Package org.wildfly.security.evidence

Class X509PeerCertificateChainEvidence

java.lang.Object
org.wildfly.security.evidence.X509PeerCertificateChainEvidence
All Implemented Interfaces:
AlgorithmEvidence, Evidence
public final class X509PeerCertificateChainEvidence extends Object implements AlgorithmEvidence
A piece of evidence that is comprised of a verified peer certificate chain.

  • Constructor Details

    • X509PeerCertificateChainEvidence

      public X509PeerCertificateChainEvidence(X509Certificate... peerCertificateChain)
      Construct a new instance.
      Parameters:
      peerCertificateChain - the peer certificate chain to use (must not be null)

  • Method Details

    • getPrincipal

      @Deprecated public X500Principal getPrincipal()
      Deprecated.
      Use getDefaultPrincipal() or getDecodedPrincipal() instead.
      Get the Principal represented by the first certificate in the chain.
      Specified by:
      getPrincipal in interface Evidence
      Returns:
      the Principal represented by the first certificate in the chain.

    • getDefaultPrincipal

      public X500Principal getDefaultPrincipal()
      Description copied from interface: Evidence
      Get the default Principal associated with this evidence (may be null).
      Specified by:
      getDefaultPrincipal in interface Evidence
      Returns:
      the default Principal associated with this evidence (may benull)

    • getDecodedPrincipal

      public Principal getDecodedPrincipal()
      Description copied from interface: Evidence
      Get the Principal derived from this evidence using an evidence decoder (may be null).
      Specified by:
      getDecodedPrincipal in interface Evidence
      Returns:
      the Principal derived from this evidence using an evidence decoder (may be null)

    • setDecodedPrincipal

      public void setDecodedPrincipal(Principal decodedPrincipal)
      Description copied from interface: Evidence
      Set the Principal derived from this evidence using an evidence decoder (may be null). This method is a no-op by default. It is intended to be implemented by evidence types that can be associated with a principal derived from an evidence decoder.
      Specified by:
      setDecodedPrincipal in interface Evidence
      Parameters:
      decodedPrincipal - the principal derived from this evidence using an evidence decoder (may be null)

    • getPeerCertificateChain

      public X509Certificate[] getPeerCertificateChain()
      Get the peer certificate chain.
      Returns:
      the peer certificate chain (not null)

    • getAlgorithm

      public String getAlgorithm()
      Get the certificate public key algorithm.
      Specified by:
      getAlgorithm in interface AlgorithmEvidence
      Returns:
      the certificate public key algorithm (not null)

    • getFirstCertificate

      public X509Certificate getFirstCertificate()
      Get the first certificate in the peer certificate chain.
      Returns:
      the first certificate in the peer certificate chain

    • getLastCertificate

      public X509Certificate getLastCertificate()
      Get the last certificate in the peer certificate chain.
      Returns:
      the last certificate in the peer certificate chain