DutchGridCA (jGridstart top-level 1.19)

java.lang.Object
- nl.nikhef.jgridstart.ca.DutchGridCA

All Implemented Interfaces:

CA
```
public class DutchGridCA
extends Object
implements CA
```
This class is used interface with the DutchGrid production CA

Author:

wvengen

Field Summary

Fields
Modifier and Type	Field	Description
`protected String`	`baseCaCert`	CA entry point: CA cert
`protected String`	`baseQuery`	CA entry point: query
`protected String`	`baseSubmit`	CA entry point: submission
`protected static X509Certificate`	`cacert`	CA certificate (cached)
`protected String`	`caDN`	CA DN
`protected static Logger`	`logger`

Constructor Summary

Constructors
Constructor Description

DutchGridCA()
Create new DutchGridCA

Constructors
Constructor	Description
`DutchGridCA()`	Create new DutchGridCA

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method	Description
`X509Certificate`	`downloadCertificate(PKCS10CertificationRequest req, Properties info)`	Download a certificate from the DutchGrid CA
`String`	`encodeCertificationRequest(PKCS10CertificationRequest req, Properties info)`	Just returns the PEM encoded version of the request.
`X509Certificate`	`getCACertificate()`	Return the CA certificate
`boolean`	`isCertificationRequestProcessed(PKCS10CertificationRequest req, Properties info)`	Checks to see if a certificate signing request was processed by a CA.
`boolean`	`isIssuer(X509Certificate cert)`	Return whether a certificate was issued by this CA
`String`	`signCertificationRequest(PKCS10CertificationRequest req, Properties info, PrivateKey oldKey, X509Certificate oldCert)`	PEM-encodes request and puts it in a S/MIME signed form.
`void`	`uploadCertificationRequest(String req, Properties info)`	Uploads a user certificate signing request onto the DutchGrid CA.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Field Detail
  - logger
```
protected static final Logger logger
```
  - baseSubmit
```
protected String baseSubmit
```
    CA entry point: submission
  - baseQuery
```
protected String baseQuery
```
    CA entry point: query
  - baseCaCert
```
protected String baseCaCert
```
    CA entry point: CA cert
  - caDN
```
protected String caDN
```
    CA DN
  - cacert
```
protected static X509Certificate cacert
```
    CA certificate (cached)
- Constructor Detail
  - DutchGridCA
```
public DutchGridCA()
            throws NoSuchAlgorithmException,
                   KeyManagementException
```
    Create new DutchGridCA
    
    Throws:
    
    NoSuchAlgorithmException
    
    KeyManagementException
- Method Detail
  - encodeCertificationRequest
```
public String encodeCertificationRequest(PKCS10CertificationRequest req,
                                         Properties info)
                                  throws IOException
```
    Just returns the PEM encoded version of the request.
    
    Specified by:
    
    encodeCertificationRequest in interface CA
    
    Parameters:
    
    req - certificate signing request
    
    info - extra information that may be sent with the request (implementation-dependent)
    
    Returns:
    
    string with encoded certificate signing request
    
    Throws:
    
    IOException
  - signCertificationRequest
```
public String signCertificationRequest(PKCS10CertificationRequest req,
                                       Properties info,
                                       PrivateKey oldKey,
                                       X509Certificate oldCert)
                                throws IOException
```
    PEM-encodes request and puts it in a S/MIME signed form.
    Sets the property renewal to true.
    
    Specified by:
    
    signCertificationRequest in interface CA
    
    Parameters:
    
    req - certificate signing request
    
    info - extra information that may be sent with the request (implementation-dependent)
    
    oldKey - key to sign request with
    
    oldCert - certificate to sign request with
    
    Returns:
    
    string with encoded and signed certificate signing request
    
    Throws:
    
    IOException
  - uploadCertificationRequest
```
public void uploadCertificationRequest(String req,
                                       Properties info)
                                throws IOException
```
    Uploads a user certificate signing request onto the DutchGrid CA.
    The field email is used to supply the user's email address to the CA for notifying the user when the request is processed, and the field agreecps must be true to succeed; the latter corresponds to the "I agree to the privacy policy" checkbox on the website. The field fullname should contain the user's full name. The optional field comments is used for additional comments.
    
    Specified by:
    
    uploadCertificationRequest in interface CA
    
    Parameters:
    
    req - certification signing request
    
    info - extra information that may be sent with the request (implementation-dependant); email, fullname and agreecps are used here.
    
    Throws:
    
    IOException
  - isCertificationRequestProcessed
```
public boolean isCertificationRequestProcessed(PKCS10CertificationRequest req,
                                               Properties info)
                                        throws IOException
```
    Description copied from interface: CA
    
    Checks to see if a certificate signing request was processed by a CA.
    When true, the certificate can be downloaded using CA.downloadCertificate(org.bouncycastle.jce.PKCS10CertificationRequest, java.util.Properties).
    Implementers of this CA interface could, for example, just return if CA.downloadCertificate(org.bouncycastle.jce.PKCS10CertificationRequest, java.util.Properties) would complete without errors, optionally caching the fetched certificate.
    
    Specified by:
    
    isCertificationRequestProcessed in interface CA
    
    Parameters:
    
    req - the certificate signing request that was sent
    
    info - properties supplied to previous methods as well
    
    Returns:
    
    whether the certificate is available at the CA or not
    
    Throws:
    
    IOException
  - downloadCertificate
```
public X509Certificate downloadCertificate(PKCS10CertificationRequest req,
                                           Properties info)
                                    throws IOException
```
    Download a certificate from the DutchGrid CA
    
    Specified by:
    
    downloadCertificate in interface CA
    
    Parameters:
    
    req - the certificate signing request that was sent
    
    info - properties supplied to previous methods as well (not used by DutchGridCA)
    
    Returns:
    
    certificate signed by the certificate authority
    
    Throws:
    
    IOException
  - getCACertificate
```
public X509Certificate getCACertificate()
                                 throws IOException
```
    Return the CA certificate
    CA certificate is downloaded once each program run.
    
    Specified by:
    
    getCACertificate in interface CA
    
    Throws:
    
    IOException
  - isIssuer
```
public boolean isIssuer(X509Certificate cert)
```
    Return whether a certificate was issued by this CA
    
    Specified by:
    
    isIssuer in interface CA

Class DutchGridCA

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

logger

baseSubmit

baseQuery

baseCaCert

caDN

cacert

Constructor Detail

DutchGridCA

Method Detail

encodeCertificationRequest

signCertificationRequest

uploadCertificationRequest

isCertificationRequestProcessed

downloadCertificate

getCACertificate

isIssuer