org.italiangrid.voms.util
Class CertificateValidatorBuilder

java.lang.Object
  extended by org.italiangrid.voms.util.CertificateValidatorBuilder

public class CertificateValidatorBuilder
extends Object

A utility class which provides convenient methods to build a certificate validator with defaults that are meaningful for VOMS usage.

Author:
cecco

Field Summary
static eu.emi.security.authn.x509.CrlCheckingMode DEFAULT_CRL_CHECKS
          The default CRL checking policy.
static eu.emi.security.authn.x509.NamespaceCheckingMode DEFAULT_NS_CHECKS
          The default namespace checking policy.
static eu.emi.security.authn.x509.OCSPCheckingMode DEFAULT_OCSP_CHECKS
          The default OCSP checking policy.
 
Method Summary
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator()
          Builds an Openssl-style certificate validator.
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir)
          Builds an Openssl-style certificate validator configured as specified in the parameters
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener)
          Builds an Openssl-style certificate validator configured as specified in the parameters
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, long updateInterval)
          Builds an Openssl-style certificate validator configured as specified in the parameters
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeListener)
          Builds an Openssl-style certificate validator configured as specified in the parameters
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeListener, long updateInterval)
          Builds an Openssl-style certificate validator configured as specified in the parameters
static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener, long updateInterval, eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks, eu.emi.security.authn.x509.CrlCheckingMode crlChecks, eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks)
          Builds an Openssl-style certificate validator configured as specified in the parameters
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

DEFAULT_CRL_CHECKS

public static final eu.emi.security.authn.x509.CrlCheckingMode DEFAULT_CRL_CHECKS
The default CRL checking policy.


DEFAULT_OCSP_CHECKS

public static final eu.emi.security.authn.x509.OCSPCheckingMode DEFAULT_OCSP_CHECKS
The default OCSP checking policy.


DEFAULT_NS_CHECKS

public static final eu.emi.security.authn.x509.NamespaceCheckingMode DEFAULT_NS_CHECKS
The default namespace checking policy.

Method Detail

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir,
                                                                                             eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
                                                                                             eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener,
                                                                                             long updateInterval,
                                                                                             eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks,
                                                                                             eu.emi.security.authn.x509.CrlCheckingMode crlChecks,
                                                                                             eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
validationErrorListener - the listener that will receive notification about validation errors
updateInterval - the trust anchor store update interval
namespaceChecks - the namespace checking policy
crlChecks - the crl checking policy
ocspChecks - the ocsp checking policy
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir,
                                                                                             eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
validationErrorListener - the listener that will receive notification about validation errors
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir,
                                                                                             eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
                                                                                             eu.emi.security.authn.x509.StoreUpdateListener storeListener)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
validationErrorListener - the listener that will receive notification about validation errors
storeListener - the listener that will be informed of trust store load errors
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir,
                                                                                             eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
                                                                                             eu.emi.security.authn.x509.StoreUpdateListener storeListener,
                                                                                             long updateInterval)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
validationErrorListener - the listener that will receive notification about validation errors
storeListener - the listener that will be informed of trust store load errors
updateInterval - the trust anchor store update interval
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir,
                                                                                             eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
                                                                                             long updateInterval)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
validationErrorListener - the listener that will receive notification about validation errors
updateInterval - the trust anchor store update interval
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(String trustAnchorsDir)
Builds an Openssl-style certificate validator configured as specified in the parameters

Parameters:
trustAnchorsDir - the directory where trust anchors are loaded from
Returns:
an Openssl-style certificate validator configured as specified in the parameters

buildCertificateValidator

public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator()
Builds an Openssl-style certificate validator.

Returns:
an Openssl-style certificate validator configured as specified in the parameters


Copyright © 2013. All Rights Reserved.