Package org.globus.gsi
Class CertUtil
- java.lang.Object
-
- org.globus.gsi.CertUtil
-
public class CertUtil extends Object
Deprecated.Use the various utils that are used here.Contains various security-related utility methods.
-
-
Constructor Summary
Constructors Constructor Description CertUtil()
Deprecated.
-
Method Summary
All Methods Static Methods Concrete Methods Deprecated Methods Modifier and Type Method Description static String
getProxyTypeAsString(int proxyType)
Deprecated.Returns a string description of a specified proxy type.static void
init()
Deprecated.A no-op function that can be used to force the class to load and initialize.static void
installSecureRandomProvider()
Deprecated.Installs SecureRandom provider.static boolean
isGsi2Enabled()
Deprecated.Checks if GSI-2 mode is enabled.static boolean
isGsi2Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 proxy certificate.static boolean
isGsi3Enabled()
Deprecated.Checks if GSI-3 mode is enabled.static boolean
isGsi3Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-3 proxy certificate.static boolean
isGsi4Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-4 proxy certificate.static boolean
isImpersonationProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI-4 impersonation proxy certificate.static boolean
isIndependentProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-3 or GS-4 limited proxy certificate.static boolean
isLimitedProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI=4 limited proxy certificate.static boolean
isProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2, GSI-3 or GSI-4proxy certificate.static X509Certificate
loadCertificate(InputStream in)
Deprecated.Loads a X509 certificate from the specified input stream.static X509Certificate
loadCertificate(String file)
Deprecated.Loads an X.509 certificate from the specified file.static X509Certificate[]
loadCertificates(String file)
Deprecated.Loads multiple X.509 certificates from the specified file.static X509CRL
loadCrl(InputStream in)
Deprecated.static X509CRL
loadCrl(String file)
Deprecated.static X509Certificate
readCertificate(BufferedReader reader)
Deprecated.Loads a X.509 certificate from the specified reader.static void
setProvider(String providerName)
Deprecated.Sets a provider name to use for loading certificates and for generating key pairs.static String
toGlobusID(String dn)
Deprecated.Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C".
This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.static String
toGlobusID(String dn, boolean noreverse)
Deprecated.Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C" or "/O=C/OU=B/CN=A" depending on thenoreverse
option.static String
toGlobusID(Principal name)
Deprecated.Converts the specified principal into Globus format.static void
writeCertificate(OutputStream out, X509Certificate cert)
Deprecated.Writes certificate to the specified output stream in PEM format.
-
-
-
Method Detail
-
init
public static void init()
Deprecated.A no-op function that can be used to force the class to load and initialize.
-
installSecureRandomProvider
public static void installSecureRandomProvider()
Deprecated.Installs SecureRandom provider. This function is automatically called when this class is loaded.
-
setProvider
public static void setProvider(String providerName)
Deprecated.Sets a provider name to use for loading certificates and for generating key pairs.- Parameters:
providerName
- provider name to use.
-
loadCertificate
public static X509Certificate loadCertificate(InputStream in) throws GeneralSecurityException
Deprecated.Loads a X509 certificate from the specified input stream. Input stream must contain DER-encoded certificate.- Parameters:
in
- the input stream to read the certificate from.- Returns:
X509Certificate
the loaded certificate.- Throws:
GeneralSecurityException
- if certificate failed to load.
-
loadCertificate
public static X509Certificate loadCertificate(String file) throws IOException, GeneralSecurityException
Deprecated.Loads an X.509 certificate from the specified file. The certificate file must be in PEM/Base64 format and start with "BEGIN CERTIFICATE" and end with "END CERTIFICATE" line.- Parameters:
file
- the file to load the certificate from.- Returns:
java.security.cert.X509Certificate
the loaded certificate.- Throws:
IOException
- if I/O error occursGeneralSecurityException
- if security problems occurs.
-
loadCertificates
public static X509Certificate[] loadCertificates(String file) throws IOException, GeneralSecurityException
Deprecated.Loads multiple X.509 certificates from the specified file. Each certificate must be in PEM/Base64 format and start with "BEGIN CERTIFICATE" and end with "END CERTIFICATE" line.- Parameters:
file
- the certificate file to load the certificate from.- Returns:
- an array of certificates loaded from the file.
- Throws:
IOException
- if I/O error occursGeneralSecurityException
- if security problems occurs.
-
readCertificate
public static X509Certificate readCertificate(BufferedReader reader) throws IOException, GeneralSecurityException
Deprecated.Loads a X.509 certificate from the specified reader. The certificate contents must start with "BEGIN CERTIFICATE" line and end with "END CERTIFICATE" line, and be in PEM/Base64 format. This function does not close the input stream.- Parameters:
reader
- the stream from which load the certificate.- Returns:
- the loaded certificate or null if there was no certificate in the stream or the stream is closed.
- Throws:
IOException
- if I/O error occursGeneralSecurityException
- if security problems occurs.
-
writeCertificate
public static void writeCertificate(OutputStream out, X509Certificate cert) throws IOException, CertificateEncodingException
Deprecated.Writes certificate to the specified output stream in PEM format.
-
toGlobusID
public static String toGlobusID(String dn)
Deprecated.Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C".
This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.- Parameters:
dn
- the DN to convert to Globus format.- Returns:
- the converted DN in Globus format.
- See Also:
toGlobusID(String, boolean)
-
toGlobusID
public static String toGlobusID(String dn, boolean noreverse)
Deprecated.Converts DN of the form "CN=A, OU=B, O=C" into Globus format "/CN=A/OU=B/O=C" or "/O=C/OU=B/CN=A" depending on thenoreverse
option. Ifnoreverse
is true the order of the DN components is not reveresed - "/CN=A/OU=B/O=C" is returned. Ifnoreverse
is false, the order of the DN components is reversed - "/O=C/OU=B/CN=A" is returned.
This function might return incorrect Globus-formatted ID when one of the RDNs in the DN contains commas.- Parameters:
dn
- the DN to convert to Globus format.noreverse
- the direction of the conversion.- Returns:
- the converted DN in Globus format.
-
toGlobusID
public static String toGlobusID(Principal name)
Deprecated.Converts the specified principal into Globus format. If the principal is of unrecognized type a simple string-based conversion is made using thetoGlobusID()
function.- Parameters:
name
- the principal to convert to Globus format.- Returns:
- the converted DN in Globus format.
- See Also:
toGlobusID(String)
-
isProxy
public static boolean isProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2, GSI-3 or GSI-4proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-2 or GSI-3 or GSI-4 proxy, false otherwise.
-
isGsi4Proxy
public static boolean isGsi4Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-4 proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-4 proxy, false otherwise.
-
isGsi3Proxy
public static boolean isGsi3Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-3 proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-3 proxy, false otherwise.
-
isGsi2Proxy
public static boolean isGsi2Proxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-2 proxy, false otherwise.
-
isLimitedProxy
public static boolean isLimitedProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI=4 limited proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-2 or GSI-3 or GSI-4 limited proxy, false otherwise.
-
isIndependentProxy
public static boolean isIndependentProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-3 or GS-4 limited proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-3 or GSI-4 independent proxy, false otherwise.
-
isImpersonationProxy
public static boolean isImpersonationProxy(int certType)
Deprecated.Determines if a specified certificate type indicates a GSI-2 or GSI-3 or GSI-4 impersonation proxy certificate.- Parameters:
certType
- the certificate type to check.- Returns:
- true if certType is a GSI-2 or GSI-3 or GSI-4 impersonation proxy, false otherwise.
-
getProxyTypeAsString
public static String getProxyTypeAsString(int proxyType)
Deprecated.Returns a string description of a specified proxy type.- Parameters:
proxyType
- the proxy type to get the string description of.- Returns:
- the string description of the proxy type.
-
isGsi3Enabled
public static boolean isGsi3Enabled()
Deprecated.Checks if GSI-3 mode is enabled.- Returns:
- true if "org.globus.gsi.version" system property is set to "3". Otherwise, false.
-
isGsi2Enabled
public static boolean isGsi2Enabled()
Deprecated.Checks if GSI-2 mode is enabled.- Returns:
- true if "org.globus.gsi.version" system property is set to "2". Otherwise, false.
-
loadCrl
public static X509CRL loadCrl(String file) throws IOException, GeneralSecurityException
Deprecated.- Throws:
IOException
GeneralSecurityException
-
loadCrl
public static X509CRL loadCrl(InputStream in) throws GeneralSecurityException
Deprecated.- Throws:
GeneralSecurityException
-
-