當前位置: 首頁>>代碼示例>>Java>>正文

Java CrlClient類代碼示例

本文整理匯總了Java中com.itextpdf.text.pdf.security.CrlClient的典型用法代碼示例。如果您正苦於以下問題:Java CrlClient類的具體用法?Java CrlClient怎麽用?Java CrlClient使用的例子?那麽, 這裏精選的類代碼示例或許可以為您提供幫助。


CrlClient類屬於com.itextpdf.text.pdf.security包,在下文中一共展示了CrlClient類的4個代碼示例,這些例子默認根據受歡迎程度排序。您可以為喜歡或者感覺有用的代碼點讚,您的評價將有助於係統推薦出更棒的Java代碼示例。

示例1: sign

import com.itextpdf.text.pdf.security.CrlClient; //導入依賴的package包/類
public void sign(
	char[] cardPassword, SignatureProcessSettings settings, List<PdfDocument> pdfDocumentsList 
) throws IOException, GeneralSecurityException, DocumentException, HttpException, CertificateException {
	
	notifyListeners("Lendo SmartCard.");
	certificateProcessor.loadKeystore(cardPassword);
	
	notifyListeners("Obtendo Alias do Certificado.");
	String firstAlias = certificateProcessor.getFirstAlias();
	
	if(settings.isValidateSignerCertificateAlias()){
		String validSignerCertificateAlias = settings.getValidSignerCertificateAlias();
		if(!StringValidator.validateString(validSignerCertificateAlias) || !validSignerCertificateAlias.equalsIgnoreCase(firstAlias)){
			notifyListeners("Certificado N�o Autorizado.");
			throw new CertificateException(
				"USU\u00C1RIO N\u00C3O AUTORIZADO A ASSINAR."
				+ "\nCERTIFICADO ESPERADO: " + validSignerCertificateAlias
				+ "\nCERTIFICADO NO CARTAO: " + firstAlias
			);
		}
	}
	
	notifyListeners("Lendo Cadeia de Certificados.");
	Certificate[] certificateChain = certificateProcessor.getCertificateChain();
	
	if(settings.isCheckCertificateValidity()){
		notifyListeners("Checando Validade Do Certificado.");
		boolean isCertificateChainValid = certificateProcessor.isFirstCertificateChainValid();
		
		if(isCertificateChainValid == false){
			notifyListeners("Certificado Inv�lido.");
			throw new CertificateException("CERTIFICADO EXPIRADO");
		}
	}
	
	if(settings.isCheckCertificateRevocation()){
		notifyListeners("Checando Revoga��o do Certificado.");
		boolean isCertificateChainRevoked = certificateProcessor.isFirstCertificateRevoked();
		
		if(isCertificateChainRevoked == true){
			notifyListeners("Certificado Revogado");
			throw new CertificateException("CERTIFICADO REVOGADO");
		}
	}
	
	notifyListeners("Obtendo Chave Privada.");
	PrivateKey certificatePrivateKey = certificateProcessor.getFirstCertificatePrivateKey(cardPassword);
	
	notifyListeners("Gerando Carimbo de Tempo.");
	TSAClientBouncyCastle tsaClient = generateTSAClientBouncyCastleInstance(certificateChain);
	
	List<CrlClient> crlList = null;
	if(settings.isEmbedCRLZip()){
		notifyListeners("Gerando Lista de CRL.");
		crlList = generateCRLClientList(certificateChain);
	}
	
	sign(
		pdfDocumentsList, settings, firstAlias, certificateChain, certificatePrivateKey, 
		digestAlgorithm, certificateProcessor.getProviderName(), cryptographySpecification, 
		crlList, tsaClient, 0
	);
}
開發者ID:MatheusArleson,項目名稱:PdfUtil,代碼行數:64,代碼來源:PdfSignerV4.java

示例2: generateCRLClientList

import com.itextpdf.text.pdf.security.CrlClient; //導入依賴的package包/類
private List<CrlClient> generateCRLClientList(Certificate[] chain){ 
	List<CrlClient> crlList = new ArrayList<CrlClient>();
	crlList.add(new CrlClientOnline(chain));
	return crlList;
}
開發者ID:MatheusArleson,項目名稱:PdfUtil,代碼行數:6,代碼來源:PdfSignerV4.java

示例3: addLtvJanPokorny

import com.itextpdf.text.pdf.security.CrlClient; //導入依賴的package包/類
/**
 * <a href="http://stackoverflow.com/questions/35134568/itext-ltv-enabled-how-to-add-more-crls">
 * iText LTV enabled - how to add more CRLs?
 * </a>
 * <p>
 * The original addLtv method of the OP modified merely to allow the
 * source PDF to be given as {@link InputStream} instead of {@link String}.
 * </p>
 */
public void addLtvJanPokorny(InputStream src, String dest) throws IOException, DocumentException, GeneralSecurityException
{
    PdfReader r = new PdfReader(src);
    FileOutputStream fos = new FileOutputStream(dest);
    PdfStamper stp = new PdfStamper(r, fos, '\0', true);
    LtvVerification v = stp.getLtvVerification();
    AcroFields fields = stp.getAcroFields();

    ArrayList<String> names = fields.getSignatureNames();
    String sigName = names.get(names.size() - 1);
    System.out.println("found signature: " + sigName);
    PdfPKCS7 pkcs7 = fields.verifySignature(sigName);

    //add LTV
    OcspClient ocsp = new OcspClientBouncyCastle();
    CrlClient crlClient1 = new CrlClientOnline("http://www.postsignum.cz/crl/psrootqca2.crl");
    ArrayList<CrlClient> crllist = new ArrayList<CrlClient>();
    crllist.add(crlClient1);
    CrlClient crlClient2 = new CrlClientOnline("http://www.postsignum.cz/crl/pspublicca2.crl");
    crllist.add(crlClient2);
    System.out.println("crllist.size=" + crllist.size());

    if (pkcs7.isTsp())
    {
        for (CrlClient crlclient : crllist)
        {
            if (v.addVerification(sigName, new OcspClientBouncyCastle(), crlclient,
                    LtvVerification.CertificateOption.SIGNING_CERTIFICATE,
                    LtvVerification.Level.CRL,
                    LtvVerification.CertificateInclusion.NO))
            {
                System.out.println("crl " + crlclient.toString() + " added to timestamp");
            }
        }
    }
    else
    {
        for (String name : names)
        {
            for (int i = 0; i < crllist.size(); i++) {
                if (v.addVerification(name, ocsp, crllist.get(i),
                        LtvVerification.CertificateOption.WHOLE_CHAIN,
                        LtvVerification.Level.CRL,
                        LtvVerification.CertificateInclusion.NO))
                {
                    System.out.println("crl " + crllist.get(i).toString() + " added to " + name);
                }
                if (i > 0)
                {
                    System.out.println("found verification, merge");
                    v.merge();
                }
            }
        }
    }
    stp.close();
}
開發者ID:mkl-public,項目名稱:testarea-itext5,代碼行數:67,代碼來源:AddLtvCrls.java

示例4: addLtvFixed

import com.itextpdf.text.pdf.security.CrlClient; //導入依賴的package包/類
/**
 * <a href="http://stackoverflow.com/questions/35134568/itext-ltv-enabled-how-to-add-more-crls">
 * iText LTV enabled - how to add more CRLs?
 * </a>
 * <p>
 * The original addLtv method of the OP modified to allow the source PDF
 * to be given as {@link InputStream} instead of {@link String} and fixed
 * to properly use multiple CRLs.
 * </p>
 */
public void addLtvFixed(InputStream src, String dest) throws IOException, DocumentException, GeneralSecurityException
{
    PdfReader r = new PdfReader(src);
    FileOutputStream fos = new FileOutputStream(dest);
    PdfStamper stp = new PdfStamper(r, fos, '\0', true);
    LtvVerification v = stp.getLtvVerification();
    AcroFields fields = stp.getAcroFields();

    ArrayList<String> names = fields.getSignatureNames();
    String sigName = names.get(names.size() - 1);
    System.out.println("found signature: " + sigName);
    PdfPKCS7 pkcs7 = fields.verifySignature(sigName);

    //add LTV
    OcspClient ocsp = new OcspClientBouncyCastle();
    CrlClient crlClient = new CrlClientOnline("http://www.postsignum.cz/crl/psrootqca2.crl", "http://www.postsignum.cz/crl/pspublicca2.crl");

    if (pkcs7.isTsp())
    {
        if (v.addVerification(sigName, new OcspClientBouncyCastle(), crlClient,
                LtvVerification.CertificateOption.SIGNING_CERTIFICATE,
                LtvVerification.Level.CRL,
                LtvVerification.CertificateInclusion.NO))
        {
            System.out.println("crl " + crlClient.toString() + " added to timestamp");
        }
    }
    else
    {
        for (String name : names)
        {
            if (v.addVerification(name, ocsp, crlClient,
                    LtvVerification.CertificateOption.WHOLE_CHAIN,
                    LtvVerification.Level.CRL,
                    LtvVerification.CertificateInclusion.NO))
            {
                System.out.println("crl " + crlClient.toString() + " added to " + name);
            }
        }
    }
    stp.close();
}
開發者ID:mkl-public,項目名稱:testarea-itext5,代碼行數:53,代碼來源:AddLtvCrls.java


注:本文中的com.itextpdf.text.pdf.security.CrlClient類示例由純淨天空整理自Github/MSDocs等開源代碼及文檔管理平台,相關代碼片段篩選自各路編程大神貢獻的開源項目,源碼版權歸原作者所有,傳播和使用請參考對應項目的License;未經允許,請勿轉載。