public class CertificateValidatorBuilder
extends java.lang.Object
Modifier and Type | Class and Description |
---|---|
static class |
CertificateValidatorBuilder.OpensslHashFunction
This enum determine which hash function is configured for the canl
OpensslCertChainValidator to resolve CRLs and other trust anchors
files. |
Modifier and Type | Field and Description |
---|---|
private eu.emi.security.authn.x509.CrlCheckingMode |
crlChecks |
static eu.emi.security.authn.x509.CrlCheckingMode |
DEFAULT_CRL_CHECKS
The default CRL checking policy.
|
static eu.emi.security.authn.x509.NamespaceCheckingMode |
DEFAULT_NS_CHECKS
The default namespace checking policy.
|
static eu.emi.security.authn.x509.OCSPCheckingMode |
DEFAULT_OCSP_CHECKS
The default OCSP checking policy.
|
static CertificateValidatorBuilder.OpensslHashFunction |
DEFAULT_OPENSSL_HASH_FUNCTION
The default Openssl hash function value.
|
static java.lang.String |
DEFAULT_TRUST_ANCHORS_DIR
The default trust anchors directory.
|
static long |
DEFAULT_TRUST_ANCHORS_UPDATE_INTERVAL
Default validator trust anchor update interval.
|
static java.lang.Boolean |
DEFAULT_VALIDATOR_IS_LAZY
By default this builder builds non-lazy validators
|
private boolean |
lazyAnchorsLoading |
private eu.emi.security.authn.x509.NamespaceCheckingMode |
namespaceChecks |
private eu.emi.security.authn.x509.OCSPCheckingMode |
ocspChecks |
private CertificateValidatorBuilder.OpensslHashFunction |
opensslHashFunction |
private eu.emi.security.authn.x509.StoreUpdateListener |
storeUpdateListener |
private java.lang.String |
trustAnchorsDir |
private long |
trustAnchorsUpdateInterval |
private eu.emi.security.authn.x509.ValidationErrorListener |
validationErrorListener |
Constructor and Description |
---|
CertificateValidatorBuilder() |
Modifier and Type | Method and Description |
---|---|
eu.emi.security.authn.x509.X509CertChainValidatorExt |
build()
Builds an
OpensslCertChainValidator according to the parameters set
for this builder |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator()
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
long updateInterval)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
long updateInterval,
boolean lazy)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
eu.emi.security.authn.x509.StoreUpdateListener storeListener)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
eu.emi.security.authn.x509.StoreUpdateListener storeListener,
long updateInterval)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
eu.emi.security.authn.x509.StoreUpdateListener storeListener,
long updateInterval,
boolean lazy)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener,
long updateInterval,
eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks,
eu.emi.security.authn.x509.CrlCheckingMode crlChecks,
eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks)
Builds an Openssl-style certificate validator configured as specified in
the parameters
|
static eu.emi.security.authn.x509.X509CertChainValidatorExt |
buildCertificateValidator(java.lang.String trustAnchorsDir,
eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener,
eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener,
long updateInterval,
eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks,
eu.emi.security.authn.x509.CrlCheckingMode crlChecks,
eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks,
boolean lazy)
Deprecated.
Create a
CertificateValidatorBuilder object instead. |
CertificateValidatorBuilder |
crlChecks(eu.emi.security.authn.x509.CrlCheckingMode crl)
Sets the crl checking mode for this builder
|
CertificateValidatorBuilder |
lazyAnchorsLoading(boolean lazyness)
Sets whether the created validator will be lazy in loading anchors
|
CertificateValidatorBuilder |
namespaceChecks(eu.emi.security.authn.x509.NamespaceCheckingMode nsChecks)
Sets the namespace checking mode for this builder
|
CertificateValidatorBuilder |
ocspChecks(eu.emi.security.authn.x509.OCSPCheckingMode ocsp)
Sets the ocsp checking mode for this builder
|
CertificateValidatorBuilder |
opensslHashFunction(CertificateValidatorBuilder.OpensslHashFunction f)
Sets the openssl hash function for this builder
|
CertificateValidatorBuilder |
storeUpdateListener(eu.emi.security.authn.x509.StoreUpdateListener l)
Sets the store update listener for this builder
|
CertificateValidatorBuilder |
trustAnchorsDir(java.lang.String dir)
Sets the trust anchors dir for this builder
|
CertificateValidatorBuilder |
trustAnchorsUpdateInterval(long interval)
Sets the trust anchors update interval for this builder
|
CertificateValidatorBuilder |
validationErrorListener(eu.emi.security.authn.x509.ValidationErrorListener l)
Sets the validation error listener for this builder
|
public static final CertificateValidatorBuilder.OpensslHashFunction DEFAULT_OPENSSL_HASH_FUNCTION
public static final eu.emi.security.authn.x509.CrlCheckingMode DEFAULT_CRL_CHECKS
public static final eu.emi.security.authn.x509.OCSPCheckingMode DEFAULT_OCSP_CHECKS
public static final eu.emi.security.authn.x509.NamespaceCheckingMode DEFAULT_NS_CHECKS
public static final java.lang.String DEFAULT_TRUST_ANCHORS_DIR
public static final java.lang.Boolean DEFAULT_VALIDATOR_IS_LAZY
public static final long DEFAULT_TRUST_ANCHORS_UPDATE_INTERVAL
private java.lang.String trustAnchorsDir
private eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener
private eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener
private long trustAnchorsUpdateInterval
private boolean lazyAnchorsLoading
private eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks
private eu.emi.security.authn.x509.CrlCheckingMode crlChecks
private eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks
private CertificateValidatorBuilder.OpensslHashFunction opensslHashFunction
public CertificateValidatorBuilder opensslHashFunction(CertificateValidatorBuilder.OpensslHashFunction f)
f
- the CertificateValidatorBuilder.OpensslHashFunction
public CertificateValidatorBuilder storeUpdateListener(eu.emi.security.authn.x509.StoreUpdateListener l)
l
- the StoreUpdateListener
public CertificateValidatorBuilder trustAnchorsDir(java.lang.String dir)
dir
- the trust anchors directorypublic CertificateValidatorBuilder validationErrorListener(eu.emi.security.authn.x509.ValidationErrorListener l)
l
- the ValidationErrorListener
public CertificateValidatorBuilder trustAnchorsUpdateInterval(long interval)
interval
- the update intervalpublic CertificateValidatorBuilder lazyAnchorsLoading(boolean lazyness)
lazyness
- the boolean flag that determines if the validator will be lazy in
loading trust anchorspublic CertificateValidatorBuilder namespaceChecks(eu.emi.security.authn.x509.NamespaceCheckingMode nsChecks)
nsChecks
- the NamespaceCheckingMode
public CertificateValidatorBuilder crlChecks(eu.emi.security.authn.x509.CrlCheckingMode crl)
crl
- the CrlCheckingMode
public CertificateValidatorBuilder ocspChecks(eu.emi.security.authn.x509.OCSPCheckingMode ocsp)
ocsp
- the OCSPCheckingMode
public eu.emi.security.authn.x509.X509CertChainValidatorExt build()
OpensslCertChainValidator
according to the parameters set
for this builderX509CertChainValidatorExt
public static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener, long updateInterval, eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks, eu.emi.security.authn.x509.CrlCheckingMode crlChecks, eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks)
trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsstoreUpdateListener
- the listener that will receive notifications about trust store
update eventsupdateInterval
- the trust anchor store update intervalnamespaceChecks
- the namespace checking policycrlChecks
- the crl checking policyocspChecks
- the ocsp checking policypublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeUpdateListener, long updateInterval, eu.emi.security.authn.x509.NamespaceCheckingMode namespaceChecks, eu.emi.security.authn.x509.CrlCheckingMode crlChecks, eu.emi.security.authn.x509.OCSPCheckingMode ocspChecks, boolean lazy)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsstoreUpdateListener
- the listener that will receive notifications about trust store
update eventsupdateInterval
- the trust anchor store update intervalnamespaceChecks
- the namespace checking policycrlChecks
- the crl checking policyocspChecks
- the ocsp checking policylazy
- whether the validator should be lazy in loading crls and
certificatespublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorspublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeListener)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsstoreListener
- the listener that will be informed of trust store load errorspublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeListener, long updateInterval, boolean lazy)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsstoreListener
- the listener that will be informed of trust store load errorsupdateInterval
- the trust anchor store update intervallazy
- whether the certificate validator should be lazy in loading crls
and CAspublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, eu.emi.security.authn.x509.StoreUpdateListener storeListener, long updateInterval)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsstoreListener
- the listener that will be informed of trust store load errorsupdateInterval
- the trust anchor store update intervalpublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, long updateInterval, boolean lazy)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsupdateInterval
- the trust anchor store update intervallazy
- whether the certificate validator should be lazy in loading crls
and CAspublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir, eu.emi.security.authn.x509.ValidationErrorListener validationErrorListener, long updateInterval)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded fromvalidationErrorListener
- the listener that will receive notification about validation
errorsupdateInterval
- the trust anchor store update intervalpublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator(java.lang.String trustAnchorsDir)
CertificateValidatorBuilder
object instead.trustAnchorsDir
- the directory where trust anchors are loaded frompublic static eu.emi.security.authn.x509.X509CertChainValidatorExt buildCertificateValidator()
CertificateValidatorBuilder
object instead.