cmpRaAuthSecret
* @param keepExpiredCertsOnCRL
*/
private X509CAInfo(final String subjectDn, final String name, final int status, final Date updateTime, final String subjectaltname,
final int certificateprofileid, final int defaultCertprofileId, final boolean useNoConflictCertificateData, final String encodedValidity, final Date expiretime, final int catype, final int signedBy,
final Collection certificatechain, final CAToken catoken,
final String description, final int revocationReason, final Date revocationDate, final List policies,
final long crlperiod, final long crlIssueInterval, final long crlOverlapTime, final long deltacrlperiod,
final Collection crlpublishers, final Collection keyValidators, final boolean useauthoritykeyidentifier, final boolean authoritykeyidentifiercritical,
final boolean usecrlnumber, final boolean crlnumbercritical, final String defaultcrldistpoint, final String defaultcrlissuer,
final String defaultocspservicelocator,
final List authorityInformationAccess,
final List certificateAiaDefaultCaIssuerUri,
final List nameConstraintsPermitted, final List nameConstraintsExcluded, final String cadefinedfreshestcrl,
final boolean finishuser, final Collection extendedcaserviceinfos,
final boolean useUTF8PolicyText, final Map approvals, final boolean usePrintableStringSubjectDN,
final boolean useLdapDnOrder, final boolean useCrlDistributionPointOnCrl, final boolean crlDistributionPointOnCrlCritical, final boolean includeInHealthCheck,
final boolean _doEnforceUniquePublicKeys, final boolean _doEnforceUniqueDistinguishedName, final boolean _doEnforceUniqueSubjectDNSerialnumber,
final boolean _useCertReqHistory, final boolean _useUserStorage, final boolean _useCertificateStorage, final boolean _acceptRevocationNonExistingEntry,
final String _cmpRaAuthSecret, final boolean keepExpiredCertsOnCRL) {
this.subjectdn = CertTools.stringToBCDNString(StringTools.strip(subjectDn));
this.caid = CertTools.stringToBCDNString(this.subjectdn).hashCode();
this.name = name;
this.status = status;
this.updatetime = updateTime;
this.encodedValidity = encodedValidity;
this.expiretime = expiretime;
this.catype = catype;
this.signedby = signedBy;
// Due to a bug in Glassfish v1 (fixed in v2), we used to have to make sure all certificates in this
// Array were of SUNs own provider, using CertTools.SYSTEM_SECURITY_PROVIDER.
// As of EJBCA 3.9.3 we decided that we don't have to support Glassfish v1 anymore.
try {
if (certificatechain != null) {
X509Certificate[] certs = certificatechain.toArray(new X509Certificate[certificatechain.size()]);
List list = CertTools.getCertCollectionFromArray(certs, null);
setCertificateChain(list);
} else {
setCertificateChain(null);
}
} catch (CertificateException e) {
throw new IllegalArgumentException(e);
} catch (NoSuchProviderException e) {
throw new IllegalArgumentException(e);
}
this.catoken = catoken;
this.description = description;
setRevocationReason(revocationReason);
this.revocationDate = revocationDate;
this.policies = policies;
this.crlperiod = crlperiod;
this.crlIssueInterval = crlIssueInterval;
this.crlOverlapTime = crlOverlapTime;
this.deltacrlperiod = deltacrlperiod;
this.crlpublishers = crlpublishers;
this.validators = keyValidators;
this.useauthoritykeyidentifier = useauthoritykeyidentifier;
this.authoritykeyidentifiercritical = authoritykeyidentifiercritical;
this.usecrlnumber = usecrlnumber;
this.crlnumbercritical = crlnumbercritical;
this.defaultcrldistpoint = defaultcrldistpoint;
this.defaultcrlissuer = defaultcrlissuer;
this.defaultocsplocator = defaultocspservicelocator;
this.cadefinedfreshestcrl = cadefinedfreshestcrl;
this.finishuser = finishuser;
this.subjectaltname = subjectaltname;
this.certificateprofileid = certificateprofileid;
this.defaultCertificateProfileId = defaultCertprofileId;
this.extendedcaserviceinfos = extendedcaserviceinfos;
this.useUTF8PolicyText = useUTF8PolicyText;
setApprovals(approvals);
this.usePrintableStringSubjectDN = usePrintableStringSubjectDN;
this.useLdapDNOrder = useLdapDnOrder;
this.useCrlDistributionPointOnCrl = useCrlDistributionPointOnCrl;
this.crlDistributionPointOnCrlCritical = crlDistributionPointOnCrlCritical;
this.includeInHealthCheck = includeInHealthCheck;
this.doEnforceUniquePublicKeys = _doEnforceUniquePublicKeys;
this.doEnforceUniqueDistinguishedName = _doEnforceUniqueDistinguishedName;
this.doEnforceUniqueSubjectDNSerialnumber = _doEnforceUniqueSubjectDNSerialnumber;
this.useCertReqHistory = _useCertReqHistory;
this.useUserStorage = _useUserStorage;
this.useCertificateStorage = _useCertificateStorage;
this.acceptRevocationNonExistingEntry = _acceptRevocationNonExistingEntry;
setCmpRaAuthSecret(_cmpRaAuthSecret);
this.keepExpiredCertsOnCRL = keepExpiredCertsOnCRL;
this.authorityInformationAccess = authorityInformationAccess;
this.certificateAiaDefaultCaIssuerUri = certificateAiaDefaultCaIssuerUri;
this.nameConstraintsPermitted = nameConstraintsPermitted;
this.nameConstraintsExcluded = nameConstraintsExcluded;
this.useNoConflictCertificateData = useNoConflictCertificateData;
}
/** Constructor that should be used when updating CA data. */
public X509CAInfo(final int caid, final String encodedValidity, final CAToken catoken, final String description, final long crlperiod,
final long crlIssueInterval, final long crlOverlapTime, final long deltacrlperiod, final Collection crlpublishers,
final Collection keyValidators, final boolean useauthoritykeyidentifier, final boolean authoritykeyidentifiercritical,
final boolean usecrlnumber, final boolean crlnumbercritical, final String defaultcrldistpoint, final String defaultcrlissuer,
final String defaultocspservicelocator, final List crlAuthorityInformationAccess,
final List certificateAiaDefaultCaIssuerUri, final List nameConstraintsPermitted,
final List nameConstraintsExcluded, final String cadefinedfreshestcrl, final boolean finishuser,
final Collection extendedcaserviceinfos, final boolean useUTF8PolicyText,
final Map approvals, final boolean usePrintableStringSubjectDN, final boolean useLdapDnOrder,
final boolean useCrlDistributionPointOnCrl, final boolean crlDistributionPointOnCrlCritical, final boolean includeInHealthCheck,
final boolean _doEnforceUniquePublicKeys, final boolean _doEnforceUniqueDistinguishedName,
final boolean _doEnforceUniqueSubjectDNSerialnumber, final boolean _useCertReqHistory, final boolean _useUserStorage,
final boolean _useCertificateStorage, final boolean _acceptRevocationNonExistingEntry, final String _cmpRaAuthSecret, final boolean keepExpiredCertsOnCRL,
final int defaultCertprofileId, final boolean useNoConflictCertificateData) {
this.caid = caid;
this.encodedValidity = encodedValidity;
this.catoken = catoken;
this.description = description;
this.crlperiod = crlperiod;
this.crlIssueInterval = crlIssueInterval;
this.crlOverlapTime = crlOverlapTime;
this.deltacrlperiod = deltacrlperiod;
this.crlpublishers = crlpublishers;
this.validators = keyValidators;
this.useauthoritykeyidentifier = useauthoritykeyidentifier;
this.authoritykeyidentifiercritical = authoritykeyidentifiercritical;
this.usecrlnumber = usecrlnumber;
this.crlnumbercritical = crlnumbercritical;
this.defaultcrldistpoint = defaultcrldistpoint;
this.defaultcrlissuer = defaultcrlissuer;
this.defaultocsplocator = defaultocspservicelocator;
this.cadefinedfreshestcrl = cadefinedfreshestcrl;
this.finishuser = finishuser;
this.extendedcaserviceinfos = extendedcaserviceinfos;
this.useUTF8PolicyText = useUTF8PolicyText;
setApprovals(approvals);
this.usePrintableStringSubjectDN = usePrintableStringSubjectDN;
this.useLdapDNOrder = useLdapDnOrder;
this.useCrlDistributionPointOnCrl = useCrlDistributionPointOnCrl;
this.crlDistributionPointOnCrlCritical = crlDistributionPointOnCrlCritical;
this.includeInHealthCheck = includeInHealthCheck;
this.doEnforceUniquePublicKeys = _doEnforceUniquePublicKeys;
this.doEnforceUniqueDistinguishedName = _doEnforceUniqueDistinguishedName;
this.doEnforceUniqueSubjectDNSerialnumber = _doEnforceUniqueSubjectDNSerialnumber;
this.useCertReqHistory = _useCertReqHistory;
this.useUserStorage = _useUserStorage;
this.useCertificateStorage = _useCertificateStorage;
this.acceptRevocationNonExistingEntry = _acceptRevocationNonExistingEntry;
setCmpRaAuthSecret(_cmpRaAuthSecret);
this.keepExpiredCertsOnCRL = keepExpiredCertsOnCRL;
this.authorityInformationAccess = crlAuthorityInformationAccess;
this.certificateAiaDefaultCaIssuerUri = certificateAiaDefaultCaIssuerUri;
this.nameConstraintsPermitted = nameConstraintsPermitted;
this.nameConstraintsExcluded = nameConstraintsExcluded;
this.defaultCertificateProfileId = defaultCertprofileId;
this.useNoConflictCertificateData = useNoConflictCertificateData;
}
public List getPolicies() {
return this.policies;
}
public void setPolicies(final List policies) {
this.policies = policies;
}
public boolean getUseCRLNumber(){ return usecrlnumber;}
public void setUseCRLNumber(boolean usecrlnumber){ this.usecrlnumber=usecrlnumber;}
public boolean getCRLNumberCritical(){ return crlnumbercritical;}
public void setCRLNumberCritical(boolean crlnumbercritical){ this.crlnumbercritical=crlnumbercritical;}
public boolean getUseAuthorityKeyIdentifier(){ return useauthoritykeyidentifier;}
public void setUseAuthorityKeyIdentifier(boolean useauthoritykeyidentifier) {this.useauthoritykeyidentifier=useauthoritykeyidentifier;}
public boolean getAuthorityKeyIdentifierCritical(){ return authoritykeyidentifiercritical;}
public void setAuthorityKeyIdentifierCritical(boolean authoritykeyidentifiercritical)
{this.authoritykeyidentifiercritical=authoritykeyidentifiercritical;}
public String getDefaultCRLDistPoint(){ return defaultcrldistpoint; }
public void setDefaultCRLDistPoint(String defaultCRLDistPoint) {
this.defaultcrldistpoint = defaultCRLDistPoint;
}
public String getDefaultCRLIssuer(){ return defaultcrlissuer; }
public void setDefaultCRLIssuer(String defaultcrlissuer) {
this.defaultcrlissuer = defaultcrlissuer;
}
public String getDefaultOCSPServiceLocator(){ return defaultocsplocator; }
public void setDefaultOCSPServiceLocator(String defaultocsplocator) {
this.defaultocsplocator = defaultocsplocator;
}
public String getCADefinedFreshestCRL(){ return this.cadefinedfreshestcrl; }
public void setCADefinedFreshestCRL(String cADefinedFreshestCRL) {
this.cadefinedfreshestcrl = cADefinedFreshestCRL;
}
public String getSubjectAltName(){ return subjectaltname; }
public void setSubjectAltName(final String subjectaltname) {
this.subjectaltname = subjectaltname;
}
public boolean getUseUTF8PolicyText() { return useUTF8PolicyText; }
public void setUseUTF8PolicyText(final boolean useUTF8PolicyText) {
this.useUTF8PolicyText = useUTF8PolicyText;
}
public boolean getUsePrintableStringSubjectDN() { return usePrintableStringSubjectDN; }
public void setUsePrintableStringSubjectDN(final boolean usePrintableStringSubjectDN) {
this.usePrintableStringSubjectDN = usePrintableStringSubjectDN;
}
public boolean getUseLdapDnOrder() { return useLdapDNOrder; }
public void setUseLdapDnOrder(final boolean useLdapDNOrder) {
this.useLdapDNOrder = useLdapDNOrder;
}
public boolean getUseCrlDistributionPointOnCrl() {
return this.useCrlDistributionPointOnCrl;
}
public void setUseCrlDistributionPointOnCrl(boolean useCrlDistributionPointOnCrl) {
this.useCrlDistributionPointOnCrl = useCrlDistributionPointOnCrl;
}
public boolean getCrlDistributionPointOnCrlCritical() {
return this.crlDistributionPointOnCrlCritical;
}
public void setCrlDistributionPointOnCrlCritical(boolean crlDistributionPointOnCrlCritical) {
this.crlDistributionPointOnCrlCritical = crlDistributionPointOnCrlCritical;
}
public String getCmpRaAuthSecret() { return cmpRaAuthSecret; }
public void setCmpRaAuthSecret(String cmpRaAuthSecret) { this.cmpRaAuthSecret = cmpRaAuthSecret == null ? "" : cmpRaAuthSecret; }
public List getAuthorityInformationAccess() {
return authorityInformationAccess;
}
public void setAuthorityInformationAccess(List list) {
this.authorityInformationAccess = list;
}
/** @return the certificateAiaDefaultCaIssuerUri */
public List getCertificateAiaDefaultCaIssuerUri() {
return certificateAiaDefaultCaIssuerUri;
}
/** @param list the certificateAiaDefaultCaIssuerUri to set */
public void setCertificateAiaDefaultCaIssuerUri(List list) {
this.certificateAiaDefaultCaIssuerUri = list;
}
/** @return a list of encoded names of the permitted names in issued certificates */
public List getNameConstraintsPermitted() {
return nameConstraintsPermitted;
}
public void setNameConstraintsPermitted(List encodedNames) {
nameConstraintsPermitted = encodedNames;
}
/** @return a list of encoded names of the forbidden names in issued certificates */
public List getNameConstraintsExcluded() {
return nameConstraintsExcluded;
}
public void setNameConstraintsExcluded(List encodedNames) {
nameConstraintsExcluded = encodedNames;
}
/** @return what should be a String formatted URL pointing to an external CA's CDP. */
public String getExternalCdp() {
return externalCdp;
}
/** Set what should be a String formatted URL pointing to an external CA's CDP. */
public void setExternalCdp(final String externalCdp) {
this.externalCdp = externalCdp;
}
/** @return true if CA has undergone through name change at some renewal process, otherwise false. */
public boolean getNameChanged() {
return nameChanged;
}
/** NameChanged attribute should only be set when X509CA is retrieved from DB */
void setNameChanged(final boolean value){
nameChanged = value;
}
public static class X509CAInfoBuilder {
private String subjectDn;
private String name;
private int status;
private int certificateProfileId;
private String encodedValidity;
private int signedBy;
private Collection certificateChain;
private CAToken caToken;
private Date updateTime = new Date();
private String subjectAltName = "";
private int defaultCertProfileId = 0;
private boolean useNoConflictCertificateData = false;
private Date expireTime = null;
private int caType = CAInfo.CATYPE_X509;
private String description = "";
private int revocationReason = -1;
private Date revocationDate = null;
private List policies = null;
private long crlPeriod = 24 * SimpleTime.MILLISECONDS_PER_HOUR;
private long crlIssueInterval = 0L;
private long crlOverlapTime = 10 * SimpleTime.MILLISECONDS_PER_HOUR;
private long deltaCrlPeriod = 10 * SimpleTime.MILLISECONDS_PER_HOUR;
private Collection crlPublishers = new ArrayList();
private Collection validators = new ArrayList();
private boolean useAuthorityKeyIdentifier = true;
private boolean authorityKeyIdentifierCritical = false;
private boolean useCrlNumber = true;
private boolean crlNumberCritical = false;
private String defaultCrlDistPoint = null;
private String defaultCrlIssuer = null;
private String defaultOcspCerviceLocator = null;
private List authorityInformationAccess = null;
private List certificateAiaDefaultCaIssuerUri = null;
private List nameConstraintsPermitted = null;
private List nameConstraintsExcluded = null;
private String caDefinedFreshestCrl = null;
private boolean finishUser = true;
private Collection extendedCaServiceInfos = new ArrayList();
private boolean useUtf8PolicyText = false;
private Map approvals = new HashMap();
private boolean usePrintableStringSubjectDN = false;
private boolean useLdapDnOrder = true;
private boolean useCrlDistributionPointOnCrl = false;
private boolean crlDistributionPointOnCrlCritical = false;
private boolean includeInHealthCheck = true;
private boolean doEnforceUniquePublicKeys = true;
private boolean doEnforceUniqueDistinguishedName = true;
private boolean doEnforceUniqueSubjectDNSerialnumber = false;
private boolean useCertReqHistory = false;
private boolean useUserStorage = true;
private boolean useCertificateStorage = true;
private boolean acceptRevocationNonExistingEntry = false;
private String cmpRaAuthSecret = null;
private boolean keepExpiredCertsOnCRL = false;
public X509CAInfoBuilder setSubjectDn(String subjectDn) {
this.subjectDn = subjectDn;
return this;
}
public X509CAInfoBuilder setName(String name) {
this.name = name;
return this;
}
public X509CAInfoBuilder setStatus(int status) {
this.status = status;
return this;
}
public X509CAInfoBuilder setCertificateProfileId(int certificateProfileId) {
this.certificateProfileId = certificateProfileId;
return this;
}
public X509CAInfoBuilder setEncodedValidity(String encodedValidity) {
this.encodedValidity = encodedValidity;
return this;
}
public X509CAInfoBuilder setSignedBy(int signedBy) {
this.signedBy = signedBy;
return this;
}
public X509CAInfoBuilder setCertificateChain(Collection certificateChain) {
this.certificateChain = certificateChain;
return this;
}
public X509CAInfoBuilder setCaToken(CAToken caToken) {
this.caToken = caToken;
return this;
}
public X509CAInfoBuilder setUpdateTime(Date updateTime) {
this.updateTime = updateTime;
return this;
}
public X509CAInfoBuilder setSubjectAltName(String subjectAltName) {
this.subjectAltName = subjectAltName;
return this;
}
public X509CAInfoBuilder setDefaultCertProfileId(int defaultCertProfileId) {
this.defaultCertProfileId = defaultCertProfileId;
return this;
}
public X509CAInfoBuilder setUseNoConflictCertificateData(boolean useNoConflictCertificateData) {
this.useNoConflictCertificateData = useNoConflictCertificateData;
return this;
}
public X509CAInfoBuilder setExpireTime(Date expireTime) {
this.expireTime = expireTime;
return this;
}
public X509CAInfoBuilder setCaType(int caType) {
this.caType = caType;
return this;
}
public X509CAInfoBuilder setDescription(String description) {
this.description = description;
return this;
}
public X509CAInfoBuilder setRevocationReason(int revocationReason) {
this.revocationReason = revocationReason;
return this;
}
public X509CAInfoBuilder setRevocationDate(Date revocationDate) {
this.revocationDate = revocationDate;
return this;
}
public X509CAInfoBuilder setPolicies(List policies) {
this.policies = policies;
return this;
}
public X509CAInfoBuilder setCrlPeriod(long crlPeriod) {
this.crlPeriod = crlPeriod;
return this;
}
public X509CAInfoBuilder setCrlIssueInterval(long crlIssueInterval) {
this.crlIssueInterval = crlIssueInterval;
return this;
}
public X509CAInfoBuilder setCrlOverlapTime(long crlOverlapTime) {
this.crlOverlapTime = crlOverlapTime;
return this;
}
public X509CAInfoBuilder setDeltaCrlPeriod(long deltaCrlPeriod) {
this.deltaCrlPeriod = deltaCrlPeriod;
return this;
}
public X509CAInfoBuilder setCrlPublishers(Collection crlPublishers) {
this.crlPublishers = crlPublishers;
return this;
}
public X509CAInfoBuilder setValidators(Collection validators) {
this.validators = validators;
return this;
}
public X509CAInfoBuilder setUseAuthorityKeyIdentifier(boolean useAuthorityKeyIdentifier) {
this.useAuthorityKeyIdentifier = useAuthorityKeyIdentifier;
return this;
}
public X509CAInfoBuilder setAuthorityKeyIdentifierCritical(boolean authorityKeyIdentifierCritical) {
this.authorityKeyIdentifierCritical = authorityKeyIdentifierCritical;
return this;
}
public X509CAInfoBuilder setUseCrlNumber(boolean useCrlNumber) {
this.useCrlNumber = useCrlNumber;
return this;
}
public X509CAInfoBuilder setCrlNumberCritical(boolean crlNumberCritical) {
this.crlNumberCritical = crlNumberCritical;
return this;
}
public X509CAInfoBuilder setDefaultCrlDistPoint(String defaultCrlDistPoint) {
this.defaultCrlDistPoint = defaultCrlDistPoint;
return this;
}
public X509CAInfoBuilder setDefaultCrlIssuer(String defaultCrlIssuer) {
this.defaultCrlIssuer = defaultCrlIssuer;
return this;
}
public X509CAInfoBuilder setDefaultOcspCerviceLocator(String defaultOcspCerviceLocator) {
this.defaultOcspCerviceLocator = defaultOcspCerviceLocator;
return this;
}
public X509CAInfoBuilder setAuthorityInformationAccess(List authorityInformationAccess) {
this.authorityInformationAccess = authorityInformationAccess;
return this;
}
public X509CAInfoBuilder setCertificateAiaDefaultCaIssuerUri(List certificateAiaDefaultCaIssuerUri) {
this.certificateAiaDefaultCaIssuerUri = certificateAiaDefaultCaIssuerUri;
return this;
}
public X509CAInfoBuilder setNameConstraintsPermitted(List nameConstraintsPermitted) {
this.nameConstraintsPermitted = nameConstraintsPermitted;
return this;
}
public X509CAInfoBuilder setNameConstraintsExcluded(List nameConstraintsExcluded) {
this.nameConstraintsExcluded = nameConstraintsExcluded;
return this;
}
public X509CAInfoBuilder setCaDefinedFreshestCrl(String caDefinedFreshestCrl) {
this.caDefinedFreshestCrl = caDefinedFreshestCrl;
return this;
}
public X509CAInfoBuilder setFinishUser(boolean finishUser) {
this.finishUser = finishUser;
return this;
}
public X509CAInfoBuilder setExtendedCaServiceInfos(Collection extendedCaServiceInfos) {
this.extendedCaServiceInfos = extendedCaServiceInfos;
return this;
}
public X509CAInfoBuilder setUseUtf8PolicyText(boolean useUtf8PolicyText) {
this.useUtf8PolicyText = useUtf8PolicyText;
return this;
}
public X509CAInfoBuilder setApprovals(Map approvals) {
this.approvals = approvals;
return this;
}
public X509CAInfoBuilder setUsePrintableStringSubjectDN(boolean usePrintableStringSubjectDN) {
this.usePrintableStringSubjectDN = usePrintableStringSubjectDN;
return this;
}
public X509CAInfoBuilder setUseLdapDnOrder(boolean useLdapDnOrder) {
this.useLdapDnOrder = useLdapDnOrder;
return this;
}
public X509CAInfoBuilder setUseCrlDistributionPointOnCrl(boolean useCrlDistributionPointOnCrl) {
this.useCrlDistributionPointOnCrl = useCrlDistributionPointOnCrl;
return this;
}
public X509CAInfoBuilder setCrlDistributionPointOnCrlCritical(boolean crlDistributionPointOnCrlCritical) {
this.crlDistributionPointOnCrlCritical = crlDistributionPointOnCrlCritical;
return this;
}
public X509CAInfoBuilder setIncludeInHealthCheck(boolean includeInHealthCheck) {
this.includeInHealthCheck = includeInHealthCheck;
return this;
}
public X509CAInfoBuilder setDoEnforceUniquePublicKeys(boolean doEnforceUniquePublicKeys) {
this.doEnforceUniquePublicKeys = doEnforceUniquePublicKeys;
return this;
}
public X509CAInfoBuilder setDoEnforceUniqueDistinguishedName(boolean doEnforceUniqueDistinguishedName) {
this.doEnforceUniqueDistinguishedName = doEnforceUniqueDistinguishedName;
return this;
}
public X509CAInfoBuilder setDoEnforceUniqueSubjectDNSerialnumber(boolean doEnforceUniqueSubjectDNSerialnumber) {
this.doEnforceUniqueSubjectDNSerialnumber = doEnforceUniqueSubjectDNSerialnumber;
return this;
}
public X509CAInfoBuilder setUseCertReqHistory(boolean useCertReqHistory) {
this.useCertReqHistory = useCertReqHistory;
return this;
}
public X509CAInfoBuilder setUseUserStorage(boolean useUserStorage) {
this.useUserStorage = useUserStorage;
return this;
}
public X509CAInfoBuilder setUseCertificateStorage(boolean useCertificateStorage) {
this.useCertificateStorage = useCertificateStorage;
return this;
}
public X509CAInfoBuilder setAcceptRevocationNonExistingEntry(boolean acceptRevocationNonExistingEntry) {
this.acceptRevocationNonExistingEntry = acceptRevocationNonExistingEntry;
return this;
}
public X509CAInfoBuilder setCmpRaAuthSecret(String cmpRaAuthSecret) {
this.cmpRaAuthSecret = cmpRaAuthSecret;
return this;
}
public X509CAInfoBuilder setKeepExpiredCertsOnCRL(boolean keepExpiredCertsOnCRL) {
this.keepExpiredCertsOnCRL = keepExpiredCertsOnCRL;
return this;
}
public X509CAInfo build() {
return new X509CAInfo(subjectDn, name, status, updateTime, subjectAltName, certificateProfileId, defaultCertProfileId, useNoConflictCertificateData,
encodedValidity, expireTime, caType, signedBy, certificateChain, caToken, description, revocationReason, revocationDate, policies, crlPeriod,
crlIssueInterval, crlOverlapTime, deltaCrlPeriod, crlPublishers, validators, useAuthorityKeyIdentifier, authorityKeyIdentifierCritical,
useCrlNumber, crlNumberCritical, defaultCrlDistPoint, defaultCrlIssuer,
defaultOcspCerviceLocator,
authorityInformationAccess,
certificateAiaDefaultCaIssuerUri,
nameConstraintsPermitted, nameConstraintsExcluded, caDefinedFreshestCrl,
finishUser, extendedCaServiceInfos,
useUtf8PolicyText, approvals, usePrintableStringSubjectDN,
useLdapDnOrder, useCrlDistributionPointOnCrl, crlDistributionPointOnCrlCritical, includeInHealthCheck,
doEnforceUniquePublicKeys, doEnforceUniqueDistinguishedName, doEnforceUniqueSubjectDNSerialnumber,
useCertReqHistory, useUserStorage, useCertificateStorage, acceptRevocationNonExistingEntry,
cmpRaAuthSecret, keepExpiredCertsOnCRL);
}
}
}
