|
![]() |
||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.openpermis.cert.AttributeCertificateExtractorUtility
public final class AttributeCertificateExtractorUtility
Constructor Summary | |
---|---|
private |
AttributeCertificateExtractorUtility()
|
Method Summary | |
---|---|
static PolicyDecisionPoint |
createPolicyDecisionPoint(URL policyCertificate,
CertificateVerifier certificateVerifier)
Creates a policy decision point from the specified attribute certificate and verifies it with the specified certificate verifier. |
private static void |
nullCheck(AttributeCertificate certificate)
|
static X500Principal |
readHolder(AttributeCertificate certificate)
Reads a holder from an AttributeCertificate . |
static X500Principal |
readIssuer(AttributeCertificate certificate)
Reads a issuer from an AttributeCertificate . |
static String |
readPolicy(URL policyCertificate)
Extracts the policy as a string from the specified attribute certificate. |
static String |
readPolicyAttribute(AttributeCertificate certificate)
Reads a policy from an AttributeCertificate . |
static List<RoleAttribute.RoleDefinition> |
readRoleAttribute(AttributeCertificate certificate)
Reads a List of roles from an AttributeCertificate . |
static TimePeriod |
readValidityPeriod(AttributeCertificate certificate)
Reads a TimePeriod from an AttributeCertificate . |
static URI |
toUri(X500Principal principal)
|
static X500Principal |
toX500Principal(URI uri)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
private AttributeCertificateExtractorUtility()
Method Detail |
---|
public static TimePeriod readValidityPeriod(AttributeCertificate certificate)
TimePeriod
from an AttributeCertificate
.
certificate
- an AttributeCertificate
.
TimePeriod
.public static X500Principal readHolder(AttributeCertificate certificate) throws AttributeCertificateException
AttributeCertificate
.
Currently only the entityName syntax is supported.
RFC 3281 allows three different (optional) holder syntaxes: baseCertificateID, entityName and
objectDigestInfo. The meaning is clear if exactly one holder is defined and it is not clear
if more than one are defined. Therefore FRC 3281 recommends to use only one.
certificate
- an AttributeCertificate
.
X500Principal
.
AttributeCertificateException
- indicates an holder reading problem.public static X500Principal readIssuer(AttributeCertificate certificate) throws AttributeCertificateException
AttributeCertificate
.
RFC 3281 defines that exactly one general name must be specified.
certificate
- an AttributeCertificate
.
X500Principal
.
AttributeCertificateException
- indicates an issuer reading problem.public static String readPolicyAttribute(AttributeCertificate certificate) throws AttributeCertificateException
AttributeCertificate
.
certificate
- an AttributeCertificate
.
String
.
AttributeCertificateException
- indicates a reading problem.public static List<RoleAttribute.RoleDefinition> readRoleAttribute(AttributeCertificate certificate) throws AttributeCertificateException
List
of roles from an AttributeCertificate
.
certificate
- an AttributeCertificate
.
List
.
AttributeCertificateException
- indicates a reading problem.public static PolicyDecisionPoint createPolicyDecisionPoint(URL policyCertificate, CertificateVerifier certificateVerifier) throws org.bouncycastle.util.StreamParsingException, IOException, CertificateException, PolicyException, AttributeCertificateException
policyCertificate
- The URL of the attribute certificate containing the policy.certificateVerifier
- The certificate verifier used to verify the attribute certificate
containing the policy.
org.bouncycastle.util.StreamParsingException
- Thrown if an attribute certificate cannot be parsed.
IOException
- Thrown if the attribute certificate cannot be read.
CertificateException
- Thrown if a certificate cannot be verified.
PolicyException
- Thrown if the policy cannot be parsed.
AttributeCertificateException
- if the policy cannot be parsed.public static String readPolicy(URL policyCertificate) throws IOException, AttributeCertificateException
policyCertificate
- The URL of the attribute certificate containing the policy.
IOException
- Thrown if the attribute certificate cannot be read.
AttributeCertificateException
- if the policy cannot be parsed.public static X500Principal toX500Principal(URI uri)
public static URI toUri(X500Principal principal)
private static void nullCheck(AttributeCertificate certificate)
|
![]() |
||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
PERMIS Role Based Access Control 0.3.0 (Build 14)
2009/05/08 09:06:22
Copyright (c) 2002-2007 Ergon Informatik AG