public class X509CertUtils extends Object
Modifier and Type | Field and Description |
---|---|
static String |
PEM_BEGIN_MARKER
The PEM start marker.
|
static String |
PEM_END_MARKER
The PEM end marker.
|
Constructor and Description |
---|
X509CertUtils() |
Modifier and Type | Method and Description |
---|---|
static Base64URL |
computeSHA256Thumbprint(X509Certificate cert)
Computes the X.509 certificate SHA-256 thumbprint (
x5t#S256 ). |
static Provider |
getProvider()
Returns the JCA provider to use for certification operations.
|
static X509Certificate |
parse(byte[] derEncodedCert)
Parses a DER-encoded X.509 certificate.
|
static X509Certificate |
parse(String pemEncodedCert)
Parses a PEM-encoded X.509 certificate.
|
static X509Certificate |
parseWithException(byte[] derEncodedCert)
Parses a DER-encoded X.509 certificate with exception handling.
|
static X509Certificate |
parseWithException(String pemEncodedCert)
Parses a PEM-encoded X.509 certificate with exception handling.
|
static void |
setProvider(Provider provider)
Sets the JCA provider to use for certification operations.
|
static UUID |
store(KeyStore keyStore,
PrivateKey privateKey,
char[] keyPassword,
X509Certificate cert)
Stores a private key with its associated X.509 certificate in a
Java key store.
|
static String |
toPEMString(X509Certificate cert)
Returns the specified X.509 certificate as PEM-encoded string.
|
static String |
toPEMString(X509Certificate cert,
boolean withLineBreaks)
Returns the specified X.509 certificate as PEM-encoded string.
|
public static final String PEM_BEGIN_MARKER
public static final String PEM_END_MARKER
public X509CertUtils()
public static Provider getProvider()
null
implies the default provider.public static void setProvider(Provider provider)
provider
- The JCA provider to use for certificate operations,
null
implies the default provider.public static X509Certificate parse(byte[] derEncodedCert)
derEncodedCert
- The DER-encoded X.509 certificate, as a byte
array. May be null
.null
if not specified or
parsing failed.public static X509Certificate parseWithException(byte[] derEncodedCert) throws CertificateException
derEncodedCert
- The DER-encoded X.509 certificate, as a byte
array. Empty or null
if not specified.null
if not specified.CertificateException
- If parsing failed.public static X509Certificate parse(String pemEncodedCert)
pemEncodedCert
- The PEM-encoded X.509 certificate, as a
string. Empty or null
if not
specified.null
if parsing failed.public static X509Certificate parseWithException(String pemEncodedCert) throws CertificateException
pemEncodedCert
- The PEM-encoded X.509 certificate, as a
string. Empty or null
if not
specified.null
if parsing failed.CertificateException
public static String toPEMString(X509Certificate cert)
cert
- The X.509 certificate. Must not be null
.null
if encoding
failed.public static String toPEMString(X509Certificate cert, boolean withLineBreaks)
cert
- The X.509 certificate. Must not be
null
.withLineBreaks
- false
to suppress line breaks.null
if encoding
failed.public static Base64URL computeSHA256Thumbprint(X509Certificate cert)
x5t#S256
).cert
- The X.509 certificate. Must not be null
.null
if
a certificate encoding exception is encountered.public static UUID store(KeyStore keyStore, PrivateKey privateKey, char[] keyPassword, X509Certificate cert) throws KeyStoreException
keyStore
- The key store. Must be initialised and not
null
.privateKey
- The private key. Must not be null
.keyPassword
- The password to protect the private key, empty
array for none. Must not be null
.cert
- The X.509 certificate, its public key and the
private key should form a pair. Must not be
null
.KeyStoreException
Copyright © 2020 Connect2id Ltd.. All rights reserved.