@Override public KeyCertPair createPrivateKeyAndCert(String type, SignerConf conf, X509Certificate cert) throws ObjectCreationException { conf.putConfEntry("parallelism", Integer.toString(1)); X509Certificate[] certs = null; if (cert != null) { certs = new X509Certificate[]{cert}; } ConcurrentContentSigner signer = signerFactoryRegister.newSigner(this, type, conf, certs); PrivateKey privateKey = (PrivateKey) signer.getSigningKey(); return new KeyCertPair(privateKey, signer.getCertificate()); }
@Override public KeyCertPair createPrivateKeyAndCert(final String type, final SignerConf conf, final X509Certificate cert) throws ObjectCreationException { conf.putConfEntry("parallelism", Integer.toString(1)); X509Certificate[] certs = null; if (cert != null) { certs = new X509Certificate[]{cert}; } ConcurrentContentSigner signer = signerFactoryRegister.newSigner(this, type, conf, certs); PrivateKey privateKey = (PrivateKey) signer.getSigningKey(); return new KeyCertPair(privateKey, signer.getCertificate()); }
public final void setResponder(SignerEntryWrapper responder) throws CaMgmtException { if (responder == null) { this.responderKey = null; this.responderCert = null; this.envelopedDataDecryptor = null; return; } ConcurrentContentSigner signer = responder.getSigner(); Key signingKey = signer.getSigningKey(); if (!(signingKey instanceof PrivateKey)) { throw new CaMgmtException("Unsupported signer type: the signing key is not a PrivateKey"); } if (!(signer.getCertificate().getPublicKey() instanceof RSAPublicKey)) { throw new IllegalArgumentException("The SCEP responder key is not RSA key for CA " + caIdent.getName()); } this.responderKey = (PrivateKey) signingKey; this.responderCert = signer.getCertificate(); this.envelopedDataDecryptor = new EnvelopedDataDecryptor(new EnvelopedDataDecryptorInstance(responderCert, responderKey)); }
ConcurrentContentSigner requestSigner = ((Requestor.SignatureCmpRequestor) requestor).getSigner(); if (!(requestSigner.getSigningKey() instanceof PrivateKey)) { throw new XiSecurityException("no decryption key is configured"); (PrivateKey) requestSigner.getSigningKey()); } else { decryptedValue = decrypt(cvk.getPrivateKey(),