Skip to content
Normal view History Permalink
CertificateLoader.java 2.41 KiB
Newer Older
pjohansson's avatar
Updated code header (with new team members)  
pjohansson committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 
/*
 * The contents of this file are subject to the Mozilla Public
 * License Version 1.1 (the "License"); you may not use this
 * file except in compliance with the License. You may obtain
 * a copy of the License at http://www.mozilla.org/MPL/
 *
 * Software distributed under the License is distributed on an
 * "AS IS" basis, WITHOUT WARRANTY OF ANY KIND, either express
 * or implied. See the License for the specific language governing
 * rights and limitations under the License.
 *
 *
 * The Original Code is Java RASP toolkit.
 *
 * The Initial Developer of the Original Code is Lenio. Portions
 * created by Lenio are Copyright (C) 2007 Danish National IT and 
 * Telecom Agency (http://www.itst.dk). All Rights Reserved.
 *
 * Contributor(s):
 *   Tommy Dejbjerg Pedersen, Lenio
 *   Hans Guldager Knudsen, Lenio
 *   Patrik Johansson, Accenture
pjohansson's avatar
Updated encoding for all files  
pjohansson committed
23 
 *   Dennis Søgaard, Accenture
pjohansson's avatar
Updated code header (with new team members)  
pjohansson committed
24 25 26 27 28 29 30 31 32 33 34 
 *   Martin Bentzen, Accenture
 *   Jesper Jensen, Avanade
 *   Ramzi Fadel, Avanade
 *   Christian Pedersen, Accenture
 *   Morten Hougesen, Accenture
 *   Mikkel Hippe Brun, ITST
 *   Finn Hartmann Jordal, ITST
 *   Christian Lanng, ITST
 *
 */
mbentzen's avatar
Added functionality to provide OCSP rootcertificate in OCSP lookup. If not...
mbentzen committed
35 36 37 38 
package dk.gov.oiosi.security.lookup;

import java.io.FileNotFoundException;
import java.io.IOException;
pjohansson's avatar
Updated certificate loader so that it can now load certs from the class path...  
pjohansson committed
39 
import java.net.URL;
mbentzen's avatar
Added functionality to provide OCSP rootcertificate in OCSP lookup. If not...
mbentzen committed
40 41 42 43 44 45 
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
pjohansson's avatar
Updated certificate loader so that it can now load certs from the class path...  
pjohansson committed
46 47 
import org.apache.commons.configuration.ConfigurationUtils;
mbentzen's avatar
Added functionality to provide OCSP rootcertificate in OCSP lookup. If not...
mbentzen committed
48 49 50 51 
import dk.gov.oiosi.security.RootCertificateConfig;

public class CertificateLoader {
pjohansson's avatar
Made MessageID a string instead of a GUID  
pjohansson committed
52 53 54 55 
	/*
	 * Tries to load the root certificate by searching the user home directory, the current classpath and the system classpath.
	 * 
	 */
mbentzen's avatar
Added functionality to provide OCSP rootcertificate in OCSP lookup. If not...
mbentzen committed
56 57 58 
    public static X509Certificate GetCertificateFromCertificateStoreInformation(RootCertificateConfig rootCertConfig) throws KeyStoreException, NoSuchAlgorithmException, CertificateException, FileNotFoundException, IOException {
        // define receiver certificate
        KeyStore ks = KeyStore.getInstance("JKS");
pjohansson's avatar
Updated certificate loader so that it can now load certs from the class path...  
pjohansson committed
59 60 
        URL rootCertLocation = ConfigurationUtils.locate(rootCertConfig.getKeyStoreLocation());
        ks.load(rootCertLocation.openStream(), rootCertConfig.getKeyStorePassword().toCharArray());
mbentzen's avatar
Added functionality to provide OCSP rootcertificate in OCSP lookup. If not...
mbentzen committed
61 62 63 64 
        X509Certificate cert = (X509Certificate) ks.getCertificate(rootCertConfig.getKeyLabel());
        return cert;
    }
}