BcCertificateProvider (prosys-opc-ua-sdk-client-server-pubsub 5.6.2-227 API)

java.lang.Object
- com.prosysopc.ua.stack.transport.security.BcCertificateProvider

All Implemented Interfaces:: CertificateProvider

public class BcCertificateProvider
extends Object
implements CertificateProvider

BouncyCastle-based CertificateProvider.

Constructor Summary

Constructors
Constructor and Description

BcCertificateProvider()
Creates new BcCertificateProvider.

Constructors
Constructor and Description
`BcCertificateProvider()` Creates new BcCertificateProvider.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`byte[]`	`base64Decode(String string)`
`String`	`base64Encode(byte[] bytes)`
`X509Certificate`	`generateCertificate(String domainName, PublicKey publicKey, PrivateKey privateKey, KeyPair issuerKeys, Instant from, Instant to, BigInteger serial, String applicationUri, String... hostNames)` Generates a new certificate using the Bouncy Castle implementation.
`X509Certificate`	`generateIssuerCert(PublicKey publicKey, PrivateKey privateKey, KeyPair issuerKeys, String commonName, BigInteger serialNr, Instant startDate, Instant expiryDate)` Build a X509 V3 certificate to use as an issuer (CA) certificate.
`Collection<List<?>>`	`getSubjectAlternativeNames(X509Certificate cert)`
`PrivateKey`	`readPrivateKey(InputStream stream, String password, String algorithm)` Read a private key from a PEM encoded byte array with a password.
`void`	`writePrivateKey(PrivateKey key, OutputStream stream, String password, String algorithm)` Write a private key to a PEM file with a password.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- BcCertificateProvider
```
public BcCertificateProvider()
```
  Creates new BcCertificateProvider.

Method Detail

base64Decode
```
public byte[] base64Decode(String string)
```
Specified by:

base64Decode in interface CertificateProvider

base64Encode
```
public String base64Encode(byte[] bytes)
```
Specified by:

base64Encode in interface CertificateProvider

generateCertificate

public X509Certificate generateCertificate(String domainName,
                                           PublicKey publicKey,
                                           PrivateKey privateKey,
                                           KeyPair issuerKeys,
                                           Instant from,
                                           Instant to,
                                           BigInteger serial,
                                           String applicationUri,
                                           String... hostNames)
                                    throws IOException,
                                           GeneralSecurityException

Generates a new certificate using the Bouncy Castle implementation.

Specified by:: generateCertificate in interface CertificateProvider
Throws:: IOException; GeneralSecurityException

generateIssuerCert

public X509Certificate generateIssuerCert(PublicKey publicKey,
                                          PrivateKey privateKey,
                                          KeyPair issuerKeys,
                                          String commonName,
                                          BigInteger serialNr,
                                          Instant startDate,
                                          Instant expiryDate)
                                   throws GeneralSecurityException,
                                          IOException

Build a X509 V3 certificate to use as an issuer (CA) certificate. The certificate does not define OPC UA specific fields, so it cannot be used for an application instance certificate.

Specified by:: generateIssuerCert in interface CertificateProvider
Throws:: GeneralSecurityException; IOException

getSubjectAlternativeNames

public Collection<List<?>> getSubjectAlternativeNames(X509Certificate cert)
                                               throws CertificateParsingException

Specified by:: getSubjectAlternativeNames in interface CertificateProvider
Throws:: CertificateParsingException

readPrivateKey
```
public PrivateKey readPrivateKey(InputStream stream,
                                 String password,
                                 String algorithm)
                          throws IOException
```
Description copied from interface: CertificateProvider

Read a private key from a PEM encoded byte array with a password.

Specified by:

readPrivateKey in interface CertificateProvider

Parameters:

stream - the stream (for example FileInputStream) to read from to

password - the password o use for decrypt the key

algorithm - encryption algorithm to use. For example "AES-128-CBC"

Throws:

IOException - if any.

writePrivateKey
```
public void writePrivateKey(PrivateKey key,
                            OutputStream stream,
                            String password,
                            String algorithm)
                     throws IOException
```
Description copied from interface: CertificateProvider

Write a private key to a PEM file with a password.

Specified by:

writePrivateKey in interface CertificateProvider

Parameters:

key - the private key to save

stream - the stream (for example FileOutputStream) to save to

password - the password o use for protecting the key

algorithm - encryption algorithm to use. For example "AES-128-CBC"

Throws:

IOException - if any.

Class BcCertificateProvider

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

BcCertificateProvider

Method Detail

base64Decode

base64Encode

generateCertificate

generateIssuerCert

getSubjectAlternativeNames

readPrivateKey

writePrivateKey