Class CertUtil
java.lang.Object
org.dogtagpki.util.cert.CertUtil
-
Field Summary
Fields -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionstatic org.mozilla.jss.netscape.security.x509.CertificateExtensionscreateRequestExtensions(org.mozilla.jss.netscape.security.pkcs.PKCS10 pkcs10) static org.mozilla.jss.netscape.security.pkcs.PKCS10decodePKCS10(String request) Decode PKCS #10 certificate request from Base64.static voiddeleteCert(String tokenname, org.mozilla.jss.crypto.X509Certificate cert) static StringfingerPrintFormat(String content) static Set<org.mozilla.jss.CertificateUsage> getCertificateUsages(String nickname) Get certificate usages.static StringgetCommonName(org.mozilla.jss.netscape.security.x509.X500Name name) getDNSNames(org.mozilla.jss.netscape.security.pkcs.PKCS10 pkcs10) Get DNS names from PKCS #10 request.getDNSNames(org.mozilla.jss.netscape.security.x509.SubjectAlternativeNameExtension sanExtension) Get DNS names from SAN extension.static org.mozilla.jss.netscape.security.x509.SubjectAlternativeNameExtensiongetSANExtension(org.mozilla.jss.netscape.security.pkcs.PKCS10 pkcs10) Get SAN extension from PKCS #10 request.static org.mozilla.jss.netscape.security.x509.SubjectAlternativeNameExtensiongetSANExtension(org.mozilla.jss.netscape.security.x509.Extensions extensions) Get SAN extension from a collection of extensions.static byte[]static org.mozilla.jss.CertificateUsagetoCertificateUsage(String certUsage) Convert cert usage string into CertificateUsage object.static StringtoPEM(X509Certificate cert) static StringtoPEM(org.mozilla.jss.netscape.security.pkcs.PKCS10 pkcs10) static StringConvert PEM request into Base64.static voidverifyCertificateUsage(String nickname, String certUsage) Verify certificate usage.static voidverifyCertValidity(String nickname) Verify that the cert is currently valid (notBefore <= now <= notAfter).
-
Field Details
-
logger
public static final org.slf4j.Logger logger -
CERT_NEW_REQUEST_HEADER
- See Also:
-
CERT_NEW_REQUEST_FOOTER
- See Also:
-
CERT_RENEWAL_HEADER
- See Also:
-
CERT_RENEWAL_FOOTER
- See Also:
-
CRL_HEADER
- See Also:
-
CRL_FOOTER
- See Also:
-
LINE_COUNT
public static final int LINE_COUNT- See Also:
-
-
Constructor Details
-
CertUtil
public CertUtil()
-
-
Method Details
-
unwrapCSR
Convert PEM request into Base64.- Parameters:
request- PEM request- Returns:
- Base64-encoded request
- Throws:
EBaseException
-
parseCSR
-
decodePKCS10
public static org.mozilla.jss.netscape.security.pkcs.PKCS10 decodePKCS10(String request) throws EBaseException Decode PKCS #10 certificate request from Base64.- Parameters:
request- Base64-encoded certificate request- Returns:
- PKCS10 object
- Throws:
EBaseException
-
toPEM
-
toPEM
- Throws:
Exception
-
fingerPrintFormat
-
deleteCert
-
createRequestExtensions
-
getSANExtension
-
getSANExtension
-
getDNSNames
-
getCommonName
-
getDNSNames
-
toCertificateUsage
-
getCertificateUsages
-
verifyCertificateUsage
-
verifyCertValidity
-