List of usage examples for org.bouncycastle.asn1.x500 X500Name getInstance
public static X500Name getInstance(Object obj)
From source file:org.xipki.ca.client.impl.CAClientImpl.java
License:Open Source License
@Override public byte[] envelopeRevocation(final X509Certificate cert, final int reason) throws CAClientException { X500Name issuer = X500Name.getInstance(cert.getIssuerX500Principal().getEncoded()); return envelopeRevocation(issuer, cert.getSerialNumber(), reason); }
From source file:org.xipki.ca.client.impl.CAClientImpl.java
License:Open Source License
@Override public CertIdOrError unrevokeCert(final X509Certificate cert, final RequestResponseDebug debug) throws CAClientException, PKIErrorException { X500Name issuer = X500Name.getInstance(cert.getIssuerX500Principal().getEncoded()); return unrevokeCert(issuer, cert.getSerialNumber(), debug); }
From source file:org.xipki.ca.client.impl.CAClientImpl.java
License:Open Source License
@Override public CertIdOrError removeCert(final X509Certificate cert, final RequestResponseDebug debug) throws CAClientException, PKIErrorException { X500Name issuer = X500Name.getInstance(cert.getIssuerX500Principal().getEncoded()); return removeCert(issuer, cert.getSerialNumber(), debug); }
From source file:org.xipki.ca.client.impl.CAConf.java
License:Open Source License
public void setCert(final X509Certificate cert) { this.cert = cert; if (cert != null) { this.subject = X500Name.getInstance(cert.getSubjectX500Principal().getEncoded()); } else {/*from w w w.ja v a 2s . c om*/ this.subject = null; } }
From source file:org.xipki.ca.client.impl.CmpRequestor.java
License:Open Source License
public CmpRequestor(final X509Certificate requestorCert, final X509Certificate responderCert, final SecurityFactory securityFactory) { ParamChecker.assertNotNull("requestorCert", requestorCert); ParamChecker.assertNotNull("securityFactory", securityFactory); this.requestor = null; this.securityFactory = securityFactory; this.signRequest = false; X500Name x500Name = X500Name.getInstance(requestorCert.getSubjectX500Principal().getEncoded()); this.sender = new GeneralName(x500Name); if (responderCert != null) { setResponderCert(responderCert); }/*from w ww . j av a 2 s . com*/ }
From source file:org.xipki.ca.client.impl.CmpRequestor.java
License:Open Source License
public CmpRequestor(ConcurrentContentSigner requestor, final X509Certificate responderCert, final SecurityFactory securityFactory, final boolean signRequest) { ParamChecker.assertNotNull("requestor", requestor); ParamChecker.assertNotNull("securityFactory", securityFactory); this.requestor = requestor; this.securityFactory = securityFactory; this.signRequest = signRequest; X500Name x500Name = X500Name.getInstance(requestor.getCertificate().getSubjectX500Principal().getEncoded()); this.sender = new GeneralName(x500Name); if (responderCert != null) { setResponderCert(responderCert); }/*from ww w. j a va 2 s. c o m*/ }
From source file:org.xipki.ca.client.impl.CmpRequestor.java
License:Open Source License
private void setResponderCert(final X509Certificate responderCert) { ParamChecker.assertNotNull("responderCert", responderCert); this.responderCert = responderCert; X500Name subject = X500Name.getInstance(responderCert.getSubjectX500Principal().getEncoded()); this.recipient = new GeneralName(subject); this.c14nRecipientName = getSortedRFC4519Name(subject); }
From source file:org.xipki.ca.client.shell.RemoveCertCommand.java
License:Open Source License
@Override protected Object _doExecute() throws Exception { if (certFile == null && (issuerCertFile == null || getSerialNumber() == null)) { throw new IllegalCmdParamException("either cert or (issuer, serial) must be specified"); }//from ww w .j a v a2 s. c om X509Certificate caCert = null; if (issuerCertFile != null) { caCert = X509Util.parseCert(issuerCertFile); } CertIdOrError certIdOrError; if (certFile != null) { X509Certificate cert = X509Util.parseCert(certFile); if (caCert != null) { String errorMsg = checkCertificate(cert, caCert); if (errorMsg != null) { throw new CmdFailure(errorMsg); } } RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.removeCert(cert, debug); } finally { saveRequestResponse(debug); } } else { X500Name issuer = X500Name.getInstance(caCert.getSubjectX500Principal().getEncoded()); RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.removeCert(issuer, getSerialNumber(), debug); } finally { saveRequestResponse(debug); } } if (certIdOrError.getError() != null) { PKIStatusInfo error = certIdOrError.getError(); throw new UnexpectedException("removing certificate failed: " + error); } else { out("removed certificate"); } return null; }
From source file:org.xipki.ca.client.shell.RevokeCertCommand.java
License:Open Source License
@Override protected Object _doExecute() throws Exception { if (certFile == null && (issuerCertFile == null || getSerialNumber() == null)) { throw new IllegalCmdParamException("either cert or (issuer, serial) must be specified"); }//from ww w . jav a2 s .c o m CRLReason crlReason = CRLReason.getInstance(reason); if (crlReason == null) { throw new IllegalCmdParamException("invalid reason " + reason); } if (CRLReason.PERMITTED_CLIENT_CRLREASONS.contains(crlReason) == false) { throw new IllegalCmdParamException("reason " + reason + " is not permitted"); } CertIdOrError certIdOrError; X509Certificate caCert = null; if (issuerCertFile != null) { caCert = X509Util.parseCert(issuerCertFile); } Date invalidityDate = null; if (isNotBlank(invalidityDateS)) { invalidityDate = DateUtil.parseUTCTimeyyyyMMddhhmmss(invalidityDateS); } if (certFile != null) { X509Certificate cert = X509Util.parseCert(certFile); if (caCert != null) { String errorMsg = checkCertificate(cert, caCert); if (errorMsg != null) { throw new CmdFailure(errorMsg); } } RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.revokeCert(cert, crlReason.getCode(), invalidityDate, debug); } finally { saveRequestResponse(debug); } } else { X500Name issuer = X500Name.getInstance(caCert.getSubjectX500Principal().getEncoded()); RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.revokeCert(issuer, getSerialNumber(), crlReason.getCode(), invalidityDate, debug); } finally { saveRequestResponse(debug); } } if (certIdOrError.getError() != null) { PKIStatusInfo error = certIdOrError.getError(); throw new CmdFailure("revocation failed: " + error); } else { out("revoked certificate"); } return null; }
From source file:org.xipki.ca.client.shell.UnrevokeCertCommand.java
License:Open Source License
@Override protected Object _doExecute() throws Exception { if (certFile == null && (issuerCertFile == null || getSerialNumber() == null)) { throw new IllegalCmdParamException("either cert or (issuer, serial) must be specified"); }/*from w ww .j a v a 2 s .co m*/ X509Certificate caCert = null; if (issuerCertFile != null) { caCert = X509Util.parseCert(issuerCertFile); } CertIdOrError certIdOrError; if (certFile != null) { X509Certificate cert = X509Util.parseCert(certFile); if (caCert != null) { String errorMsg = checkCertificate(cert, caCert); if (errorMsg != null) { throw new CmdFailure(errorMsg); } } RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.unrevokeCert(cert, debug); } finally { saveRequestResponse(debug); } } else { X500Name issuer = X500Name.getInstance(caCert.getSubjectX500Principal().getEncoded()); RequestResponseDebug debug = getRequestResponseDebug(); try { certIdOrError = caClient.unrevokeCert(issuer, getSerialNumber(), debug); } finally { saveRequestResponse(debug); } } if (certIdOrError.getError() != null) { PKIStatusInfo error = certIdOrError.getError(); throw new CmdFailure("releasing revocation failed: " + error); } else { out("unrevoked certificate"); } return null; }