Class TrustedCertificates

  • All Implemented Interfaces:
    Serializable

    public class TrustedCertificates
    extends Object
    implements Serializable
    Deprecated.
    Class that reads in and maintains trusted certificates and signing policy associated with the CAs.
    See Also:
    Serialized Form
    • Field Detail

      • SIGNING_POLICY_FILE_SUFFIX

        public static final String SIGNING_POLICY_FILE_SUFFIX
        Deprecated.
        Default signing policy suffix. The files are expected to be <caHash>.signing_policy in the same directory as the trusted certificates.
        See Also:
        Constant Field Values
    • Constructor Detail

      • TrustedCertificates

        protected TrustedCertificates()
        Deprecated.
      • TrustedCertificates

        public TrustedCertificates​(X509Certificate[] certs)
        Deprecated.
    • Method Detail

      • getSigningPolicies

        public SigningPolicy[] getSigningPolicies()
        Deprecated.
        Returns all signing policies
      • getSigningPolicy

        public SigningPolicy getSigningPolicy​(String subject)
        Deprecated.
        Returns signing policy associated with the given CA subject.
        Parameters:
        subject - CA's subject DN for which signing policy is required. The DN should be in Globus format (with slashes) and not reversed. See CertificateUtil.toGlobusID();
        Returns:
        Signing policy object associated with the CA's DN. Null if no policy was configured. SigningPolicy object might not have any applicable policy if none was configured or none was found in the policy file configured.
      • loadCertificates

        public static X509Certificate[] loadCertificates​(String locations)
        Deprecated.
        Loads X509 certificates and signing policy files from specified locations. The locations can be either files or directories. The directories will be automatically traversed and all files in the form of hashcode.number and will be loaded automatically as trusted certificates. An attempt will be made to load signing policy for the CA associated with that hashcode from <hashcode>.signing_policy. If policy file is not found, no error will be thrown, only path validation code enforces the signing policy requirement.
        Parameters:
        locations - a list of certificate files/directories to load the certificates from. The locations are comma separated.
        Returns:
        java.security.cert.X509Certificate an array of loaded certificates
      • getCertFilter

        public static FilenameFilter getCertFilter()
        Deprecated.
      • reload

        public void reload​(String locations)
        Deprecated.
      • isChanged

        public boolean isChanged()
        Deprecated.
        Indicates if the last reload caused new certificates to be loaded or existing certificates to be reloaded or any certificates removed
      • getDefaultTrustedCertificates

        public static TrustedCertificates getDefaultTrustedCertificates()
        Deprecated.
        Obtains the default set of trusted certificates and signing policy
        Returns:
        TrustedCertificates object.
      • setDefaultTrustedCertificates

        public static void setDefaultTrustedCertificates​(TrustedCertificates trusted)
        Deprecated.
        Sets the default set of trusted certificates to use.
        Parameters:
        trusted - the new set of trusted certificates to use.
      • getDefault

        public static TrustedCertificates getDefault()
        Deprecated.
        Obtains the default set of trusted certificates and signing policy
        Returns:
        TrustedCertificates object.
      • getTrustStore

        public static KeyStore getTrustStore()
        Deprecated.
      • getcrlStore

        public static CertStore getcrlStore()
        Deprecated.