|
Oracle Security Developer Tools Security Engine Java API Reference 10g Release 2 (10.1.2.0.2) B15569-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object
oracle.security.crypto.cert.X509Attributes
This class has been deprecated in favor of X509ExtensionSet
.
Provides a high-level description of those properties of an X.509 v3 certificate or CRL which are defined by its extensions.
The methods of this class are of the following form:
isAttributeDefined
-- indicates whether the extension which defines Attribute is presentisAttributeCritical
-- indicates whether the extension which defines Attribute is criticialgetAttribute
-- returns the value of AttributesetAttribute
-- sets the value of Attributewhere Attribute is one of the following:
CA
, KeyUsage
, CertificatePolicies
, AuthorityKeyIdentifier
(*), SubjectKeyIdentifier
, NetscapeCertType
, or SETCertType
CRLNumber
(*)The AuthorityKeyIdentifier
attribute is handled slightly differently, in that there are two variants: AuthorityKeyIdentifierID
, and the combination of AuthorityKeyIdentifierIssuer
and AuthorityKeyIdentifierSerialNo
. See the documentation of the methods involved for more details.
Field Summary | |
static int |
CERTIFICATE Constant for use with fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
CR_LIST Constant for use with fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
CRL_SIGN Key usage bit mask. |
static int |
DATA_ENCIPHERMENT Key usage bit mask. |
static int |
DECIPHER_ONLY Key usage bit mask. |
static int |
DIGITAL_SIGNATURE Key usage bit mask. |
static int |
ENCIPHER_ONLY Key usage bit mask. |
static int |
KEY_AGREEMENT Key usage bit mask. |
static int |
KEY_CERT_SIGN Key usage bit mask. |
static int |
KEY_ENCIPHERMENT Key usage bit mask. |
static int |
NETSCAPE_CODE_SIGNING_CA A Netscape certificate type. |
static int |
NETSCAPE_EMAIL A Netscape certificate type. |
static int |
NETSCAPE_EMAIL_CA A Netscape certificate type. |
static int |
NETSCAPE_OBJECT_SIGNER A Netscape certificate type. |
static int |
NETSCAPE_SSL_CA A Netscape certificate type. |
static int |
NETSCAPE_SSL_CLIENT A Netscape certificate type. |
static int |
NETSCAPE_SSL_SERVER A Netscape certificate type. |
static int |
NON_REPUDIATION Key usage bit mask. |
static int |
OTHER Constant for use with fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int) . |
static int |
SET_ACQ An SET certificate type. |
static int |
SET_BCA An SET certificate type. |
static int |
SET_CARD An SET certificate type. |
static int |
SET_CCA An SET certificate type. |
static int |
SET_GCA An SET certificate type. |
static int |
SET_MCA An SET certificate type. |
static int |
SET_MER An SET certificate type. |
static int |
SET_PCA An SET certificate type. |
static int |
SET_PGWY An SET certificate type. |
static int |
SET_RCA An SET certificate type. |
Constructor Summary | |
X509Attributes() Deprecated. This class has been deprecated in favor of X509ExtensionSet . |
Method Summary | |
void |
addGenericExt(X509Extension ext) Deprecated. |
static X509Attributes |
fromExtensionSet(X509ExtensionSet set, int container) Returns a X509Attributes containing the extensions from the given X509ExtensionSet . |
byte[] |
getAuthorityKeyIdentifierID() Deprecated. |
X500Name |
getAuthorityKeyIdentifierIssuer() Deprecated. |
java.math.BigInteger |
getAuthorityKeyIdentifierSerialNo() Deprecated. |
boolean |
getCA() Deprecated. |
java.util.Vector |
getCertificatePolicies() Deprecated. |
java.math.BigInteger |
getCRLNumber() Deprecated. |
java.util.Vector |
getGenericExts() Deprecated. |
int |
getKeyUsage() Deprecated. |
int |
getNetscapeCertType() Deprecated. |
int |
getSETCertType() Deprecated. |
byte[] |
getSubjectKeyIdentifier() Deprecated. |
boolean |
isAuthorityKeyIdentifierCritical() Deprecated. |
boolean |
isAuthorityKeyIdentifierDefined() Deprecated. |
boolean |
isAuthorityKeyIdentifierIdDefined() Deprecated. |
boolean |
isAuthorityKeyIdentifierIsnDefined() Deprecated. |
boolean |
isCACritical() Deprecated. |
boolean |
isCADefined() Deprecated. |
boolean |
isCertificatePoliciesCritical() Deprecated. |
boolean |
isCertificatePoliciesDefined() Deprecated. |
boolean |
isCRLNumberCritical() Deprecated. |
boolean |
isCRLNumberDefined() Deprecated. |
boolean |
isKeyUsageCritical() Deprecated. |
boolean |
isKeyUsageDefined() Deprecated. |
boolean |
isNetscapeCertTypeCritical() Deprecated. |
boolean |
isNetscapeCertTypeDefined() Deprecated. |
boolean |
isSETCertTypeCritical() Deprecated. |
boolean |
isSETCertTypeDefined() Deprecated. |
boolean |
isSubjectKeyIdentifierCritical() Deprecated. |
boolean |
isSubjectKeyIdentifierDefined() Deprecated. |
void |
setAuthorityKeyIdentifier(byte[] id) Deprecated. |
void |
setAuthorityKeyIdentifier(byte[] id, boolean critical) Deprecated. |
void |
setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn) Deprecated. |
void |
setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn, boolean critical) Deprecated. |
void |
setAuthorityKeyIdentifier(X509 is) Deprecated. |
void |
setAuthorityKeyIdentifier(X509 is, boolean critical) Deprecated. |
void |
setCA(boolean CA) Deprecated. |
void |
setCA(boolean CA, boolean critical) Deprecated. |
void |
setCertificatePolicies(java.util.Vector cp) Deprecated. |
void |
setCertificatePolicies(java.util.Vector cp, boolean critical) Deprecated. |
void |
setCRLNumber(java.math.BigInteger cn) Deprecated. |
void |
setCRLNumber(java.math.BigInteger cn, boolean critical) Deprecated. |
void |
setGenericExts(java.util.Vector genericExts) Deprecated. |
void |
setKeyUsage(int ku) Deprecated. |
void |
setKeyUsage(int ku, boolean critical) Deprecated. |
void |
setNetscapeCertType(int nct) Deprecated. |
void |
setNetscapeCertType(int nct, boolean critical) Deprecated. |
void |
setSETCertType(int sct) Deprecated. |
void |
setSETCertType(int sct, boolean critical) Deprecated. |
void |
setSubjectKeyIdentifier(byte[] id) Deprecated. |
void |
setSubjectKeyIdentifier(byte[] id, boolean critical) Deprecated. |
static X509ExtensionSet |
toExtensionSet(X509Attributes attr) Returns a X509ExtensionSet containing the extensions defined in the given X509Attributes . |
java.lang.String |
toString() Returns a string representing this object. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait |
Field Detail |
public static final int CERTIFICATE
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.
public static final int CR_LIST
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.
public static final int OTHER
fromExtensionSet(oracle.security.crypto.cert.X509ExtensionSet, int)
.
public static final int DIGITAL_SIGNATURE
public static final int NON_REPUDIATION
public static final int KEY_ENCIPHERMENT
public static final int DATA_ENCIPHERMENT
public static final int KEY_AGREEMENT
public static final int KEY_CERT_SIGN
public static final int CRL_SIGN
public static final int ENCIPHER_ONLY
public static final int DECIPHER_ONLY
public static final int NETSCAPE_SSL_CLIENT
public static final int NETSCAPE_SSL_SERVER
public static final int NETSCAPE_EMAIL
public static final int NETSCAPE_OBJECT_SIGNER
public static final int NETSCAPE_SSL_CA
public static final int NETSCAPE_EMAIL_CA
public static final int NETSCAPE_CODE_SIGNING_CA
public static final int SET_CARD
public static final int SET_MER
public static final int SET_PGWY
public static final int SET_CCA
public static final int SET_MCA
public static final int SET_PCA
public static final int SET_GCA
public static final int SET_BCA
public static final int SET_RCA
public static final int SET_ACQ
Constructor Detail |
public X509Attributes()
X509ExtensionSet
.X509Attributes
object, with all attributes undefined.Method Detail |
public static X509ExtensionSet toExtensionSet(X509Attributes attr)
X509ExtensionSet
containing the extensions defined in the given X509Attributes
.attr
- the X509Attributes
to convert.X509ExtensionSet
.public static X509Attributes fromExtensionSet(X509ExtensionSet set, int container)
X509Attributes
containing the extensions from the given X509ExtensionSet
.set
- the X509ExtensionSet
to be converted.container
- the type of object that contains the extension set, defined as constants in this class: CERTIFICATE
, CR_LIST
, OTHER
.X509Attributes
.public boolean isCADefined()
Applicable to: certificates
true
if the the CA is defined, and false
if it is not.public boolean isCACritical()
Applicable to: certificates
true
if the the basic constraints extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the basic constraints extension is not defined.public boolean getCA()
Applicable to: certificates
true
if the subject is a CA, and false
if it is not.java.lang.IllegalStateException
- If the basic constraints extension is not defined.public void setCA(boolean CA)
Applicable to: certificates
public void setCA(boolean CA, boolean critical)
Applicable to: certificates
critical
- true
if the ca is critical, and false
otherwisepublic boolean isKeyUsageDefined()
Applicable to: certificates
true
if the key usage is defined, and false
if it is not.public boolean isKeyUsageCritical()
true
if the key usage is critical, and false
if it is not.java.lang.IllegalStateException
- If the key usageis not defined.public int getKeyUsage()
The following constants defined in this class can be used as masks to access the individual bits: DIGITAL_SIGNATURE, NON_REPUDIATION, KEY_ENCIPHERMENT, DATA_ENCIPHERMENT, KEY_AGREEMENT, KEY_CERT_SIGN, CRL_SIGN
.
Applicable to: certificates
java.lang.IllegalStateException
- If the key usage is not defined.public void setKeyUsage(int ku)
Applicable to: certificates
ku
- the key usage bitspublic void setKeyUsage(int ku, boolean critical)
Applicable to: certificates
ku
- the key usage bitscritical
- true
if the key usage is critical, and false
otherwisepublic boolean isCertificatePoliciesDefined()
Applicable to: certificates
true
if the certificate policies extension is defined, and false
if it is not.public boolean isCertificatePoliciesCritical()
Applicable to: certificates
true
if the certificate policies extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the certificate policy is not defined.public java.util.Vector getCertificatePolicies()
Applicable to: certificates
If the Certificate Policies extension is defined, returns the set of certificate policies. The value is a vector of X509PolicyInformation
objects.
java.lang.IllegalStateException
- If the certificate policy is not defined.public void setCertificatePolicies(java.util.Vector cp)
not
be marked critical.
Applicable to: certificates
public void setCertificatePolicies(java.util.Vector cp, boolean critical)
Applicable to: certificates
cp
- the values of the certificate policiescritical
- true
if the certificate policies are critical, and false
otherwisepublic boolean isAuthorityKeyIdentifierDefined()
Applicable to: certificates
true
if either the issuer and serial number or the key ID of the CA certificate are defined, false
otherwisepublic boolean isAuthorityKeyIdentifierIsnDefined()
Applicable to: certificates
true
if the issuer and
serial number of the CA certificate are defined, false
otherwisepublic boolean isAuthorityKeyIdentifierIdDefined()
Applicable to: certificates
true
if the key ID of the CA certificate is defined, or false
otherwisepublic boolean isAuthorityKeyIdentifierCritical()
Applicable to: certificates
true
if either the issuer and serial number or the key ID of the CA certificate is critical, false
otherwisepublic X500Name getAuthorityKeyIdentifierIssuer()
Authority key identifier: the issuer of the CA certificate used to sign this certificate.
Applicable to: certificates
java.lang.IllegalStateException
- If the authority key identifier issuer is not defined.public java.math.BigInteger getAuthorityKeyIdentifierSerialNo()
Applicable to: certificates
Authority key identifier: the serial number of the CA certificate used to sign this certificate.
java.lang.IllegalStateException
- If the authority key identifier serial No. is not defined.public byte[] getAuthorityKeyIdentifierID()
Applicable to: certificates
Authority key identifier: the ID of the key used to sign this certificate (corresponding to the subject key identifier in the CA certificate).
java.lang.IllegalStateException
- If the certificate policy is not defined.public void setAuthorityKeyIdentifier(byte[] id)
Applicable to: certificates
id
- value of the authority key identifierpublic void setAuthorityKeyIdentifier(X509 is)
Applicable to: certificates
is
- value of the authority key identifierpublic void setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn)
Applicable to: certificates
is
- value of the authority key identifiersn
- serial numberpublic void setAuthorityKeyIdentifier(byte[] id, boolean critical)
Applicable to: certificates
id
- value of the authority key identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic void setAuthorityKeyIdentifier(X509 is, boolean critical)
Applicable to: certificates
is
- value of the authority key identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic void setAuthorityKeyIdentifier(X500Name is, java.math.BigInteger sn, boolean critical)
Applicable to: certificates
is
- value of the authority key identifiersn
- the serial numbercritical
- true
if the CRL number extension is critical, and false
otherwisepublic boolean isSubjectKeyIdentifierDefined()
Applicable to: certificates
true
if subject key identifier is defined, and false
if it is not.public boolean isSubjectKeyIdentifierCritical()
Applicable to: certificates
true
if subject key identifier is critical, and false
if it is not.java.lang.IllegalStateException
- If the subject key identifier is not defined.public byte[] getSubjectKeyIdentifier()
Applicable to: certificates
java.lang.IllegalStateException
- If the subject key identifier is not defined.public void setSubjectKeyIdentifier(byte[] id)
Applicable to: Certificate
id
- the value of the subjectkey identifierpublic void setSubjectKeyIdentifier(byte[] id, boolean critical)
Applicable to: Certificate
id
- the value of the subjectkey identifiercritical
- true
if the CRL number extension is critical, and false
otherwisepublic boolean isNetscapeCertTypeDefined()
Applicable to: certificates
true
if the Netscape cert type is critical, and false
if it is not.public boolean isNetscapeCertTypeCritical()
Applicable to: certificates
true
if the Netscape cert type is critical, and false
if it is not.java.lang.IllegalStateException
- If the Netscape cert type is not defined.public int getNetscapeCertType()
The following constants defined in this class can be used to access its fields: NETSCAPE_SSL_CLIENT, NETSCAPE_SSL_SERVER, NETSCAPE_EMAIL, NETSCAPE_OBJECT_SIGNER, NETSCAPE_SSL_CA, NETSCAPE_EMAIL_CA, NETSCAPE_CODE_SIGNING_CA
.
Applicable to: certificates
java.lang.IllegalStateException
- if the Netscape cert type is not definedpublic void setNetscapeCertType(int nct)
Applicable to: certificates
nct
- the Netscape cert typepublic void setNetscapeCertType(int nct, boolean critical)
Applicable to: Certificate
critical
- true
if the Netscape cert type is critical, and false
otherwisepublic boolean isSETCertTypeDefined()
Applicable to: certificates
true
if the SET cert type is critical, and false
if it is not.public boolean isSETCertTypeCritical()
Applicable to: certificates
true
if the SET cert type is critical, and false
if it is not.java.lang.IllegalStateException
- If the SET cert type is not defined.public int getSETCertType()
The following constants defined in this class can be used to access its fields: SET_CARD, SET_MER, SET_PGWY, SET_CCA, SET_MCA, SET_PCA, SET_GCA, SET_BCA, SET_RCA, SET_ACQ.
Applicable to: certificates
java.lang.IllegalStateException
- if the SET cert type is not definedpublic void setSETCertType(int sct)
Applicable to: certificates
sct
- the SET cert typepublic void setSETCertType(int sct, boolean critical)
Applicable to: Certificate
critical
- true
if the SET cert type is critical, and false
otherwisepublic boolean isCRLNumberDefined()
Applicable to: CRLs.
true
if the CRL number extension is defined, and false
if it is not.public boolean isCRLNumberCritical()
Applicable to: CRLs.
true
if the CRL number extension is critical, and false
if it is not.java.lang.IllegalStateException
- If the CRL number extension is not defined.public java.math.BigInteger getCRLNumber()
Applicable to: CRLs.
java.lang.IllegalStateException
- If the CRL number extension is not defined.public void setCRLNumber(java.math.BigInteger cn)
Applicable to: CRLs.
cn
- the CRL numberpublic void setCRLNumber(java.math.BigInteger cn, boolean critical)
Applicable to: CRLs.
cn
- the CRL numbercritical
- true
if the CRL number extension is critical, and false
otherwisepublic java.util.Vector getGenericExts()
Applicable to: CRLs.
X509Extension
s, or nullpublic void setGenericExts(java.util.Vector genericExts)
These will be passed to the X509
or CRL
object verbatim and put at the end of the extension list.
Applicable to: certificates
genericExts
- the vector of generic extensionspublic void addGenericExt(X509Extension ext)
Applicable to: certificates
ext
- a generic extension to be addpublic java.lang.String toString()
|
Oracle Security Developer Tools Security Engine Java API Reference 10g Release 2 (10.1.2.0.2) B15569-01 |
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |