com.digt.trusted.jce.provider
Class CAPICertStore

java.lang.Object
  extended by com.digt.trusted.jce.provider.CAPICertStore
Direct Known Subclasses:
CryptoProCSPCertStore

public class CAPICertStore
extends java.lang.Object


Constructor Summary
  CAPICertStore()
           
protected CAPICertStore(java.security.cert.CertStoreSpi storeSpi, java.security.Provider provider, java.lang.String type, java.security.cert.CertStoreParameters params, java.util.Collection certs, java.util.Collection crls)
          Creates a CertStore object of the given type, and encapsulates the given provider implementation (SPI object) in it.
 
Method Summary
 java.util.Collection getAllCertificates()
           
 java.util.Collection getAllCRLs()
           
 java.util.Collection getCertificates(java.security.cert.CertSelector selector)
          Returns a Collection of Certificates that match the specified selector.
 java.security.cert.CertStoreParameters getCertStoreParameters()
          Returns the parameters used to initialize this CertStore.
 java.util.Collection getCRLs(java.security.cert.CRLSelector selector)
          Returns a Collection of CRLs that match the specified selector.
static java.lang.String getDefaultType()
          Returns the default CertStore type as specified in the Java security properties file, or the string "LDAP" if no such property exists.
 CAPICertStore getInstance(java.lang.String type, java.security.cert.CertStoreParameters params)
          Returns a GOSTCertStore object that implements the specified GOSTCertStore type and is initialized with the specified parameters.
 java.security.Provider getProvider()
          Returns the provider of this CertStore.
 java.lang.String getType()
          Returns the type of this CertStore.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

CAPICertStore

public CAPICertStore()

CAPICertStore

protected CAPICertStore(java.security.cert.CertStoreSpi storeSpi,
                        java.security.Provider provider,
                        java.lang.String type,
                        java.security.cert.CertStoreParameters params,
                        java.util.Collection certs,
                        java.util.Collection crls)
Creates a CertStore object of the given type, and encapsulates the given provider implementation (SPI object) in it.

Parameters:
storeSpi - the provider implementation
provider - the provider
type - the type
params - the initialization parameters (may be null)
Method Detail

getCertificates

public final java.util.Collection getCertificates(java.security.cert.CertSelector selector)
                                           throws java.security.cert.CertStoreException
Returns a Collection of Certificates that match the specified selector. If no Certificates match the selector, an empty Collection will be returned.

For some CertStore types, the resulting Collection may not contain all of the Certificates that match the selector. For instance, an LDAP CertStore may not search all entries in the directory. Instead, it may just search entries that are likely to contain the Certificates it is looking for.

Some CertStore implementations (especially LDAP CertStores) may throw a CertStoreException unless a non-null CertSelector is provided that includes specific criteria that can be used to find the certificates. Issuer and/or subject names are especially useful criteria.

Parameters:
selector - A CertSelector used to select which Certificates should be returned. Specify null to return all Certificates (if supported).
Returns:
A Collection of Certificates that match the specified selector (never null)
Throws:
java.security.cert.CertStoreException - if an exception occurs

getAllCertificates

public final java.util.Collection getAllCertificates()

getCRLs

public final java.util.Collection getCRLs(java.security.cert.CRLSelector selector)
                                   throws java.security.cert.CertStoreException
Returns a Collection of CRLs that match the specified selector. If no CRLs match the selector, an empty Collection will be returned.

For some CertStore types, the resulting Collection may not contain all of the CRLs that match the selector. For instance, an LDAP CertStore may not search all entries in the directory. Instead, it may just search entries that are likely to contain the CRLs it is looking for.

Some CertStore implementations (especially LDAP CertStores) may throw a CertStoreException unless a non-null CRLSelector is provided that includes specific criteria that can be used to find the CRLs. Issuer names and/or the certificate to be checked are especially useful.

Parameters:
selector - A CRLSelector used to select which CRLs should be returned. Specify null to return all CRLs (if supported).
Returns:
A Collection of CRLs that match the specified selector (never null)
Throws:
java.security.cert.CertStoreException - if an exception occurs

getAllCRLs

public final java.util.Collection getAllCRLs()
                                      throws java.security.cert.CertStoreException
Throws:
java.security.cert.CertStoreException

getInstance

public CAPICertStore getInstance(java.lang.String type,
                                 java.security.cert.CertStoreParameters params)
                          throws java.security.NoSuchAlgorithmException,
                                 java.io.IOException
Returns a GOSTCertStore object that implements the specified GOSTCertStore type and is initialized with the specified parameters.

If the default provider package provides an implementation of the specified GOSTCertStore type, an instance of GOSTCertStore containing that implementation is returned. If the requested type is not available in the default package, other packages are searched.

The GOSTCertStore that is returned is initialized with the specified CertStoreParameters. The type of parameters needed may vary between different types of CertStores. Note that the specified CertStoreParameters object is cloned.

Parameters:
type - the name of the requested CertStore type
params - the initialization parameters (may be null)
Returns:
a CertStore object that implements the specified CertStore type
Throws:
java.security.NoSuchAlgorithmException - if the requested type is not available in the default provider package or any of the other provider packages that were searched
java.io.IOException

getCertStoreParameters

public final java.security.cert.CertStoreParameters getCertStoreParameters()
Returns the parameters used to initialize this CertStore. Note that the CertStoreParameters object is cloned before it is returned.

Returns:
the parameters used to initialize this CertStore (may be null)

getType

public final java.lang.String getType()
Returns the type of this CertStore.

Returns:
the type of this CertStore

getProvider

public final java.security.Provider getProvider()
Returns the provider of this CertStore.

Returns:
the provider of this CertStore

getDefaultType

public static final java.lang.String getDefaultType()
Returns the default CertStore type as specified in the Java security properties file, or the string "LDAP" if no such property exists. The Java security properties file is located in the file named <JAVA_HOME>/lib/security/java.security, where <JAVA_HOME> refers to the directory where the SDK was installed.

The default CertStore type can be used by applications that do not want to use a hard-coded type when calling one of the getInstance methods, and want to provide a default CertStore type in case a user does not specify its own.

The default CertStore type can be changed by setting the value of the "certstore.type" security property (in the Java security properties file) to the desired type.

Returns:
the default CertStore type as specified in the Java security properties file, or the string "LDAP" if no such property exists.