Package net.sourceforge.jnlp.security

Class SecurityUtil

java.lang.Object

net.sourceforge.jnlp.security.SecurityUtil

public class SecurityUtil
extends Object

Constructor Summary

Constructors

Constructor	Description
SecurityUtil()

Method Summary

Modifier and Type	Method	Description
static boolean	checkTrustedCertsFile()	Checks the user's home directory to see if the trusted.certs file exists.
static KeyStore	getCacertsKeyStore()
static String	getCN(String principal)	Extracts the CN field from a Certificate principal string.
static Key	getKey(KeyStore ks, String alias)
static KeyStore	getSystemCertStore()
static String	getTrustedCertsFilename()
static KeyStore	getUserKeyStore()
static void	initKeyManagerFactory(KeyManagerFactory kmf, KeyStore ks)
static void	loadKeyStore(KeyStore ks, File f)
static void	setKeyEntry(KeyStore ks, String alias, Key key, Certificate[] certChain)
static void	storeKeyStore(KeyStore ks, File f)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SecurityUtil

public SecurityUtil()

Method Details

getTrustedCertsFilename

public static String getTrustedCertsFilename()
                                      throws Exception

Throws:

Exception

getCN

public static String getCN(String principal)

Extracts the CN field from a Certificate principal string. Or, if it can't find that, return the principal unmodified. This is a simple (and hence 'wrong') version. See http://www.ietf.org/rfc/rfc2253.txt for all the gory details.

Parameters:

principal - string, CN to be extracted from

Returns:

extracted CN

checkTrustedCertsFile

public static boolean checkTrustedCertsFile()
                                     throws Exception

Checks the user's home directory to see if the trusted.certs file exists. If it does not exist, it tries to create an empty keystore.

Returns:

true if the trusted.certs file exists or a new trusted.certs was created successfully, otherwise false.

Throws:

Exception - if check goes wrong

getUserKeyStore

public static KeyStore getUserKeyStore()
                                throws Exception

Returns:

the keystore associated with the user's trusted.certs file, or null otherwise.

Throws:

Exception - if getting fails

getCacertsKeyStore

public static KeyStore getCacertsKeyStore()
                                   throws Exception

Returns:

the keystore associated with the JDK cacerts file, or null otherwise.

Throws:

Exception - if get fails

getSystemCertStore

public static KeyStore getSystemCertStore()
                                   throws Exception

Returns:

the keystore associated with the system certs file, or null otherwise.

Throws:

Exception - if get goes wrong

initKeyManagerFactory

public static void initKeyManagerFactory(KeyManagerFactory kmf,
 KeyStore ks)
                                  throws KeyStoreException,
NoSuchAlgorithmException,
UnrecoverableKeyException

Throws:

KeyStoreException

NoSuchAlgorithmException

UnrecoverableKeyException

setKeyEntry

public static void setKeyEntry(KeyStore ks,
 String alias,
 Key key,
 Certificate[] certChain)
                        throws KeyStoreException

Throws:

KeyStoreException

getKey

public static Key getKey(KeyStore ks,
 String alias)
                  throws KeyStoreException,
NoSuchAlgorithmException,
UnrecoverableKeyException

Throws:

KeyStoreException

NoSuchAlgorithmException

UnrecoverableKeyException

loadKeyStore

public static void loadKeyStore(KeyStore ks,
 File f)
                         throws IOException,
NoSuchAlgorithmException,
CertificateException

Throws:

IOException

NoSuchAlgorithmException

CertificateException

storeKeyStore

public static void storeKeyStore(KeyStore ks,
 File f)
                          throws KeyStoreException,
IOException,
NoSuchAlgorithmException,
CertificateException

Throws:

KeyStoreException

IOException

NoSuchAlgorithmException

CertificateException