org.simplejavamail.utils.mail.smime.SmimeKey Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of utils-mail-smime Show documentation
Show all versions of utils-mail-smime Show documentation
An S/MIME library for JavaMail
/*
* Copyright © 2021 Benny Bottema ([email protected])
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package org.simplejavamail.utils.mail.smime;
import java.security.Principal;
import java.security.PrivateKey;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
import java.util.StringTokenizer;
/**
* A wrapper around a {@link PrivateKey} and a chain of {@link X509Certificate
* X509Certificates} used to sign or decrypt a MIME message.
*
* @author Allen Petersen (akp at sourceforge dot net)
* @author Torsten Krause (tk at markenwerk dot net)
* @since 1.0.0
*/
public class SmimeKey {
private final PrivateKey privateKey;
private final X509Certificate[] certificateChain;
private List addresses;
/**
* Create a new {@code SmimeKey} with the given private key and certificate
* chain.
*
* @param privateKey
* The {@link PrivateKey} of this {@code SmimeKey}
* @param certificateChain
* The chain of {@link X509Certificate X509Certificates} of this
* {@code SmimeKey} starting with the certificate that holds the
* public key that corresponds to the given private key and
* ending with the trust anchor.
*/
public SmimeKey(PrivateKey privateKey, X509Certificate... certificateChain) {
this.privateKey = privateKey;
this.certificateChain = certificateChain;
}
/**
* Returns the private key of this {@code SmimeKey}.
*
* @return The {@link PrivateKey}.
*/
public PrivateKey getPrivateKey() {
return privateKey;
}
/**
* Returns the certificate that holds the public key that corresponds to the
* private key of this {@code SmimeKey}.
*
* @return The {@link X509Certificate}.
*/
public X509Certificate getCertificate() {
return certificateChain[0];
}
/**
* Returns the chain of certificates of this {@code SmimeKey} starting with
* the certificate that holds the public key that corresponds to the private
* key of this {@code SmimeKey} and ending with the trust anchor.
*
* @return The chain of {@link X509Certificate X509Certificates}.
*/
public X509Certificate[] getCertificateChain() {
return certificateChain != null ? certificateChain.clone() : null;
}
/**
* Compiles and returns the list of email address associated with the
* {@link #getCertificate() certificate} of this {@code SmimeKey} by
* inspecting the subjects distinguished name.
*
* @return A {@link Collections#unmodifiableList(List) unmodifiable list} of
* email addresses.
*/
public List getAssociatedAddresses() {
if (addresses == null) {
extractAssociatedAddresses();
}
return addresses;
}
private void extractAssociatedAddresses() {
List addresses = new ArrayList<>();
try {
X509Certificate certificate = getCertificate();
if (null != certificate) {
Principal principal = certificate.getSubjectX500Principal();
if (null != principal) {
String name = principal.getName();
StringTokenizer tokenizer = new StringTokenizer(name, ",");
while (tokenizer.hasMoreTokens()) {
String next = tokenizer.nextToken();
if (next.startsWith("E="))
addresses.add(next.substring(2));
}
}
}
} catch (Exception e) {
}
this.addresses = Collections.unmodifiableList(addresses);
}
}