org.cesecore.certificates.certificate.request.SimpleRequestMessage Maven / Gradle / Ivy
/*************************************************************************
* *
* CESeCore: CE Security Core *
* *
* This software is free software; you can redistribute it and/or *
* modify it under the terms of the GNU Lesser General Public *
* License as published by the Free Software Foundation; either *
* version 2.1 of the License, or any later version. *
* *
* See terms of license at gnu.org. *
* *
*************************************************************************/
package org.cesecore.certificates.certificate.request;
import java.math.BigInteger;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.cert.Certificate;
import java.util.ArrayList;
import java.util.Date;
import java.util.List;
import org.apache.log4j.Logger;
import org.bouncycastle.asn1.x500.X500Name;
import org.bouncycastle.asn1.x509.Extensions;
import org.bouncycastle.cms.CMSSignedGenerator;
import org.cesecore.keys.util.PublicKeyWrapper;
import org.cesecore.util.CeSecoreNameStyle;
/**
* Class to handle simple requests from only a public key, all required parameters must be set.
*
* @version $Id: SimpleRequestMessage.java 28201 2018-02-07 08:33:29Z andresjakobs $
*/
public class SimpleRequestMessage implements RequestMessage {
private static final Logger log = Logger.getLogger(SimpleRequestMessage.class);
/**
* Determines if a de-serialized file is compatible with this class.
*
* Maintainers must change this value if and only if the new version
* of this class is not compatible with old versions. See Sun docs
* for details.
*
*/
static final long serialVersionUID = 1L;
/** The public key */
protected PublicKeyWrapper pubkey;
/** manually set password */
protected String password = null;
/** manually set username */
protected String username = null;
/** If the CA certificate should be included in the response or not, default to true = yes */
protected boolean includeCACert = true;
/** preferred digest algorithm to use in replies, if applicable */
private transient String preferredDigestAlg = CMSSignedGenerator.DIGEST_SHA1;
/** Type of error */
private int error = 0;
/** Error text */
private String errorText = null;
/** Issue DN, if set manually */
private String issuerDN = null;
/** request X500Name, if set manually */
private String requestDN = null;
/** Requested certificate extensions */
private Extensions x509Extensions = null;
private Date validityNotBefore = null;
private Date validityNotAfter = null;
private List additionalCaCertificates = new ArrayList();
private List additionalExtraCertsCertificates = new ArrayList();
/**
* Constructs a new Simple message handler object.
* @param pubkey the public key to be certified
* @param username username of the EJBCA user
* @param password password of the EJBCA user
*/
public SimpleRequestMessage(final PublicKey pubkey, final String username, final String password) {
this.pubkey = new PublicKeyWrapper(pubkey);
this.username = username;
this.password = password;
}
/**
* Constructs a new Simple message handler object.
* @param pubkey the public key to be certified
* @param username username of the EJBCA user
* @param password password of the EJBCA user
* @param validityNotAfter the end validity of this certificate
*/
public SimpleRequestMessage(final PublicKey pubkey, final String username, final String password, final Date validityNotAfter) {
this.pubkey = new PublicKeyWrapper(pubkey);
this.username = username;
this.password = password;
this.validityNotAfter = validityNotAfter;
}
/**
* Constructs a new Simple message handler object.
* @param pubkey the public key to be certified
* @param username username of the EJBCA user
* @param password password of the EJBCA user
* @param the end validity of this certificate
*/
public SimpleRequestMessage(final PublicKey pubkey, final String username, final String password, final Date validityNotBefore, final Date validityNotAfter) {
this.pubkey = new PublicKeyWrapper(pubkey);
this.username = username;
this.password = password;
this.validityNotBefore = validityNotBefore;
this.validityNotAfter = validityNotAfter;
}
@Override
public PublicKey getRequestPublicKey() throws InvalidKeyException, NoSuchAlgorithmException, NoSuchProviderException {
return pubkey.getPublicKey();
}
/** set a password
*/
public void setPassword(String pwd) {
this.password = pwd;
}
@Override
public String getPassword() {
return password;
}
/** set a username
*/
public void setUsername(String username) {
this.username = username;
}
@Override
public String getUsername() {
return username;
}
@Override
public String getIssuerDN() {
return issuerDN;
}
/** Sets the issuer DN manually, since it can not be contained in the request for
* this type of simple request message
* @param dn issuerDN, in CertTools.stringToBCDnString() format
*/
public void setIssuerDN(String dn) {
this.issuerDN = dn;
}
@Override
public BigInteger getSerialNo() {
return null;
}
@Override
public String getCRLIssuerDN() {
return null;
}
@Override
public BigInteger getCRLSerialNo() {
return null;
}
@Override
public String getRequestDN() {
return null;
}
@Override
public X500Name getRequestX500Name() {
if (this.requestDN == null) {
return null;
}
return new X500Name(new CeSecoreNameStyle(), this.requestDN);
}
public void setRequestDN(String dn) {
this.requestDN = dn;
}
@Override
public String getRequestAltNames() {
return null;
}
@Override
public Date getRequestValidityNotBefore() {
return validityNotBefore;
}
@Override
public Date getRequestValidityNotAfter() {
return validityNotAfter;
}
@Override
public Extensions getRequestExtensions() {
return x509Extensions;
}
/** Sets request extensions, if any */
public void setRequestExtensions(final Extensions extensions) {
this.x509Extensions = extensions;
}
@Override
public boolean verify()
throws InvalidKeyException, NoSuchAlgorithmException, NoSuchProviderException {
return true;
}
@Override
public boolean requireKeyInfo() {
return false;
}
@Override
public void setKeyInfo(Certificate cert, PrivateKey key, String Provider) {
}
@Override
public int getErrorNo() {
return error;
}
@Override
public String getErrorText() {
return errorText;
}
@Override
public String getSenderNonce() {
return null;
}
@Override
public String getTransactionId() {
return null;
}
@Override
public byte[] getRequestKeyInfo() {
return null;
}
@Override
public String getPreferredDigestAlg() {
return preferredDigestAlg;
}
@Override
public boolean includeCACert() {
return includeCACert;
}
@Override
public int getRequestType() {
return 0;
}
@Override
public int getRequestId() {
return 0;
}
@Override
public void setResponseKeyInfo(PrivateKey key, String provider) {
//These values are never used for this type of message
if(log.isDebugEnabled()) {
log.debug("Key and provider were set for a SimpleRequestMessage. These values are not used and will be ignored.");
}
}
@Override
public List getAdditionalCaCertificates() {
return additionalCaCertificates;
}
@Override
public void setAdditionalCaCertificates(final List certificates) {
this.additionalCaCertificates = certificates;
}
@Override
public List getAdditionalExtraCertsCertificates() {
return additionalExtraCertsCertificates;
}
@Override
public void setAdditionalExtraCertsCertificates(List additionalExtraCertsCertificates) {
this.additionalExtraCertsCertificates = additionalExtraCertsCertificates;
}
} // SimpleRequestMessage