Package org.wildfly.security.x500
Class X500
java.lang.Object
org.wildfly.security.x500.X500
Useful X500 constants and utilities.
- Author:
- David M. Lloyd
-
Field Summary
FieldsModifier and TypeFieldDescriptionstatic final X509Certificate[]A constant array containing zero certificates.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final StringDeprecated.static final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final Stringstatic final String -
Method Summary
Modifier and TypeMethodDescriptionstatic X509Certificate[]asOrderedX509CertificateChain(PublicKey firstPublicKey, Certificate[] certificates) Convert an unordered array of certificates into an ordered X.509 certificate chain.static X509Certificate[]asX509CertificateArray(Object[] certificates) Convert an array into aX509Certificate[].static X509Certificate[]createX509CertificateChain(X509Certificate firstCertificate, HashMap<Principal, HashSet<X509Certificate>> certificatesMap) Create an X.509 certificate chain given the first certificate that should be in the chain and a map of certificates.
-
Field Details
-
NO_CERTIFICATES
A constant array containing zero certificates. -
OID_AT
- See Also:
-
OID_AT_COMMON_NAME
- See Also:
-
OID_AT_SURNAME
- See Also:
-
OID_AT_SERIAL_NUMBER
- See Also:
-
OID_AT_COUNTRY_NAME
- See Also:
-
OID_AT_LOCALITY_NAME
- See Also:
-
OID_AT_STATE_OR_PROVINCE_NAME
- See Also:
-
OID_AT_STREET_ADDRESS
- See Also:
-
OID_AT_ORGANIZATION_NAME
- See Also:
-
OID_AT_ORGANIZATIONAL_UNIT_NAME
- See Also:
-
OID_AT_TITLE
- See Also:
-
OID_AT_DESCRIPTION
- See Also:
-
OID_AT_BUSINESS_CATEGORY
- See Also:
-
OID_AT_TELEPHONE_NUMBER
- See Also:
-
OID_AT_FAX_NUMBER
- See Also:
-
OID_AT_NAME
- See Also:
-
OID_AT_GIVEN_NAME
- See Also:
-
OID_AT_INITIALS
- See Also:
-
OID_AT_GENERATION_QUALIFIER
- See Also:
-
OID_AT_DN_QUALIFIER
- See Also:
-
OID_AT_HOUSE_IDENTIFIER
- See Also:
-
OID_AT_PSEUDONYM
- See Also:
-
OID_UID
- See Also:
-
OID_DC
- See Also:
-
OID_CE
- See Also:
-
OID_CE_SUBJECT_DIRECTORY_ATTRIBUTES
- See Also:
-
OID_CE_SUBJECT_KEY_IDENTIFIER
- See Also:
-
OID_CE_KEY_USAGE
- See Also:
-
OID_CE_PRIVATE_KEY_USAGE_PERIOD
- See Also:
-
OID_CE_SUBJECT_ALT_NAME
- See Also:
-
OID_CE_ISSUER_ALT_NAME
- See Also:
-
OID_CE_BASIC_CONSTRAINTS
- See Also:
-
OID_CE_CRL_NUMBER
- See Also:
-
OID_CE_CRL_REASONS
- See Also:
-
OID_CE_HOLD_INSTRUCTION_CODE
- See Also:
-
OID_CE_INVALIDITY_DATE
- See Also:
-
OID_CE_DELTA_CLR_INDICATOR
- See Also:
-
OID_CE_ISSUING_DISTRIBUTION_POINT
- See Also:
-
OID_CE_CERTIFICATE_ISSUER
- See Also:
-
OID_CE_NAME_CONSTRAINTS
- See Also:
-
OID_CE_CRL_DISTRIBUTION_POINTS
- See Also:
-
OID_CE_CERTIFICATE_POLICIES
- See Also:
-
OID_CE_POLICY_MAPPINGS
- See Also:
-
OID_CE_AUTHORITY_KEY_IDENTIFIER
- See Also:
-
OID_CE_POLICY_CONSTRAINTS
- See Also:
-
OID_CE_EXT_KEY_USAGE
- See Also:
-
OID_CE_FRESHEST_CRL
- See Also:
-
OID_CE_INHIBIT_ANY_POLICY
- See Also:
-
OID_PKIX
- See Also:
-
OID_PE
- See Also:
-
OID_QT
- See Also:
-
OID_KP
- See Also:
-
OID_AD
- See Also:
-
OID_PE_AUTHORITY_INFO_ACCESS
- See Also:
-
OID_PE_SUBJECT_INFO_ACCESS
- See Also:
-
OID_QT_CPS
- See Also:
-
OID_QT_UNOTICE
- See Also:
-
OID_KP_SERVER_AUTH
- See Also:
-
OID_KP_CLIENT_AUTH
- See Also:
-
OID_KP_CODE_SIGNING
- See Also:
-
OID_KP_EMAIL_PROTECTION
- See Also:
-
OID_KP_TIME_STAMPING
- See Also:
-
OID_KP_OCSP_SIGNING
- See Also:
-
OID_AD_OCSP
- See Also:
-
OID_AD_CA_ISSUERS
- See Also:
-
OID_AD_TIME_STAMPING
- See Also:
-
OID_AD_CA_REPOSITORY
- See Also:
-
OID_HOLD_INSTRUCTION
- See Also:
-
OID_HOLD_INSTRUCTION_NONE
Deprecated.- See Also:
-
OID_HOLD_INSTRUCTION_CALL_ISSUER
- See Also:
-
OID_HOLD_INSTRUCTION_REJECT
- See Also:
-
-
Method Details
-
asX509CertificateArray
public static X509Certificate[] asX509CertificateArray(Object[] certificates) throws ArrayStoreException Convert an array into aX509Certificate[].- Parameters:
certificates- the certificates (may not benull)- Returns:
- the X.509 certificate array (not
null) - Throws:
ArrayStoreException- if one of the certificates in the array is not anX509Certificate
-
asOrderedX509CertificateChain
public static X509Certificate[] asOrderedX509CertificateChain(PublicKey firstPublicKey, Certificate[] certificates) throws IllegalArgumentException Convert an unordered array of certificates into an ordered X.509 certificate chain.- Parameters:
firstPublicKey- the public key that should be in the first certificate in the ordered X.509 certificate chain (may not benull)certificates- the unordered array of certificates (may not benull)- Returns:
- the ordered X.509 certificate chain, as an array
- Throws:
IllegalArgumentException- if the given unordered array of certificates cannot be converted into an ordered X.509 certificate chain
-
createX509CertificateChain
public static X509Certificate[] createX509CertificateChain(X509Certificate firstCertificate, HashMap<Principal, HashSet<X509Certificate>> certificatesMap) throws IllegalArgumentExceptionCreate an X.509 certificate chain given the first certificate that should be in the chain and a map of certificates.- Parameters:
firstCertificate- the certificate that should be first in the newly created X.509 certificate chaincertificatesMap- a map of distinguished names to certificates to use to create the X.509 certificate chain- Returns:
- the newly created X.509 certificate chain, as an array
- Throws:
IllegalArgumentException- if the X.509 certificate chain could not be created
-