Class ProxyCSRInfo


  • public class ProxyCSRInfo
    extends Object
    A class to get the information from the proxy certificate request.
    Author:
    J. Hahkala, K. Benedyczak
    • Constructor Detail

      • ProxyCSRInfo

        public ProxyCSRInfo​(org.bouncycastle.pkcs.PKCS10CertificationRequest csr)
                     throws CertificateException
        Generates new instance of this class using the Certificate Signing Request
        Parameters:
        csr - certificate signing request
        Throws:
        CertificateException - if the Certificate Signing Request is invalid
    • Method Detail

      • getProxyType

        public ProxyType getProxyType()
        The type of the proxy certificate requested is returned or null if can not be determined. In principle the null response means that the DN is not a valid LEGACY proxy DN, and that either RFC or DRAFT proxy should be generated.
        Returns:
        the proxy type
      • isLimited

        public Boolean isLimited()
        Used to check whether the Certificate Signing Request is for a limited proxy or not.
        Returns:
        null if not set
      • getPolicy

        public ProxyPolicy getPolicy()
        Gets the requested RFC proxy extension policy OID and octets of the policy. See RFC3820. Policy can be null in case the OID in it self defines the behavior, like with "inherit all" policy or "independent" policy.
        Returns:
        the requested policy or null if not set
      • getProxyTracingIssuer

        public String getProxyTracingIssuer()
        Returns an requested URL of the proxy tracing issuer.
        Returns:
        The proxy tracing issuer URL in String format, or null if was not requested.
      • getProxyTracingSubject

        public String getProxyTracingSubject()
        Returns a requested URL of the proxy tracing subject.
        Returns:
        The proxy tracing subject URL in String format, or null if was not requested.
      • getSAMLExtension

        public String getSAMLExtension()
        Returns the SAML extension from the certificate chain.
        Returns:
        The SAML assertion in String format or null if not set
      • getProxyPathLimit

        public Integer getProxyPathLimit()
        Returns the proxy path length limit set in the Certificate Signing Request. Returns an Integer.MAX_VALUE value if length is set to be unlimited.
        Returns:
        the requested proxy path length.
      • getProxySourceRestrictions

        public String[][] getProxySourceRestrictions()
        Gets the proxy source restriction data from the Certificate Signing Request. The returned array has as the first item the array of allowed namespaces and as the second item the array of excluded namespaces.
        Returns:
        null if the extension was not set
      • getProxyTargetRestrictions

        public String[][] getProxyTargetRestrictions()
        Gets the proxy target restriction data from the Certificate Signing Request. The returned array has as the first item the array of allowed namespaces and as the second item the array of excluded namespaces.
        Returns:
        null if the extension was not set