Modifier and Type | Method and Description |
---|---|
XMLDSIG |
XMLDSIGHandler.assembleXMLDSIG(PrivateKey privateKey,
X509Certificate signerCertificate,
int slotId,
byte[] privateKeyLabel,
boolean includeCertChain,
X509Certificate[] certChain,
String canonicalizedObjectElement,
String hashAlg)
Method that creates an XML Digital Signature.
|
long |
XMLDSIGHandler.calculateDaysUntilCertExpires(X509Certificate signerCert) |
Modifier and Type | Method and Description |
---|---|
String |
Communicator.sendRequest(String targetURL,
long timeout,
String proxyHost,
String proxyPort,
String proxyUser,
String proxyPwd)
Method for sending a HTTP request to the input targetURL.
|
String |
Communicator.sendSocketRequest(String targetURL,
String proxyhost,
String proxyport,
String proxyUser,
String proxyPwd,
long timeout)
Executes the input targetURL.
|
byte[] |
SSLCommunicator.sendSSLSocketRequest(String httpsURL,
String proxyhost,
String proxyport,
String proxyuser,
String proxypwd,
byte[] request,
String contentType,
long timeout,
TrustManager[] trustManagers)
Sends a HTTPS request via Sockets tunneling the request through the
input proxyhost and proxyport.
|
byte[] |
Communicator.sendVASocketRequest(String httpURL,
String proxyhost,
String proxyport,
byte[] request,
String contentType,
long timeout) |
Modifier and Type | Method and Description |
---|---|
BIDException |
TransactionHandler.createBIDUnexpectedException(Exception e,
int errorCode,
String methodIdentifier) |
Modifier and Type | Method and Description |
---|---|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
SEIDSDOHandler.addSDOSignature(no.bbs.bankid.seid.sdo.components.SEID_SDO sdoList,
PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedData) |
void |
TransactionHandler.authenticateClient(String base64ClientSignature,
String base64ServerChallenge)
Method to verify the client Signature over the server challenge.
|
CertificateStatus |
OCSPHandler.checkStatus(X509Certificate merchantCert,
PrivateKey pk,
byte[] signature,
List<String> addInfo,
List<String> certificateAccessList,
X509Certificate bankidRootCertificate,
int slot,
byte[] privateKeyLabel,
String billingNonce,
X509Certificate[] bankidRootCertificates) |
CertificateStatus |
OCSPHandler.checkStatus(X509Certificate merchantCert,
PrivateKey pk,
X509Certificate userCert,
X509Certificate issuerCert,
List<String> addInfo,
List<String> certificateAccessList,
X509Certificate bankidRootCertificate,
int slot,
byte[] privateKeyLabel,
String billingNonce,
X509Certificate[] bankidRootCertificates)
Calls the BankID Validation Authority to get the certificate status of the signer
certificate from the input signature
|
CertificateStatus |
OCSPHandlerSign2.checkStatus(X509Certificate userCert,
X509Certificate issuerCert,
List<String> addInfo,
String billingNonce)
Calls the BankID Validation Authority to get the certificate status of the signer
certificate from the input signature
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
SEIDSDOHandler.createDynamicSEIDSDO(PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedData,
String signedDocumentMimeType,
String merchantDescription) |
no.bbs.bankid.seid.sdo.components.SEID_SDO |
SEIDSDOHandler.createSDOSeal(no.bbs.bankid.seid.sdo.components.SEID_SDO sdo,
byte[] b64OCSPResponse,
X509Certificate[] merchantSignerCertChain,
X509Certificate merchantSignerCert,
PrivateKey merchantSignerKey,
List<String> certificateAccessList,
X509Certificate bankidRootCertificate,
int slot,
byte[] privateKeyLabel) |
no.bbs.bankid.seid.sdo.components.SEID_SDO |
SEIDSDOHandler.createSEIDSDO(byte[] b64ClientPKCS7,
byte[] b64MerchantPKCS7,
byte[] signedData,
String signedDocumentMimeType,
byte[] b64MerchantsOCSP,
byte[] b64ClientOCSP,
String merchantDescription,
X509Certificate[] merchantSignerCertChain,
X509Certificate merchantSignerCert,
PrivateKey merchantSignerKey,
List<String> certificateAccessList,
X509Certificate bankidRootCertificate,
int slot,
byte[] privateKeyLabel,
X509Certificate[] bankidRootCertificates)
Method to create a SEID_SDO instance.
|
String |
TransactionHandler.decryptTransactionData(String operation,
String encryptedKey,
String encryptedData,
String encryptedAuth,
String sessionID,
BIDSessionData sessionData) |
String |
TransactionHandler.encryptTransactionData(String dataToBeEncrypted,
BIDSessionData sessionData)
Method to encrypt the transactionData to be sendt to the client
|
String |
ServiceHostHandler.getB64ServerInfo() |
static String |
InitSessionHandler.getB64ServerInfo(MerchantContext context) |
Hashtable<String,String> |
InitSessionHandler.getEncryptedRequest(String req,
byte[] baseKey,
KeyStore keyStore) |
String |
InitSessionHandler.getInitSession(InitSessionInfo initSessionInfo,
org.bouncycastle.crypto.params.KeyParameter baseKeyParameter)
This is the InitSessionHandler's main method.
|
String |
MobileHandler.getMerchantReference(String locale) |
Map<String,String> |
TransactionHandler.getRawTransactionReportMap(Map<String,String> decrDataMap) |
String |
TransactionHandler.initAuth(BIDSessionData sessionData,
boolean isMobileCarrier,
boolean prepareText,
SecureChannelInfo secureChannelInfo,
HashMap<String,String> decrDataMap,
OCSPFormat ocspFormat,
CMSFormat cmsFormat) |
String |
ServiceHostHandler.prepareAndSendRequest(URLEncodedNamedValues nameValues,
long timeout,
byte[] baseKey) |
String |
MobileHandler.pushSMS(String transactionReference,
String text,
String popInfo) |
TransactionAndStatus |
MobileHandler.reqMobileAction(MobileInfo mobileInfo) |
String |
MobileHandler.requestMobileStatus(String transactionReference) |
byte[] |
SignHandler.sign(PrivateKey priv,
byte[] tbsData,
int slot,
byte[] privateKeyLabel,
String hashAlg)
Signs the input tbsData with the input PrivateKey.
|
byte[] |
SignHandler.signAndCreateDetachedPKCS7(byte[] dataToBeSigned,
X509Certificate[] certificateChain,
X509Certificate signerCertificate,
PrivateKey privateKey,
int slotId,
byte[] privateKeyId,
boolean includeBSSChannelOID,
CMSFormat cmsFormat) |
String |
TransactionHandler.signMultipleDocuments(BIDSessionData sessionData,
OCSPFormat ocspFormat,
CMSFormat cmsFormat) |
byte[] |
SignHandler.signPKCS1(PrivateKey priv,
byte[] tbsData,
int slot,
byte[] privateKeyLabel,
String hashAlg) |
String |
TransactionHandler.signSingleDocument(BIDSessionData sessionData,
String carrier,
boolean isMobileCarrier,
SecureChannelInfo secureChannelInfo,
boolean prepareText,
OCSPFormat ocspFormat,
CMSFormat cmsFormat) |
void |
TransactionHandler.splitDecryptTransactionData(String decryptedData,
Map<String,String> outputMap)
Method to split the request into key=value pairs in an HashMap.
|
void |
TransactionHandler.validateInitTransactionParameters(String operation,
BIDSessionData sessionData) |
void |
TransactionHandler.validateInitTransactionParameters(String operation,
String encryptedKey,
String encryptedData,
String encryptedAuth,
String sessionID,
BIDSessionData sessionData) |
void |
TransactionHandler.validateVerifyTransactionRequestParameters(String operation,
BIDSessionData sessionData) |
void |
TransactionHandler.validateVerifyTransactionRequestParameters(String operation,
String encryptedKey,
String encryptedData,
String encryptedAuth,
String sessionID,
BIDSessionData sessionData) |
void |
VerifyChainHandler.verifyCertChain(String signerCertKU)
Verifies the signer certificate chain and that the different CA certificates have
the correct key usages
|
void |
VerifyHandler.verifyDetachedPKCS7(byte[] signature,
byte[] signedData,
String signerCertKeyUsages,
String extendedKeyUsages)
Verifies a PKCS7 against the input byte[] data.
|
void |
VerifyHandler.verifyIdentrusHashInSDO(byte[] signature,
byte[] dataTBS,
String signerCertKU,
String extendedKeyUsage)
Verifies the Signature against the signer certificate's PublicKey.
|
void |
VerifyChainHandler.verifyMobileSDOCertChain(String signerCertKU) |
void |
TransactionHandler.verifyMultiSign(Map<String,String> decrDataMap,
BIDSessionData sessionData,
String traceID,
OCSPFormat ocspFormat)
VerifySign for BankID 2.1
|
void |
OCSPHandler.verifyOCSPResponse(org.bouncycastle.cert.ocsp.BasicOCSPResp resp,
X509Certificate bankidRootCertificate,
List<String> certificateAccessList,
boolean checkCertificateExpiration,
X509Certificate[] bankidRootCertificates)
Method to verify the signature in the BasicOCSPResponse from the Validation
Authority
|
void |
VerifyChainHandler.verifySDOCertChain(String signerCertKU)
Verifies the signer certificate chain and that the different CA certificates have
the correct key usages.
|
void |
VerifyHandler.verifySDODetachedPKCS7(byte[] signature,
byte[] signedData,
String signerCertKeyUsages,
String extendedKeyUsages)
Verifies a SDO PKCS7 against the input byte[] data.
|
void |
VerifyHandler.verifySHAWithRSA(org.bouncycastle.cert.ocsp.BasicOCSPResp resp,
byte[] dataTBS,
X509Certificate signerCert,
String keyUsage,
String extKeyUsage,
boolean checkCertificateExpiration)
Method that verifies a standard SHA1withRSA Signature and the signer certificate
keyusage and extended key usages if they exist
|
void |
VerifyChainHandler.verifySingleCertChain(String signerCertKU,
boolean checkCertificateExpiration)
Method to verify that a single certificate is the direct decendant from the BankID ROOT
Certificate.
|
void |
TransactionHandler.verifySingleSign(Map<String,String> decrDataMap,
BIDSessionData sessionData,
String traceID,
OCSPFormat ocspFormat)
VerifySign for BankID <= 2.0
|
Modifier and Type | Method and Description |
---|---|
static SignService |
SignServiceFactory.getSignService(CMSFormat cmsFormat,
BIDLogger logger) |
Modifier and Type | Method and Description |
---|---|
ContextInfo |
BIDFactory.addGrantedPolicyIdentifier(String merchantName,
String policyOID)
This method allows merchants to add a certificate policy oid to the already configured
granted policies list in the merchant context identified by the input merchantName.
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
BIDFacade.addSDOSignature(byte[] sdoXMLBytes,
PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedDataRaw)
This method makes it possible to add signatures to an already existing SEID_SDO.
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
BIDFacade.addSDOSignature(no.bbs.bankid.seid.sdo.components.SEID_SDO sdo,
PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedDataRaw)
This method makes it possible to add signatures to an already existing SEID_SDO.
|
byte[] |
BIDFacade.base64Decode(byte[] dataToDecode)
Method to base64-decoded byte[] of data.
|
byte[] |
BIDFacade.base64Encode(byte[] dataToEncode)
Method to base64-encoded byte[] of data.
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
BIDFacade.createDynamicSDO(PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedData,
String signedDocumentMimeType,
String merchantDescription)
This method gives the merchant the possibility to create a SEID_SDO structure with
1 ..
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
BIDFacade.createSDO(byte[] b64ClientPKCS7,
byte[] b64MerchantPKCS7,
byte[] signedData,
String signedDocumentMimeType,
byte[] b64MerchantOCSP,
byte[] b64ClientOCSP,
String merchantDescription)
Method to create a SEID SDO instance (SEID_SDO).
|
no.bbs.bankid.seid.sdo.components.SEID_SDO |
BIDFacade.createSDOSeal(no.bbs.bankid.seid.sdo.components.SEID_SDO sdo,
byte[] b64OCSPResponse)
This method seal the input SEID_SDO.
|
XMLDSIG |
BIDFacade.createXMLDSIG(String c14nXMLOrder)
This method signs the input c14n canonicalized xml creating a
XML Digital Signature structure.
|
String |
BIDFacade.dynamicSDOGetSigners(no.bbs.bankid.seid.sdo.components.SEID_SDO sdo)
This method generates a String formated for the client to used during multisigning.
|
String |
BIDFacade.dynamicSDOXMLGetSigners(String sdoXml)
This method generates a String formated for the client to used during multisigning.
|
String |
BIDFacade.generateMerchantReference()
Deprecated.
As of release 3.3.0, replaced by
BIDFacade.generateMerchantReference(String locale) |
String |
BIDFacade.generateMerchantReference(String locale)
Method to generate the reference to show to the user during mobile authentication.
|
CertificateInfo |
BIDFacade.getCertificateInfo(byte[] certificate)
Returns a CertificateInfo with the Certificate Information for the input
X509Certificate bytes.
|
CertificateInfo |
BIDFacade.getCertificateInfo(String b64ClientSignature)
This method parses the input PKCS7 and retrieves the signer Certificate.
|
CertificateStatus |
BIDFacade.getCertificateStatus(String clientSignature,
List<String> addInfo)
This method parses the input signature (PKCS#7) and extracts the signer
certificate and its issuer certificate.
|
CertificateStatus |
BIDFacade.getCertificateStatus(String clientSignature,
List<String> addInfo,
String internal)
This method is for internal use only.
|
CertificateStatus |
BIDFacade.getCertificateStatus(String clientSignature,
List<String> addInfo,
String internal,
OCSPFormat format)
This method is for internal use only.
|
CertificateStatus |
BIDFacade.getCertificateStatusRFC6960(String clientSignature,
List<String> addInfo,
String internal)
Get CertificateStatus with RFC6960 signature validation.
|
BIDFacade |
BIDFactory.getFacade(String merchantName)
Returns a BIDFacade instance for the input merchant context.
|
String |
BIDFactory.getNativeCryptokiVersion()
This method returns the NativeCryptoki.dll (or .so) version.
|
CertificateStatus |
BIDFacade.getOwnCertificateStatus()
This method gets the CertificateStatus for the merchant's own signing certificate
|
PKCS7Info |
BIDFacade.getPKCS7Info(String b64EncodedPKCS7)
Returns a PKCS7Info with the PKCS#7 Information for the input
base64 encoded signature bytes.
|
String |
BIDFacade.getSigners(ArrayList<String> pkcs7s)
This method generates a String formated for the client to used during multisigning.
|
HashMap<String,String> |
BIDFacade.getTransactionInfo(String key,
List<String> oidList,
long timeoutInMs) |
byte[] |
BIDFacade.hashData(byte[] dataToHash,
String hashAlgorithm)
Method to hash data.
|
InitSessionInfo |
BIDFacade.initSession(InitSessionInfo initSessionInfo)
This method sends a request to the BankID COI to generate a BankID Web-client, and
receives a url to a helper object which retrieves the actual client.
|
String |
BIDFacade.initTransaction(String operation,
String encryptedKey,
String encryptedData,
String encryptedAuth,
String sessionID,
BIDSessionData sessionData)
Method to handle the initAuth/initSign operation received from the BankID client.
|
ContextInfo |
BIDFactory.loadBankIDContext(String configFilePath,
String merchantName,
String passphrase)
Loads the configuration file merchantName.props and returns and instance of
ContextInfo.
|
void |
BIDFactory.loadPKCS11Adapter(String nativeCryptoki,
String p11Driver)
Method to load a PKCS#11 driver.
|
String |
BIDFacade.pushSMS(String transactionReference,
String text)
Method to push an SMS to the user after mobile phone sign/auth is done.
|
ContextInfo |
BIDFactory.registerBankIDContext(MerchantConfig merchantConfig)
Method to register and initialize a BankIDServer context without needing any property-/configuration-
files.
|
void |
BIDFactory.removeBankIDContext(String merchantName)
Method to remove a merchants BankIDServer Context in runtime.
|
ContextInfo |
BIDFactory.removeGrantedPolicyIdentifier(String merchantName,
String policyOID)
Through this method a merchant can remove already configured granted policies from
it BankIDServer context.
|
TransactionAndStatus |
BIDFacade.requestMobileAction(MobileInfo mobileInfo)
Method to initialize mobile phone signing.
|
String |
BIDFacade.requestMobileStatus(String transactionReference)
Method to get the status from an earlyer initialized mobile phone signing process.
|
DynamicSDOData |
BIDFacade.sdoExtractSignatures(byte[] sdoAsXml)
This method gives the merchant the possibility to extract a SEID_SDO structure with
1 ..
|
SignatureAndData |
BIDFacade.sign(byte[] dataToBeSigned)
Sign the input data to be signed using the Sign Certificate
|
byte[] |
BIDFacade.sign(byte[] dataToBeSigned,
boolean useAuthCert,
boolean includeBSSChannelOID)
Sign method that signs the input dataToBeSigned with either the authPK or the
signPK based on the useAuthCert input value.
|
byte[] |
BIDFacade.sign(byte[] dataToBeSigned,
boolean useAuthCert,
boolean includeBSSChannelOID,
CMSFormat cmsFormat)
Sign method that signs the input dataToBeSigned with either the authPK or the
signPK based on the useAuthCert input value.
|
SignatureAndData |
BIDFacade.sign(byte[] dataToBeSigned,
CMSFormat cmsFormat)
Sign the input data to be signed using the Sign Certificate
|
SignatureAndData |
BIDFacade.sign(String dataToBeSigned)
Converts the data to ISO-LATIN-1 and signs the data
using the Sign Certificate
|
SignatureAndData |
BIDFacade.sign(String dataToBeSigned,
CMSFormat cmsFormat)
Converts the data to ISO-LATIN-1 and signs the data
using the Sign Certificate
|
SignatureAndData |
BIDFacade.signPKCS1(byte[] dataToBeSigned)
Signs the input data bytes and creates a PKCS#1.
|
SignatureAndData |
BIDFacade.signPKCS1(byte[] dataToBeSigned,
boolean useAuth)
Signs the input data bytes and creates a PKCS#1.
|
SignatureAndData |
BIDFacade.signXML(String xmlDocument,
String xslDocument)
This method constructs a BankIDXML structure using the input:
The resulting structure is signed and returned in the SignatureAndData instance. |
SignatureAndData |
BIDFacade.signXML(String xmlDocument,
String xslDocument,
CMSFormat cmsFormat)
This method constructs a BankIDXML structure using the input:
The resulting structure is signed and returned in the SignatureAndData instance. |
void |
BIDFacade.validateDynamicSDO(byte[] sdoXMLBytes,
byte[] signedDataRaw,
int expectedNumberOfSignatures,
boolean isSDOSealed)
Validates a SEID_SDO.
|
void |
BIDFacade.validateSDO(byte[] sdoXMLBytes,
boolean validateStoredData)
Method to validate a SEID_SDO.
|
void |
BIDFacade.verify(byte[] b64EncodedPKCS7,
byte[] signedData)
Verifies the input Signature against the input data.
|
void |
BIDFacade.verify(byte[] b64EncodedPKCS7,
byte[] signedData,
boolean signKeyUsage,
String extKeyUsage)
Verifies the input Signature against the input data.
|
void |
BIDFacade.verify(String b64EncodedPKCS7,
byte[] signedData)
Verifies the input Signature against the input data.
|
void |
BIDFacade.verifyTransactionRequest(String operation,
String encryptedKey,
String encryptedData,
String encryptedAuth,
String sessionID,
BIDSessionData sessionData)
Method to handle the decryption initAuth/initSign/handleError operation received from the BankID client.
|
String |
BIDFacade.verifyTransactionResponse(BIDSessionData sessionData)
This method handles the creation of the encrypted response to the BankID client for the
initAuth/initSign/handleError operation.
|
Modifier and Type | Method and Description |
---|---|
void |
AddSDOSignatureInputValidator.validate(byte[] sdoXMLBytes) |
void |
CreateSDOInputValidator.validate(byte[] b64ClientPKCS7,
byte[] b64MerchantPKCS7,
byte[] signedData,
String signedDocumentMimeType,
byte[] b64MerchantOCSP,
byte[] b64ClientOCSP,
String merchantDescription) |
void |
CreateDynamicSDOInputValidator.validate(PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries,
byte[] signedData,
String signedDocumentMimeType,
String merchantDescription) |
void |
CreateSDOSealInputValidator.validate(no.bbs.bankid.seid.sdo.components.SEID_SDO seidSdo,
byte[] b64OCSPResponse) |
void |
AddSDOSignatureInputValidator.validate(no.bbs.bankid.seid.sdo.components.SEID_SDO seidSdo,
PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries) |
Modifier and Type | Method and Description |
---|---|
byte[] |
SSLCommunicatorInterface.sendSSLSocketRequest(String httpsURL,
String proxyhost,
String proxyport,
String proxyuser,
String proxypwd,
byte[] request,
String contentType,
long timeout,
TrustManager[] trustManagers) |
Modifier and Type | Method and Description |
---|---|
void |
SEIDSDOValidator.validateSEIDSDOList(no.bbs.bankid.seid.sdo.components.SEID_SDO sdoList) |
Modifier and Type | Method and Description |
---|---|
byte[] |
PKCS7SignedObject.getAuthenticatedAttributeBBSChannel() |
int |
PKCS7SignedObject.getNumberSubCACerts()
Returns the number of sub CA certificates in PKCS#7
|
X509Certificate |
PKCS7SignedObject.getRootCACert()
Returns the root certificate from the PKCS#7
|
byte[] |
PKCS7SignedObject.getRootCACertDERBytes()
Returns the root certificate from the PKCS#7
|
X509Certificate |
PKCS7SignedObject.getSignerCert()
Returns the signer certificate from the PKCS#7
|
byte[] |
PKCS7SignedObject.getSignerCertDERBytes()
Returns the signer certificate bytes from the PKCS#7
|
Date |
PKCS7SignedObject.getSigningTime()
Returns the Signing Time from the PKCS#7
|
X509Certificate |
PKCS7SignedObject.getSubCACert(int level)
Returns the Sub CA certificate at the input level
|
byte[] |
PKCS7SignedObject.getSubCACertToDER(int level)
Returns the Sub CA certificate at the input level
|
void |
PKCS7SignedObject.set(BIDByteArray data,
boolean isBase64Encoded)
Base64 Decodes the input PKCS7 and creates a SignedData Object
|
void |
PKCS7SignedObject.set(byte[] pkcs7Bytes,
boolean isBase64Encoded)
Base64 Decodes the input PKCS7 and creates a SignedData Object
|
Modifier and Type | Method and Description |
---|---|
protected BIDException |
InputValidator.createBIDException(List<String> errorParams) |
protected BIDException |
InputValidator.createBIDException(String parameterName) |
protected BIDException |
InputValidator.createBIDException(String parameterName,
String reason) |
Modifier and Type | Method and Description |
---|---|
X509Certificate[] |
CryptoUtil.assembleCertChain(X509Certificate[] allcerts,
X509Certificate leaf) |
protected BIDException |
InputValidator.createBIDException(List<String> errorParams) |
protected BIDException |
InputValidator.createBIDException(String parameterName) |
protected BIDException |
InputValidator.createBIDException(String parameterName,
String reason) |
static String |
Base64Utility.encodeToString(byte[] abyte0)
Encode the input data producing a base64-encoded string.
|
String |
X509CertificateWrapper.getAIALocation()
Returns the Certificate AIALocation
|
protected static org.bouncycastle.asn1.pkcs.SafeBag[] |
CryptoUtil.getAllSafeBagsFromPKCS12File(File file,
char[] p12PassPhrase)
Helper method to load all SafeBags from a PKCS#12 keystore.
|
byte[] |
X509CertificateWrapper.getCertificate()
Gets the DER the certificate DER encoded
|
String |
X509CertificateWrapper.getEmailAddress()
Retrieves the Email extension from a Certificate
|
byte[] |
X509CertificateWrapper.getExtension(String oid)
Returns the certificate extensions as byte[]
|
X509Certificate |
CryptoUtil.getIssuerCertFromChain(X509Certificate[] chain,
X509Certificate cert) |
String |
X509CertificateWrapper.getOriginator()
Retrieves the value of the Originator Extension field
|
MerchantConfig |
ConfigUtil.getProperties(String file)
Reads the input property file and returns a HashMap of keys with their corresponding values.
|
X509Certificate[] |
CryptoUtil.getSignerCertificates(X509Certificate[] allcerts)
Locates the Signer certificates from the input certificates based on the input key usage.
|
Date |
X509CertificateWrapper.getValidFromDate()
Returns the Certificate NotBefore
|
static void |
AccessListUtil.isCertificateSupported(List<String> accessList,
X509Certificate certificate)
Checks if the input JCRYPTO_X509Certificate's policy OID is supported
|
void |
CryptoUtil.loadContext(String passphrase,
String keystore,
MerchantContext context)
Method that retrieves Certificates, CertificateChains and Keys from the input keystore
and populates the input context with the information
|
PrivateKey |
CryptoUtil.loadPrivateKey(File file,
char[] p12PassPhrase,
X509Certificate certificate)
Locates the private key in a .bid file for the given certificate.
Additional description: The KeyBag should be located based on the localKeyId from the certificate The KeyBag should be a PKCS#8ShroudedKeyBag (password encrypted) For HSM .bid files with no KeyBags included, the method should return 'null' |
static byte[] |
BaseKeyProtector.protectBaseKey(byte[] basekey,
BigInteger mod,
BigInteger exp) |
String |
FileUtil.readFileNewLine(String fileName)
Reads the data from the input fileName and appends a /n after each line read.
|
static byte[] |
BaseKeyProtector.unprotectBaseKey(byte[] ciphertext,
BigInteger mod,
BigInteger exp) |
void |
PKCS7InputValidator.validate(byte[] value,
String parameterName) |
void |
OCSPInputValidator.validate(byte[] value,
String parameterName) |
void |
EmptyInputValidator.validate(byte[] value,
String parameterName) |
void |
PKCS7InputValidator.validate(byte[] value,
String parameterName,
String reason) |
void |
OCSPInputValidator.validate(byte[] value,
String parameterName,
String reason) |
void |
EmptyInputValidator.validate(byte[] value,
String parameterName,
String reason) |
void |
EmptyInputValidator.validate(Object[] value,
String parameterName) |
void |
EmptyInputValidator.validate(Object value,
String parameterName) |
void |
EmptyInputValidator.validate(Object value,
String parameterName,
String reason) |
void |
PKCS7WithOCSPResponseArrayValidator.validate(PKCS7WithOCSPResponse[] pkcs7AndOCSPEntries) |
void |
ValidStringInputValidator.validate(String input,
List<String> validInputList,
String parameterName) |
void |
EmptyInputValidator.validate(String value,
String parameterName) |
MerchantConfig |
ConfigUtil.validateConfigProps(MerchantConfig config)
Validated the input HashMap of configuration data based on the type of context.
|
Constructor and Description |
---|
X509CertificateWrapper(byte[] certBytes)
Constructs a X509CertificateWrapper from the input certificate bytes
|
X509CertificateWrapper(X509Certificate cert) |
Modifier and Type | Method and Description |
---|---|
void |
BIDSessionData.setDataToBeSignedMimeType(String dataToBeSignedMimeType)
This method is used by the merchant to set the MimeType of the data to be signed.
|
void |
BIDSessionData.setPDFSignData(byte[] pdfBytes,
String dataDescription)
This method can be used to set the data to be signed when signing PDF documents
|
void |
BIDSessionData.setSignData(String text,
String dataDescription)
This method can be used to set the data to be signed when signing plain text documents
|
void |
BIDSessionData.setXMLSignData(String xml,
String xsl,
String dataDescription)
This method can be used to set the data to be signed when signing XML documents
|
Copyright © 2017 Nets Branch Norway. All Rights Reserved.