pl.edu.icm.unity.engine.api

Interface PKIManagement

public interface PKIManagement

Provides access to PKI related stores: credentials, certificates and truststores (validators).

Currently it is read only and implementation is based on FS stored data. In future it will be enhanced to support DB-stored data with possibility to add/remove contents.

Single exception are certificates. It is possible to managed (add/remove) them at runtime, however the current implementation is in memory only, i.e. all changes are lost after restart. Again this will be refactored in future.

Author:

K. Benedyczak

Method Summary

Modifier and Type	Method and Description
void	addCertificate(String name, X509Certificate updated) Adds a new certificate
X509Certificate	getCertificate(String name)
Set<String>	getCertificateNames()
eu.emi.security.authn.x509.X509Credential	getCredential(String name)
Set<String>	getCredentialNames()
eu.unicore.security.canl.IAuthnAndTrustConfiguration	getMainAuthnAndTrust()
eu.emi.security.authn.x509.X509CertChainValidatorExt	getValidator(String name)
Set<String>	getValidatorNames()
void	removeCertificate(String name) Removes a given certificate
void	updateCertificate(String name, X509Certificate updated) Updates a given certificate

Method Detail

getCredentialNames

Set<String> getCredentialNames()
                        throws pl.edu.icm.unity.exceptions.EngineException

Returns:

set with available credential names

Throws:

pl.edu.icm.unity.exceptions.EngineException

getCredential

eu.emi.security.authn.x509.X509Credential getCredential(String name)
                                                 throws pl.edu.icm.unity.exceptions.EngineException

Parameters:

name -

Returns:

credential by name

Throws:

pl.edu.icm.unity.exceptions.EngineException

getValidatorNames

Set<String> getValidatorNames()
                       throws pl.edu.icm.unity.exceptions.EngineException

Returns:

set of available validators

Throws:

pl.edu.icm.unity.exceptions.EngineException

getValidator

eu.emi.security.authn.x509.X509CertChainValidatorExt getValidator(String name)
                                                           throws pl.edu.icm.unity.exceptions.EngineException

Parameters:

name -

Returns:

validator by name

Throws:

pl.edu.icm.unity.exceptions.EngineException

getMainAuthnAndTrust

eu.unicore.security.canl.IAuthnAndTrustConfiguration getMainAuthnAndTrust()

Returns:

method allows to quickly get IAuthnAndTrustConfiguration of the main server.

getCertificateNames

Set<String> getCertificateNames()
                         throws pl.edu.icm.unity.exceptions.EngineException

Returns:

set with available certificate names

Throws:

pl.edu.icm.unity.exceptions.EngineException

getCertificate

X509Certificate getCertificate(String name)
                        throws pl.edu.icm.unity.exceptions.EngineException

Parameters:

name -

Returns:

certificate by name

Throws:

pl.edu.icm.unity.exceptions.EngineException

updateCertificate

void updateCertificate(String name,
                       X509Certificate updated)
                throws pl.edu.icm.unity.exceptions.EngineException

Updates a given certificate

Parameters:

name -

updated -

Throws:

pl.edu.icm.unity.exceptions.EngineException

removeCertificate

void removeCertificate(String name)
                throws pl.edu.icm.unity.exceptions.EngineException

Removes a given certificate

Parameters:

name -

Throws:

pl.edu.icm.unity.exceptions.EngineException

addCertificate

void addCertificate(String name,
                    X509Certificate updated)
             throws pl.edu.icm.unity.exceptions.EngineException

Adds a new certificate

Parameters:

name -

updated -

Throws:

pl.edu.icm.unity.exceptions.EngineException