|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--com.rsa.certj.provider.revocation.ocsp.OCSPRequestControl
This class holds information that controls how an OCSP request message is composed.
Copyright © RSA Security Inc., 2001. All rights reserved.
Constructor Summary |
|
OCSPRequestControl(X509Certificate requestSignerCert)
Constructs an OCSPRequestControl object containing the given request signing certificate. |
|
OCSPRequestControl(X509Certificate requestSignerCert,
String digestAlg,
String signatureAlg,
X509Certificate[] extraCerts,
X509V3Extensions requestExtensions)
Constructs an |
Method Summary |
|
clone()
Clones this |
|
getDigestAlgorithm()
Returns a |
|
getExtraCerts()
Returns an |
|
getRequestExtensions()
Returns an |
|
getSignatureAlgorithm()
Returns a |
|
getSignerCert()
Returns an |
|
void |
setDigestAlgorithm(String digestAlg)
Sets the digest algorithm to use. |
void |
setExtraCerts(X509Certificate[] extraCerts)
Sets a list of extra certificates to send with a request in addition to the set that the service provider determines are necessary. |
void |
setRequestExtensions(X509V3Extensions requestExtensions)
Sets a list of extra extensions to be sent with a request. |
void |
setSignatureAlgorithm(String signatureAlg)
Sets the signature algorithm to use. |
void |
setSignerCert(X509Certificate cert)
Set the certificate to use to sign the request. |
Methods inherited from class java.lang.Object |
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
public OCSPRequestControl(X509Certificate requestSignerCert, String digestAlg, String signatureAlg, X509Certificate[] extraCerts, X509V3Extensions requestExtensions) throws InvalidParameterException
OCSPRequestControl
object with
the given values.
Parameters
requestSignerCert | An | ||
digestAlg | A | ||
signatureAlg | A | ||
extraCerts | An | ||
requestExtensions | An |
Throws
InvalidParameterException
- If any
argument is invalid.public OCSPRequestControl(X509Certificate requestSignerCert) throws InvalidParameterException
"SHA1"
, and the signature algorithm defaults to
"RSA"
, with no additional certificates or request extensions.
Parameters
requestSignerCert | An |
Throws
InvalidParameterException
- If the
argument is invalid.Method Detail |
public Object clone() throws CloneNotSupportedException
OCSPRequestControl
object.Returns
Object
containing the clone.Throws
CloneNotSupportedException
- If
an error occurs during the cloning operation.public void setDigestAlgorithm(String digestAlg) throws InvalidParameterException
Parameters
digestAlg | A |
Throws
InvalidParameterException
- If the
argument can be determined to be invalid.public void setSignatureAlgorithm(String signatureAlg) throws InvalidParameterException
Parameters
signatureAlg | A |
Throws
InvalidParameterException
- If the
argument can be determined to be invalid.public void setExtraCerts(X509Certificate[] extraCerts) throws InvalidParameterException
Parameters
extraCerts | An |
Throws
InvalidParameterException
- If the
argument is invalid.public void setSignerCert(X509Certificate cert) throws InvalidParameterException
Parameters
cert | An |
Throws
InvalidParameterException
- If the
argument is invalid.public void setRequestExtensions(X509V3Extensions requestExtensions) throws InvalidParameterException
Parameters
requestExtensions | An |
Throws
InvalidParameterException
- If the
argument is invalid.public String getDigestAlgorithm()
String
object specifying
the algorithm used to hash certificate information to create
the certificate identifier that is sent to the responder.
Typical values for this parameter are "SHA1"
and
"MD5"
.
Returns
String
object specifying
the algorithm used to hash certificate information to create
the certificate identifier that is sent to the responder.public String getSignatureAlgorithm()
String
object specifying
the algorithm to be used to sign the OCSP request.
A typical value for this parameter is "RSA"
.
Returns
String
object specifying the algorithm
to be used to sign the OCSP request.public X509Certificate getSignerCert()
X509Certificate
object containing the certificate whose private key is
used to sign the OCSP request. The private key must be
present in the CertPathCtx
that is passed
to CertJ.checkCertRevocation
. This parameter
is only required when the OCSP responder requires that
the request be signed. If not specified, this parameter
should be set to null
.
Returns
X509Certificate
object containing the
certificate whose private key is used to sign the OCSP request.public X509Certificate[] getExtraCerts()
X509Certificate
array
containing additional certificates that the requestor
chooses to send to the OCSP responder. By default, the OCSP
Revocation Status service provider sends only the request
signer's certificate to the OCSP responder.
Returns
X509Certificate
array
containing additional certificates that the requestor
chooses to send to the OCSP responder.public X509V3Extensions getRequestExtensions()
X509V3Extensions
object containing optional extensions that are to be included
in every request. If unused, then it must be set to
null
. The service provider always includes
an id-pkix-ocsp-response extension
, and unless
overridden by the OCSP.OCSP_DISABLE_NONCES
flag,
the service provider always supplies an id-pkix-ocsp-nonce
extension
.
If the application requires additional extensions, they can be
specified in this parameter.
Returns
X509V3Extensions
object containing optional extensions that are to be included
in every request.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |