CaCertificatesUtils (ce-auth-providers 7.9.5-ce API)

java.lang.Object
- io.confluent.security.auth.mtls.CaCertificatesUtils

public class CaCertificatesUtils
extends Object

Method Summary

All Methods Static Methods Concrete Methods
Modifier and Type	Method and Description
`static Certificate[]`	`buildCertChain(Certificate[] partialChain, Collection<Certificate> caCertificates)` Build a certificate chain from the given partial certificate chain, and a collection of CA certificates Note: the last certificate in the chain is not necessarily a root CA certificate
`static Certificate`	`findSigningCert(Certificate signedCert, Collection<Certificate> certificates)` Find signing cert of a given certificate in a collection of certificates.
`static boolean`	`isCertificateAuthority(X509Certificate cert)` Whether the certificate is a CA certificate
`static boolean`	`isSelfSigned(Certificate cert)` checks if the given Certificate is self-signed.
`static X509Certificate[]`	`x509CertificatesFromPem(String pem)` Parse PEM encoded certificates to X509Certificate objects.
`static X509Certificate[]`	`x509CertificatesFromPemFile(Path pemFile)` Parse PEM encoded certificates from a file to X509Certificate objects
`static X509CRL`	`x509CrlFromPem(String pem)` Parse PEM encoded CRL to X509CRL object
`static String`	`x509CrlToPem(X509CRL crl)` Convert X509CRL to PEM format

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Method Detail
  - x509CertificatesFromPem
```
public static X509Certificate[] x509CertificatesFromPem(String pem)
                                                 throws CertificateException,
                                                        IOException
```
    Parse PEM encoded certificates to X509Certificate objects.
    
    Parameters:
    
    pem - PEM encoded certificates
    
    Returns:
    
    X509Certificate objects
    
    Throws:
    
    CertificateException - if the certificate cannot be parsed
    
    IOException - if an I/O error occurs
  - x509CertificatesFromPemFile
```
public static X509Certificate[] x509CertificatesFromPemFile(Path pemFile)
                                                     throws CertificateException,
                                                            IOException
```
    Parse PEM encoded certificates from a file to X509Certificate objects
    
    Parameters:
    
    pemFile - Path to the PEM file
    
    Returns:
    
    X509Certificate objects
    
    Throws:
    
    CertificateException - if the certificate cannot be parsed
    
    IOException - if an I/O error occurs
  - isCertificateAuthority
```
public static boolean isCertificateAuthority(X509Certificate cert)
```
    Whether the certificate is a CA certificate
    
    Parameters:
    
    cert - X509Certificate
    
    Returns:
    
    true if the certificate is a CA certificate, false otherwise
  - x509CrlFromPem
```
public static X509CRL x509CrlFromPem(String pem)
                              throws CertificateException,
                                     IOException,
                                     CRLException
```
    Parse PEM encoded CRL to X509CRL object
    
    Parameters:
    
    pem - PEM encoded CRL
    
    Returns:
    
    X509CRL object
    
    Throws:
    
    CertificateException - if the CRL cannot be parsed
    
    IOException - if an I/O error occurs
    
    CRLException - if the CRL is invalid
  - x509CrlToPem
```
public static String x509CrlToPem(X509CRL crl)
                           throws CRLException
```
    Convert X509CRL to PEM format
    
    Parameters:
    
    crl - X509CRL object
    
    Returns:
    
    PEM encoded CRL
    
    Throws:
    
    CRLException - if the CRL cannot be encoded
  - isSelfSigned
```
public static boolean isSelfSigned(Certificate cert)
```
    checks if the given Certificate is self-signed.
    
    Parameters:
    
    cert - Certificate
    
    Returns:
    
    true if the certificate is self-signed, false otherwise
    
    Throws:
    
    IllegalArgumentException - if the certificate is null
  - findSigningCert
```
public static Certificate findSigningCert(Certificate signedCert,
                                          Collection<Certificate> certificates)
```
    Find signing cert of a given certificate in a collection of certificates. Return null if there is no signing cert in the collection or the certificate is self-signed
    
    Parameters:
    
    signedCert - certificate to find the signing cert for, must not be null
    
    certificates - collection of CA certificates which might sign the signedCert, must not be null
    
    Returns:
    
    signing certificate or null if not found
    
    Throws:
    
    IllegalArgumentException - if signedCert is null
    
    IllegalArgumentException - if certificates are null
  - buildCertChain
```
public static Certificate[] buildCertChain(Certificate[] partialChain,
                                           Collection<Certificate> caCertificates)
```
    Build a certificate chain from the given partial certificate chain, and a collection of CA certificates Note: the last certificate in the chain is not necessarily a root CA certificate
    
    Parameters:
    
    partialChain - partial cert chain must not be null or empty, and the first certificate must be the leaf cert
    
    caCertificates - collection of CA certificates must not be null
    
    Returns:
    
    certificate chain
    
    Throws:
    
    IllegalArgumentException - if cert is null
    
    IllegalArgumentException - if certificates are null

Class CaCertificatesUtils

Method Summary

Methods inherited from class java.lang.Object

Method Detail

x509CertificatesFromPem

x509CertificatesFromPemFile

isCertificateAuthority

x509CrlFromPem

x509CrlToPem

isSelfSigned

findSigningCert

buildCertChain