Example usage for org.bouncycastle.pkcs.jcajce JcaPKCS10CertificationRequest isSignatureValid

List of usage examples for org.bouncycastle.pkcs.jcajce JcaPKCS10CertificationRequest isSignatureValid

  1. HOME
  2. Java
  3. org.bouncycastle
  4. org.bouncycastle.pkcs.jcajce.*
  5. JcaPKCS10CertificationRequest
  6. isSignatureValid

Introduction

In this page you can find the example usage for org.bouncycastle.pkcs.jcajce JcaPKCS10CertificationRequest isSignatureValid.

Prototype

public boolean isSignatureValid(ContentVerifierProvider verifierProvider) throws PKCSException

Source Link

Document

Validate the signature on the PKCS10 certification request in this holder.

Usage

From source file:org.picketlink.pki.internal.DefaultCertificateAuthority.java

License:Open Source License

@Override
public CertificateType issue(CertificateRequest request) {
    try {/* w ww .j  a  va 2s.co m*/
        IdentityManager identityManager = getIdentityManager();
        JcaPKCS10CertificationRequest certificationRequest = new JcaPKCS10CertificationRequest(
                request.getMessage());
        User user = BasicModel.getUser(identityManager, request.getSubjectName());
        KeyPair userKeyPair = this.keyAuthority.getKeyPair(user);
        ContentVerifierProvider contentVerifierProvider = new JcaContentVerifierProviderBuilder()
                .setProvider("BC").build(userKeyPair.getPublic());

        if (certificationRequest.isSignatureValid(contentVerifierProvider)) {
            return issue(user);
        }

        throw new RuntimeException("Invalid CSR.");
    } catch (Exception e) {
        throw new RuntimeException("Could not issue certificate.", e);
    }
}