TlsCertificateAuthorityManager tlsCertificateAuthorityManager = new TlsCertificateAuthorityManager(standaloneConfig); KeyStore.PrivateKeyEntry privateKeyEntry = tlsCertificateAuthorityManager.getOrGenerateCertificateAuthority(); certificate = (X509Certificate) privateKeyEntry.getCertificateChain()[0]; caKeyPair = new KeyPair(certificate.getPublicKey(), privateKeyEntry.getPrivateKey());
if (entry instanceof KeyStore.PrivateKeyEntry) { final KeyStore.PrivateKeyEntry privateKeyEntry = (KeyStore.PrivateKeyEntry) entry; final X509Certificate[] certificateChain = X500.asX509CertificateArray(privateKeyEntry.getCertificateChain()); final X509Certificate firstCert = certificateChain[0]; final PrivateKey privateKey = privateKeyEntry.getPrivateKey();
Certificate[] certificateChain = privateKeyEntry.getCertificateChain(); if (certificateChain.length != 1) { throw new IOException("Expected root ca cert to be only certificate in chain");
/** * {@inheritDoc} */ public List<X509Certificate> getIdentityCertificateChain() { IdPIdentity identity = findIdentity(); List<X509Certificate> identityCertificateChain = new LinkedList<X509Certificate>(); if (null == identity) { return identityCertificateChain; } Certificate[] certificateChain = identity.getPrivateKeyEntry() .getCertificateChain(); if (null == certificateChain) { return identityCertificateChain; } for (Certificate certificate : certificateChain) { identityCertificateChain.add((X509Certificate) certificate); } return identityCertificateChain; }
/** Cofirma un sobre digital CMS. * @param sign Sobre digital CMS ya firmado * @param algorithm Algoritmo de firma a usar * @param keyEntry ENtrada de clave privada para la firma * @return Sobre cofirmado * @throws AOException Si ocurre cualquier problema durante el proceso */ public byte[] cosign(final byte[] sign, final String algorithm, final PrivateKeyEntry keyEntry) throws AOException { // tipos de datos a firmar. if (this.dataTypeOID == null) { this.dataTypeOID = PKCSObjectIdentifiers.data.getId(); } // Cofirma de la firma usando unicamente el fichero de firmas. try { return new CoSignerEnveloped().coSigner(algorithm, (X509Certificate[]) keyEntry.getCertificateChain(), sign, this.dataTypeOID, keyEntry, this.atrib, this.uatrib, null); } catch (final Exception e) { throw new AOException("Error generando la Cofirma PKCS#7", e); //$NON-NLS-1$ } }
@Override public X509Certificate[] getCertificateChain(String alias) { if (alias == null) { return null; } if (hash.containsKey(alias)) { Certificate[] certs = hash.get(alias).getCertificateChain(); if (certs[0] instanceof X509Certificate) { X509Certificate[] xcerts = new X509Certificate[certs.length]; for (int i = 0; i < certs.length; i++) { xcerts[i] = (X509Certificate) certs[i]; } return xcerts; } } return null; }
@Override public X509Certificate[] getCertificateChain(String alias) { if (alias == null) { return null; } if (hash.containsKey(alias)) { Certificate[] certs = hash.get(alias).getCertificateChain(); if (certs[0] instanceof X509Certificate) { X509Certificate[] xcerts = new X509Certificate[certs.length]; for (int i = 0; i < certs.length; i++) { xcerts[i] = (X509Certificate) certs[i]; } return xcerts; } } return null; }
/** * Return the {@link X509Certificate} chain for specified identity * * @param identity * identity to get chain from * @return the certificate chain. */ public static List<X509Certificate> getCertificateChain( KeyStore.PrivateKeyEntry identity) { List<X509Certificate> certificateChain = new LinkedList<X509Certificate>(); for (java.security.cert.Certificate certificate : identity .getCertificateChain()) { certificateChain.add((X509Certificate) certificate); } return certificateChain; }
public X509Certificate[] getCertificateChain(String alias) { if (alias == null) { return null; } if (hash.containsKey(alias)) { Certificate[] certs = hash.get(alias).getCertificateChain(); if (certs[0] instanceof X509Certificate) { X509Certificate[] xcerts = new X509Certificate[certs.length]; for (int i = 0; i < certs.length; i++) { xcerts[i] = (X509Certificate) certs[i]; } return xcerts; } } return null; }
public X509Certificate[] getCertificateChain(String alias) { if (alias == null) { return null; } if (hash.containsKey(alias)) { Certificate[] certs = hash.get(alias).getCertificateChain(); if (certs[0] instanceof X509Certificate) { X509Certificate[] xcerts = new X509Certificate[certs.length]; for (int i = 0; i < certs.length; i++) { xcerts[i] = (X509Certificate) certs[i]; } return xcerts; } } return null; }
/** * The default constructor for KSPrivateKeyEntry. */ public KSPrivateKeyEntry(final PrivateKeyEntry privateKeyEntry) { certificate = (X509Certificate) privateKeyEntry.getCertificate(); final List<X509Certificate> x509CertificateList = new ArrayList<X509Certificate>(); final Certificate[] simpleCertificateChain = privateKeyEntry.getCertificateChain(); for (final Certificate certificate : simpleCertificateChain) { x509CertificateList.add((X509Certificate) certificate); } final X509Certificate[] certificateChain_ = new X509Certificate[x509CertificateList.size()]; certificateChain = x509CertificateList.toArray(certificateChain_); privateKey = privateKeyEntry.getPrivateKey(); }
public X509CertificateChainPrivateCredential get() throws ConfigXMLParseException { final KeyStore.Entry entry = entrySupplier.get(); if (entry == null) { throw xmlLog.keyStoreEntryMissing(location, "unknown"); } if (entry instanceof KeyStore.PrivateKeyEntry) { final KeyStore.PrivateKeyEntry privateKeyEntry = (KeyStore.PrivateKeyEntry) entry; final X509Certificate[] certificateChain = X500.asX509CertificateArray(privateKeyEntry.getCertificateChain()); return new X509CertificateChainPrivateCredential(privateKeyEntry.getPrivateKey(), certificateChain); } throw xmlLog.xmlInvalidKeyStoreEntryType(location, "unknown", KeyStore.PrivateKeyEntry.class, entry.getClass()); } }
public X509CertificateChainPrivateCredential get() throws ConfigXMLParseException { final KeyStore.Entry entry = entrySupplier.get(); if (entry == null) { throw xmlLog.keyStoreEntryMissing(location, "unknown"); } if (entry instanceof KeyStore.PrivateKeyEntry) { final KeyStore.PrivateKeyEntry privateKeyEntry = (KeyStore.PrivateKeyEntry) entry; final X509Certificate[] certificateChain = X500.asX509CertificateArray(privateKeyEntry.getCertificateChain()); return new X509CertificateChainPrivateCredential(privateKeyEntry.getPrivateKey(), certificateChain); } throw xmlLog.xmlInvalidKeyStoreEntryType(location, "unknown", KeyStore.PrivateKeyEntry.class, entry.getClass()); } }
public X509Certificate[] getCertificateChain(String alias) { PrivateKeyEntry entry = getPrivateKeyEntry(alias); return entry == null ? null : (X509Certificate[])entry.getCertificateChain(); }
@Override public X509Certificate[] getCertificateChain(String alias) { KeyStore.PrivateKeyEntry keyEntry = privateKeyHash.get(alias); if (keyEntry == null) { return null; } Certificate[] certs = keyEntry.getCertificateChain(); if (certs.length > 0 && certs[0] instanceof X509Certificate) { return Arrays.copyOf(certs, certs.length, X509Certificate[].class); } return null; }
@Override public X509Certificate[] getCertificateChain(String alias) { KeyStore.PrivateKeyEntry keyEntry = privateKeyHash.get(alias); if (keyEntry == null) { return null; } Certificate[] certs = keyEntry.getCertificateChain(); if (certs.length > 0 && certs[0] instanceof X509Certificate) { return Arrays.copyOf(certs, certs.length, X509Certificate[].class); } return null; }
final Certificate[] certificateChain = privateKeyEntry.getCertificateChain(); final X509Certificate[] x509Certificates = X500.asX509CertificateArray(certificateChain); return credentialType.cast(new X509CertificateChainPrivateCredential(privateKey, x509Certificates));
KeyStore.PrivateKeyEntry prE = (KeyStore.PrivateKeyEntry) entry; engineSetKeyEntry(alias, prE.getPrivateKey(), passW, prE .getCertificateChain()); return;
/** * Convert a key store entry into a credential object. * * @param keyStoreEntry the key store entry to convert (must not be {@code null}) * @return the corresponding credential, or {@code null} if the entry type is unrecognized */ static Credential fromKeyStoreEntry(KeyStore.Entry keyStoreEntry) { Assert.checkNotNullParam("keyStoreEntry", keyStoreEntry); if (keyStoreEntry instanceof PasswordEntry) { return new PasswordCredential(((PasswordEntry) keyStoreEntry).getPassword()); } else if (keyStoreEntry instanceof KeyStore.PrivateKeyEntry) { return new X509CertificateChainPrivateCredential(((KeyStore.PrivateKeyEntry) keyStoreEntry).getPrivateKey(), X500.asX509CertificateArray(((KeyStore.PrivateKeyEntry) keyStoreEntry).getCertificateChain())); } else if (keyStoreEntry instanceof KeyStore.TrustedCertificateEntry) { return new X509CertificateChainPublicCredential((X509Certificate) ((KeyStore.TrustedCertificateEntry) keyStoreEntry).getTrustedCertificate()); } else if (keyStoreEntry instanceof KeyStore.SecretKeyEntry) { return new SecretKeyCredential(((KeyStore.SecretKeyEntry) keyStoreEntry).getSecretKey()); } else { return null; } } }
public X509CertificateChainPrivateCredential get() throws ConfigXMLParseException { final KeyStore.Entry entry = entrySupplier.get(); if (entry == null) { throw xmlLog.keyStoreEntryMissing(location, "unknown"); } if (entry instanceof KeyStore.PrivateKeyEntry) { final KeyStore.PrivateKeyEntry privateKeyEntry = (KeyStore.PrivateKeyEntry) entry; final X509Certificate[] certificateChain = X500.asX509CertificateArray(privateKeyEntry.getCertificateChain()); return new X509CertificateChainPrivateCredential(privateKeyEntry.getPrivateKey(), certificateChain); } throw xmlLog.xmlInvalidKeyStoreEntryType(location, "unknown", KeyStore.PrivateKeyEntry.class, entry.getClass()); } }