org.opensaml.xml.security.keyinfo

クラス KeyInfoHelper

java.lang.Object

org.opensaml.xml.security.keyinfo.KeyInfoHelper

public class KeyInfoHelper
extends Object

Utility class for working with data inside a KeyInfo object. Methods are provided for converting the representation stored in the XMLTooling KeyInfo to Java java.security native types, and for storing these Java native types inside a KeyInfo.

コンストラクタの概要

コンストラクタ

修飾子	コンストラクタと説明
protected	KeyInfoHelper() Constructor.

メソッドの概要

メソッド

修飾子とタイプ	メソッドと説明
static void	addCertificate(KeyInfo keyInfo, X509Certificate cert) Converts a native Java X509Certificate into the corresponding XMLObject and stores it in a KeyInfo in the first X509Data element.
static void	addCRL(KeyInfo keyInfo, X509CRL crl) Converts a native Java X509CRL into the corresponding XMLObject and stores it in a KeyInfo in the first X509Data element.
static void	addKeyName(KeyInfo keyInfo, String keyNameValue) Add a new KeyName value to a KeyInfo.
static void	addPublicKey(KeyInfo keyInfo, PublicKey pk) Converts a Java DSA or RSA public key into the corresponding XMLObject and stores it in a KeyInfo in a new KeyValue element.
static DSAKeyValue	buildDSAKeyValue(DSAPublicKey dsaPubKey) Builds a DSAKeyValue XMLObject from the Java security DSA public key type.
protected static PublicKey	buildKey(KeySpec keySpec, String keyAlgorithm) Generates a public key from the given key spec.
static RSAKeyValue	buildRSAKeyValue(RSAPublicKey rsaPubKey) Builds an RSAKeyValue XMLObject from the Java security RSA public key type.
static X509Certificate	buildX509Certificate(X509Certificate cert) Builds an X509Certificate XMLObject from a native Java X509Certificate.
static X509CRL	buildX509CRL(X509CRL crl) Builds an X509CRL XMLObject from a native Java X509CRL.
static X509IssuerSerial	buildX509IssuerSerial(String issuerName, BigInteger serialNumber) Build an X509IssuerSerial containing a given issuer name and serial number.
static X509SKI	buildX509SKI(X509Certificate javaCert) Build an X509SKI containing the subject key identifier extension value contained within a certificate.
static X509SubjectName	buildX509SubjectName(String subjectName) Build an X509SubjectName containing a given subject name.
static BigInteger	decodeBigIntegerFromCryptoBinary(String base64Value) Decode a base64-encoded ds:CryptoBinary value to a native Java BigInteger type.
static String	encodeCryptoBinaryFromBigInteger(BigInteger bigInt) Encode a native Java BigInteger type to a base64-encoded ds:CryptoBinary value.
static X509Certificate	getCertificate(X509Certificate xmlCert) Convert an X509Certificate into a native Java representation.
static List<X509Certificate>	getCertificates(KeyInfo keyInfo) Get a list of the Java X509Certificate within the given KeyInfo.
static List<X509Certificate>	getCertificates(X509Data x509Data) Get a list of the Java X509Certificate within the given X509Data.
static X509CRL	getCRL(X509CRL xmlCRL) Convert an X509CRL into a native Java representation.
static List<X509CRL>	getCRLs(KeyInfo keyInfo) Get a list of the Java X509CRLs within the given KeyInfo.
static List<X509CRL>	getCRLs(X509Data x509Data) Get a list of the Java X509CRLs within the given X509Data.
static PublicKey	getDSAKey(DSAKeyValue keyDescriptor) Builds an DSA key from a DSAKeyValue element.
static PublicKey	getDSAKey(DSAKeyValue keyDescriptor, DSAParams dsaParams) Builds a DSA key from an DSAKeyValue element and the supplied Java DSAParams, which supplies key material from a shared key family.
static PublicKey	getKey(KeyValue keyValue) Extracts the DSA or RSA public key within the KeyValue.
static List<String>	getKeyNames(KeyInfo keyInfo) Get the set of key names inside the specified KeyInfo as a list of strings.
static List<PublicKey>	getPublicKeys(KeyInfo keyInfo) Extracts all the public keys within the given KeyInfo's KeyValues.
static PublicKey	getRSAKey(RSAKeyValue keyDescriptor) Builds an RSA key from an RSAKeyValue element.
protected static CertificateFactory	getX509CertFactory() Get the Java certificate factory singleton.
static boolean	hasCompleteDSAParams(DSAKeyValue keyDescriptor) Check whether the specified DSAKeyValue element has the all optional DSA values which can be shared amongst many keys in a DSA "key family", and are presumed to be known from context.

クラスから継承されたメソッド java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

コンストラクタの詳細

KeyInfoHelper

protected KeyInfoHelper()

Constructor.

メソッドの詳細

getKeyNames

public static List<String> getKeyNames(KeyInfo keyInfo)

Get the set of key names inside the specified KeyInfo as a list of strings.

パラメータ:

keyInfo - KeyInfo to retrieve key names from

戻り値:

a list of key name strings

addKeyName

public static void addKeyName(KeyInfo keyInfo,
              String keyNameValue)

Add a new KeyName value to a KeyInfo.

パラメータ:

keyInfo - the KeyInfo to which to add the new value

keyNameValue - the new key name value to add

getCertificates

public static List<X509Certificate> getCertificates(KeyInfo keyInfo)
                                             throws CertificateException

Get a list of the Java X509Certificate within the given KeyInfo.

パラメータ:

keyInfo - key info to extract the certificates from

戻り値:

a list of Java X509Certificates

例外:

CertificateException - thrown if there is a problem converting the X509 data into X509Certificates.

getCertificates

public static List<X509Certificate> getCertificates(X509Data x509Data)
                                             throws CertificateException

Get a list of the Java X509Certificate within the given X509Data.

パラメータ:

x509Data - X509Data from which to extract the certificate

戻り値:

a list of Java X509Certificates

例外:

CertificateException - thrown if there is a problem converting the X509 data into X509Certificates.

getCertificate

public static X509Certificate getCertificate(X509Certificate xmlCert)
                                      throws CertificateException

Convert an X509Certificate into a native Java representation.

パラメータ:

xmlCert - an X509Certificate

戻り値:

a X509Certificate

例外:

CertificateException - thrown if there is a problem converting the X509 data into X509Certificates.

getCRLs

public static List<X509CRL> getCRLs(KeyInfo keyInfo)
                             throws CRLException

Get a list of the Java X509CRLs within the given KeyInfo.

パラメータ:

keyInfo - the KeyInfo to extract the CRL's from

戻り値:

a list of Java X509CRLs

例外:

CRLException - thrown if there is a problem converting the CRL data into X509CRLs

getCRLs

public static List<X509CRL> getCRLs(X509Data x509Data)
                             throws CRLException

Get a list of the Java X509CRLs within the given X509Data.

パラメータ:

x509Data - X509Data to extract the CRLs from

戻り値:

a list of Java X509CRLs

例外:

CRLException - thrown if there is a problem converting the CRL data into X509CRLs

getCRL

public static X509CRL getCRL(X509CRL xmlCRL)
                      throws CRLException

Convert an X509CRL into a native Java representation.

パラメータ:

xmlCRL - object to extract the CRL from

戻り値:

a native Java X509CRL object

例外:

CRLException - thrown if there is a problem converting the CRL data into X509CRLs

addCertificate

public static void addCertificate(KeyInfo keyInfo,
                  X509Certificate cert)
                           throws CertificateEncodingException

Converts a native Java X509Certificate into the corresponding XMLObject and stores it in a KeyInfo in the first X509Data element. The X509Data element will be created if necessary.

パラメータ:

keyInfo - the KeyInfo object into which to add the certificate

cert - the Java X509Certificate to add

例外:

CertificateEncodingException - thrown when there is an error converting the Java certificate representation to the XMLObject representation

addCRL

public static void addCRL(KeyInfo keyInfo,
          X509CRL crl)
                   throws CRLException

Converts a native Java X509CRL into the corresponding XMLObject and stores it in a KeyInfo in the first X509Data element. The X509Data element will be created if necessary.

パラメータ:

keyInfo - the KeyInfo object into which to add the CRL

crl - the Java X509CRL to add

例外:

CRLException - thrown when there is an error converting the Java CRL representation to the XMLObject representation

buildX509Certificate

public static X509Certificate buildX509Certificate(X509Certificate cert)
                                            throws CertificateEncodingException

Builds an X509Certificate XMLObject from a native Java X509Certificate.

パラメータ:

cert - the Java X509Certificate to convert

戻り値:

a X509Certificate XMLObject

例外:

CertificateEncodingException - thrown when there is an error converting the Java certificate representation to the XMLObject representation

buildX509CRL

public static X509CRL buildX509CRL(X509CRL crl)
                            throws CRLException

Builds an X509CRL XMLObject from a native Java X509CRL.

パラメータ:

crl - the Java X509CRL to convert

戻り値:

a X509CRL XMLObject

例外:

CRLException - thrown when there is an error converting the Java CRL representation to the XMLObject representation

buildX509SubjectName

public static X509SubjectName buildX509SubjectName(String subjectName)

Build an X509SubjectName containing a given subject name.

パラメータ:

subjectName - the name content

戻り値:

the new X509SubjectName

buildX509IssuerSerial

public static X509IssuerSerial buildX509IssuerSerial(String issuerName,
                                     BigInteger serialNumber)

Build an X509IssuerSerial containing a given issuer name and serial number.

パラメータ:

issuerName - the name content

serialNumber - the serial number content

戻り値:

the new X509IssuerSerial

buildX509SKI

public static X509SKI buildX509SKI(X509Certificate javaCert)

Build an X509SKI containing the subject key identifier extension value contained within a certificate.

パラメータ:

javaCert - the Java X509Certificate from which to extract the subject key identifier value.

戻り値:

a new X509SKI object, or null if the certificate did not contain the subject key identifier extension

addPublicKey

public static void addPublicKey(KeyInfo keyInfo,
                PublicKey pk)
                         throws IllegalArgumentException

Converts a Java DSA or RSA public key into the corresponding XMLObject and stores it in a KeyInfo in a new KeyValue element. As input, only supports PublicKeys which are instances of either DSAPublicKey or RSAPublicKey

パラメータ:

keyInfo - the KeyInfo element to which to add the key

pk - the native Java PublicKey to add

例外:

IllegalArgumentException - thrown if an unsupported public key type is passed

buildRSAKeyValue

public static RSAKeyValue buildRSAKeyValue(RSAPublicKey rsaPubKey)

Builds an RSAKeyValue XMLObject from the Java security RSA public key type.

パラメータ:

rsaPubKey - a native Java RSAPublicKey

戻り値:

an RSAKeyValue XMLObject

buildDSAKeyValue

public static DSAKeyValue buildDSAKeyValue(DSAPublicKey dsaPubKey)

Builds a DSAKeyValue XMLObject from the Java security DSA public key type.

パラメータ:

dsaPubKey - a native Java DSAPublicKey

戻り値:

an DSAKeyValue XMLObject

getPublicKeys

public static List<PublicKey> getPublicKeys(KeyInfo keyInfo)
                                     throws KeyException

Extracts all the public keys within the given KeyInfo's KeyValues. This method only supports DSA and RSA key types.

パラメータ:

keyInfo - KeyInfo to extract the keys out of

戻り値:

a list of native Java PublicKey objects

例外:

KeyException - thrown if the given key data can not be converted into PublicKey

getKey

public static PublicKey getKey(KeyValue keyValue)
                        throws KeyException

Extracts the DSA or RSA public key within the KeyValue.

パラメータ:

keyValue - the KeyValue to extract the key from

戻り値:

a native Java security Key object

例外:

KeyException - thrown if the given key data can not be converted into PublicKey

getDSAKey

public static PublicKey getDSAKey(DSAKeyValue keyDescriptor)
                           throws KeyException

Builds an DSA key from a DSAKeyValue element. The element must contain values for all required DSA public key parameters, including values for shared key family values P, Q and G.

パラメータ:

keyDescriptor - the DSAKeyValue key descriptor

戻り値:

a new DSAPublicKey instance of PublicKey

例外:

KeyException - thrown if the key algorithm is not supported by the JCE or the key spec does not contain valid information

getDSAKey

public static PublicKey getDSAKey(DSAKeyValue keyDescriptor,
                  DSAParams dsaParams)
                           throws KeyException

Builds a DSA key from an DSAKeyValue element and the supplied Java DSAParams, which supplies key material from a shared key family.

パラメータ:

keyDescriptor - the DSAKeyValue key descriptor

dsaParams - the DSAParams DSA key family parameters

戻り値:

a new DSAPublicKey instance of PublicKey

例外:

KeyException - thrown if the key algorithm is not supported by the JCE or the key spec does not contain valid information

hasCompleteDSAParams

public static boolean hasCompleteDSAParams(DSAKeyValue keyDescriptor)

Check whether the specified DSAKeyValue element has the all optional DSA values which can be shared amongst many keys in a DSA "key family", and are presumed to be known from context.

パラメータ:

keyDescriptor - the DSAKeyValue element to check

戻り値:

true if all parameters are present and non-empty, false otherwise

getRSAKey

public static PublicKey getRSAKey(RSAKeyValue keyDescriptor)
                           throws KeyException

Builds an RSA key from an RSAKeyValue element.

パラメータ:

keyDescriptor - the RSAKeyValue key descriptor

戻り値:

a new RSAPublicKey instance of PublicKey

例外:

KeyException - thrown if the key algorithm is not supported by the JCE or the key spec does not contain valid information

decodeBigIntegerFromCryptoBinary

public static final BigInteger decodeBigIntegerFromCryptoBinary(String base64Value)

Decode a base64-encoded ds:CryptoBinary value to a native Java BigInteger type.

パラメータ:

base64Value - base64-encoded CryptoBinary value

戻り値:

the decoded BigInteger

encodeCryptoBinaryFromBigInteger

public static final String encodeCryptoBinaryFromBigInteger(BigInteger bigInt)

Encode a native Java BigInteger type to a base64-encoded ds:CryptoBinary value.

パラメータ:

bigInt - the BigInteger value

戻り値:

the encoded CryptoBinary value

buildKey

protected static PublicKey buildKey(KeySpec keySpec,
                 String keyAlgorithm)
                             throws KeyException

Generates a public key from the given key spec.

パラメータ:

keySpec - KeySpec specification for the key

keyAlgorithm - key generation algorithm, only DSA and RSA supported

戻り値:

the generated PublicKey

例外:

KeyException - thrown if the key algorithm is not supported by the JCE or the key spec does not contain valid information

getX509CertFactory

protected static CertificateFactory getX509CertFactory()
                                                throws CertificateException

Get the Java certificate factory singleton.

戻り値:

CertificateFactory the factory used to create X509 certificate objects

例外:

CertificateException - thrown if the factory can not be created