Example usage for java.security.cert X509Certificate getExtensionValue

List of usage examples for java.security.cert X509Certificate getExtensionValue

  1. HOME
  2. Java
  3. java
  4. java.security.cert.*
  5. X509Certificate
  6. getExtensionValue

Introduction

In this page you can find the example usage for java.security.cert X509Certificate getExtensionValue.

Prototype

public byte[] getExtensionValue(String oid);

Source Link

Document

Gets the DER-encoded OCTET string for the extension value (extnValue) identified by the passed-in oid String.

Usage

From source file:org.opensaml.xml.security.x509.X509UtilTest.java

/**
 * Test 1 alt name: DNS./*from   ww  w.  j a v a  2s  . c o  m*/
 * @throws SecurityException
 * @throws CertificateParsingException 
 */
public void testGetSubjectAltNames1NameDNS() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert1AltNameDNS;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    assertNotNull("Entity cert's Java native getExtensionValue() was null", extensionValue);
    assertTrue("Entity cert's extension value was empty", extensionValue.length > 0);

    Set<Integer> nameTypes = new HashSet<Integer>();
    nameTypes.add(altNameTypeDNS);

    List altNames = getAltNames(cert, nameTypes);
    assertNotNull("X509Util.getAltNames() returned null", altNames);

    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameDNS));
}

From source file:org.opensaml.xml.security.x509.X509UtilTest.java

/**
 * Test 1 alt name: URI (URN).//from   www. j  ava2 s  .  co m
 * @throws SecurityException
 * @throws CertificateParsingException 
 */
public void testGetSubjectAltNames1NameURN() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert1AltNameURN;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    assertNotNull("Entity cert's Java native getExtensionValue() was null", extensionValue);
    assertTrue("Entity cert's extension value was empty", extensionValue.length > 0);

    Set<Integer> nameTypes = new HashSet<Integer>();
    nameTypes.add(altNameTypeURI);

    List altNames = getAltNames(cert, nameTypes);
    assertNotNull("X509Util.getAltNames() returned null", altNames);

    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameURN));
}

From source file:org.opensaml.xml.security.x509.X509UtilTest.java

/**
 * Test 1 alt name: URI (URL)./*from  w w  w. ja  v a 2s .  com*/
 * @throws SecurityException
 * @throws CertificateParsingException 
 */
public void testGetSubjectAltNames1NameURL() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert1AltNameURL;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    assertNotNull("Entity cert's Java native getExtensionValue() was null", extensionValue);
    assertTrue("Entity cert's extension value was empty", extensionValue.length > 0);

    Set<Integer> nameTypes = new HashSet<Integer>();
    nameTypes.add(altNameTypeURI);

    List altNames = getAltNames(cert, nameTypes);
    assertNotNull("X509Util.getAltNames() returned null", altNames);

    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameURL));
}

From source file:org.opensaml.security.x509.X509SupportTest.java

/**
 * Test 3 alt names: DNS, URI (URL), IP.
 * /*from  w  w  w  .j  av  a  2s.c o m*/
 * @throws SecurityException
 * @throws CertificateParsingException
 */
@Test
public void testGetSubjectAltNames3NamesDNS_URL_IP() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert3AltNamesDNS_URL_IP;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    Assert.assertNotNull(extensionValue, "Entity cert's Java native getExtensionValue() was null");
    Assert.assertTrue(extensionValue.length > 0, "Entity cert's extension value was empty");

    Set<Integer> nameTypes = new HashSet<>();
    nameTypes.add(altNameTypeDNS);
    nameTypes.add(altNameTypeURI);
    nameTypes.add(altNameTypeIP);

    List altNames = getAltNames(cert, nameTypes);
    Assert.assertNotNull(altNames, "X509Support.getAltNames() returned null");

    Assert.assertTrue(altNames.contains(altNameDNS), "Failed to find expected KeyName value");
    Assert.assertTrue(altNames.contains(altNameURL), "Failed to find expected KeyName value");
    Assert.assertTrue(altNames.contains(altNameIP), "Failed to find expected KeyName value");
}

From source file:org.opensaml.security.x509.X509SupportTest.java

/**
 * Test 3 alt names: DNS, URI (URN), IP.
 * /*  w ww  .  ja  v  a2  s . c om*/
 * @throws SecurityException
 * @throws CertificateParsingException
 */
@Test
public void testGetSubjectAltNames3NamesDNS_URN_IP() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert3AltNamesDNS_URN_IP;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    Assert.assertNotNull(extensionValue, "Entity cert's Java native getExtensionValue() was null");
    Assert.assertTrue(extensionValue.length > 0, "Entity cert's extension value was empty");

    Set<Integer> nameTypes = new HashSet<>();
    nameTypes.add(altNameTypeDNS);
    nameTypes.add(altNameTypeURI);
    nameTypes.add(altNameTypeIP);

    List altNames = getAltNames(cert, nameTypes);
    Assert.assertNotNull(altNames, "X509Support.getAltNames() returned null");

    Assert.assertTrue(altNames.contains(altNameDNS), "Failed to find expected KeyName value");
    Assert.assertTrue(altNames.contains(altNameURN), "Failed to find expected KeyName value");
    Assert.assertTrue(altNames.contains(altNameIP), "Failed to find expected KeyName value");
}

From source file:org.opensaml.xml.security.x509.X509UtilTest.java

/**
 * Test 3 alt names: DNS, URI (URL), IP.
 * @throws SecurityException/*from   w  w w.j ava 2  s.  com*/
 * @throws CertificateParsingException 
 */
public void testGetSubjectAltNames3NamesDNS_URL_IP() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert3AltNamesDNS_URL_IP;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    assertNotNull("Entity cert's Java native getExtensionValue() was null", extensionValue);
    assertTrue("Entity cert's extension value was empty", extensionValue.length > 0);

    Set<Integer> nameTypes = new HashSet<Integer>();
    nameTypes.add(altNameTypeDNS);
    nameTypes.add(altNameTypeURI);
    nameTypes.add(altNameTypeIP);

    List altNames = getAltNames(cert, nameTypes);
    assertNotNull("X509Util.getAltNames() returned null", altNames);

    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameDNS));
    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameURL));
    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameIP));
}

From source file:org.opensaml.xml.security.x509.X509UtilTest.java

/**
 * Test 3 alt names: DNS, URI (URN), IP.
 * @throws SecurityException// w ww . ja va2 s.  c  o  m
 * @throws CertificateParsingException 
 */
public void testGetSubjectAltNames3NamesDNS_URN_IP() throws SecurityException, CertificateParsingException {
    X509Certificate cert = entityCert3AltNamesDNS_URN_IP;
    // Sanity checks
    byte[] extensionValue = cert.getExtensionValue(subjectAltNameExtensionOID);
    assertNotNull("Entity cert's Java native getExtensionValue() was null", extensionValue);
    assertTrue("Entity cert's extension value was empty", extensionValue.length > 0);

    Set<Integer> nameTypes = new HashSet<Integer>();
    nameTypes.add(altNameTypeDNS);
    nameTypes.add(altNameTypeURI);
    nameTypes.add(altNameTypeIP);

    List altNames = getAltNames(cert, nameTypes);
    assertNotNull("X509Util.getAltNames() returned null", altNames);

    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameDNS));
    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameURN));
    assertTrue("Failed to find expected KeyName value", altNames.contains(altNameIP));
}

From source file:org.jscep.client.Client.java

private void checkDistributionPoints(final String profile) throws ClientException {
    CertStore store = getCaCertificate(profile);
    CertStoreInspector certs = inspectorFactory.getInstance(store);
    final X509Certificate ca = certs.getIssuer();
    if (ca.getExtensionValue(X509Extension.cRLDistributionPoints.getId()) != null) {
        LOGGER.warn("CA supports distribution points");
    }//from  www.j a v a2 s .com
}

From source file:org.wso2.carbon.certificate.mgt.core.impl.CertificateGenerator.java

public String extractChallengeToken(X509Certificate certificate) {

    byte[] challengePassword = certificate
            .getExtensionValue(PKCSObjectIdentifiers.pkcs_9_at_challengePassword.toString());

    if (challengePassword != null) {
        return new String(challengePassword);
    }//from w w  w.  j  a v  a 2 s. c o m

    return null;
}

From source file:be.fedict.eid.tsl.Tsl2PdfExporter.java

private byte[] getSKId(final X509Certificate cert) throws IOException {
    final byte[] extValue = cert.getExtensionValue(X509Extensions.SubjectKeyIdentifier.getId());
    if (extValue != null) {
        final ASN1OctetString str = ASN1OctetString
                .getInstance(new ASN1InputStream(new ByteArrayInputStream(extValue)).readObject());
        final SubjectKeyIdentifier keyId = SubjectKeyIdentifier
                .getInstance(new ASN1InputStream(new ByteArrayInputStream(str.getOctets())).readObject());
        return keyId.getKeyIdentifier();
    } else {/*w  ww .  j  a va2  s. co  m*/
        return null;
    }
}