com.ibm.security.certclient.util

Class PkCASetUp

  1. java.lang.Object
  2. extended bycom.ibm.security.certclient.util.PkCASetUp
All implemented interfaces:
PkAttrKind, PkCertConstants, PkConstants, PkHttpConstants, PkPollConstants, PkRevoConstants

  1. public class PkCASetUp
  2. extends Object
  3. implements PkConstants
This utility class generates and maintains a key-pair and a self-signed certificate to go with it.

Field Summary

Modifier and Type Field and Description
  1. static
  2. int
CA
  1. static
  2. int
CA_ALL
  1. static
  2. int
CERT
  1. static
  2. int
CRL
  1. static
  2. int
SERVER
Fields inherited from interface com.ibm.security.certclient.base.PkConstants
BIG_ONE, BIG_TWO, PKI_DB_CONN, PKI_DB_CONNS, PKI_ISSUER_DN, PKI_ISSUER_HOST, PKI_ISSUER_PORT, PKI_OPER, PKI_ROOT
Fields inherited from interface com.ibm.security.certclient.base.PkAttrKind
ATTR_APPLIED, ATTR_APPROVED, ATTR_NAMES
Fields inherited from interface com.ibm.security.certclient.base.PkCertConstants
CERT_ALGORITHM_ID, CERT_ALGORITHM_NAME, CERT_ALTERNATIVE_NAME, CERT_AUTH_KEY_IDENTIFIER, CERT_BASIC_CONSTRAINTS, CERT_CA_PUBS, CERT_CA_VENDOR, CERT_CMP_VERSION, CERT_CRL_DISTRIBUTION_POINTS, CERT_EXT, CERT_EXT_KEY_USAGE, CERT_HIERARCHICAL, CERT_INIT_PWD, CERT_ISSUER, CERT_ISSUER_ID, CERT_KEY, CERT_KEY_IDENTIFIER, CERT_KEY_TYPE, CERT_KEY_USAGE, CERT_MESSAGE_PROTECTED, CERT_MESSAGE_PROTECTION_ALGORITHM_ID, CERT_MESSAGE_PROTECTION_ALGORITHM_NAME, CERT_MESSAGE_PROTECTION_KEY, CERT_MESSAGE_PROTECTION_PWD, CERT_NAME_CONSTRAINTS, CERT_NETSCAPE_CERT_TYPE, CERT_NOT_AFTER, CERT_NOT_BEFORE, CERT_OPER, CERT_OUTFILENAME, CERT_POLICY_CONSTRAINTS, CERT_POLICY_MAPPINGS, CERT_PRIVATE_KEY, CERT_PRIVATE_KEY_EE, CERT_PRIVATE_KEY_USAGE, CERT_PROVIDER, CERT_PUBLISH_IMMEDIATELY, CERT_RECIPIENT_DN, CERT_REP_HDR, CERT_REQ_ID, CERT_REVO_PUBLIC_KEY, CERT_REVOCATION_PASSPHRASE, CERT_ROOT, CERT_SENDER_KID, CERT_SERIAL_NUMBER, CERT_SUBJECT, CERT_SUBJECT_ALTERNATIVE_NAME, CERT_SUBJECT_ID, CERT_TIME_TO_CHECK_BACK, CERT_VENDOR_TPKI_RA_ENROLL, CERT_VERSION, CERT_VERSION_1, CERT_VERSION_2, CERT_VERSION_3, CERT_X509, KEY_STORE_CERT_ALIAS, KEY_STORE_ENTRY_PWD, KEY_STORE_INIT_CERT_ALIAS, KEY_STORE_INIT_ENTRY_PWD, MAKE_CONF_REQUEST_MESSAGE, MAX_SUBJECT_NAME_LENGTH_TO_STORE_IN_TABLES, sccsid
Fields inherited from interface com.ibm.security.certclient.base.PkRevoConstants
REVO_BAD_SINCE_DATE, REVO_CRL_EXT, REVO_OPER, REVO_PUBLISH_IMMEDIATELY, REVO_REASON, REVO_ROOT
Fields inherited from interface com.ibm.security.certclient.base.PkHttpConstants
HTTP_BASE_NAME, HTTP_FILE_NAME, HTTP_METHOD, HTTP_ROOT, HTTP_VERSION
Fields inherited from interface com.ibm.security.certclient.base.PkPollConstants
POLL_REFERENCE, POLL_ROOT, POLL_TIME_TO_CHECK_BACK

Constructor Summary

Constructor and Description
PkCASetUp(String name,String keyType,String sigAlg,int keyBits,long validity,String keyUsageType)
Creates a key-pair and self-signed certificate object for a particular key type and signature algorithm.
PkCASetUp(String name,String keyType,String sigAlg,int keyBits,long validity,String[] keyUsageType,String providerName)

Method Summary

Modifier and Type Method and Description
  1. static
  2. byte[]
computeKID(PublicKey key,boolean shortValue)
  1. X509Certificate
getCertificate()
  1. PrivateKey
getPrivateKey()
  1. String
getSigAlg()
  1. void
keyPairGenerate(String keyType,int keyBits,String providerName)
  1. X509Certificate
recertify(X509Certificate b,int certType,PrivateKey pKey,Date notBefore,Date notAfter,String providerName)
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

CERT

  1. public static final int CERT
See Also:

SERVER

  1. public static final int SERVER
See Also:

CRL

  1. public static final int CRL
See Also:

CA

  1. public static final int CA
See Also:

CA_ALL

  1. public static final int CA_ALL
See Also:

Constructor Detail

PkCASetUp

  1. public PkCASetUp(String name,
  2. String keyType,
  3. String sigAlg,
  4. int keyBits,
  5. long validity,
  6. String keyUsageType)
  7. throws GeneralSecurityException
  8. IOException
  9. PkException
Creates a key-pair and self-signed certificate object for a particular key type and signature algorithm.
Parameters:
name - the x500 name to use for the self-signed certificate
keyType - type of key, e.g. "RSA", "DSA"
sigAlg - name of the signature algorithm, e.g. "MD5WithRSA", "MD2WithRSA", "SHAwithDSA"
keyBits - key size for generated key-pair
validity - certificate validity in seconds
Throws:

PkCASetUp

  1. public PkCASetUp(String name,
  2. String keyType,
  3. String sigAlg,
  4. int keyBits,
  5. long validity,
  6. String[] keyUsageType,
  7. String providerName)
  8. throws GeneralSecurityException
  9. IOException
  10. PkException
Throws:

Method Detail

getPrivateKey

  1. public PrivateKey getPrivateKey( )

getCertificate

  1. public X509Certificate getCertificate( )

getSigAlg

  1. public String getSigAlg()

computeKID

  1. public static byte[] computeKID( PublicKey key,
  2. boolean shortValue)
  3. throws NoSuchAlgorithmException
Throws:

recertify

  1. public X509Certificate recertify( X509Certificate b,
  2. int certType,
  3. PrivateKey pKey,
  4. Date notBefore,
  5. Date notAfter,
  6. String providerName)
  7. throws GeneralSecurityException
Throws:

keyPairGenerate

  1. public void keyPairGenerate(String keyType,
  2. int keyBits,
  3. String providerName)
  4. throws GeneralSecurityException
Throws: