Class EnrollProfile

    • Constructor Detail

      • EnrollProfile

        public EnrollProfile()
    • Method Detail

      • getAuthority

        public abstract IAuthority getAuthority()
      • getRequestQueue

        public IRequestQueue getRequestQueue()
        Description copied from interface: IProfile
        Retrieves the request queue that is associated with this profile. The request queue is for creating new requests.
        Specified by:
        getRequestQueue in interface IProfile
        Returns:
        request queue
      • createContext

        public IProfileContext createContext()
        Description copied from interface: IProfile
        Retrieves profile context. The context stores information about the requestor before the actual request is created.
        Specified by:
        createContext in interface IProfile
        Specified by:
        createContext in class BasicProfile
        Returns:
        profile context.
      • getIssuerName

        public abstract X500Name getIssuerName()
      • getPolicySetId

        public java.lang.String getPolicySetId​(IRequest req)
        Perform simple policy set assignment.
        Specified by:
        getPolicySetId in interface IProfile
        Parameters:
        req - request
        Returns:
        policy set id
      • getRequestorDN

        public java.lang.String getRequestorDN​(IRequest request)
        Description copied from interface: IProfile
        Retrieves a localized string that represents requestor's distinguished name. This string displayed in the request listing user interface.
        Specified by:
        getRequestorDN in interface IProfile
        Overrides:
        getRequestorDN in class BasicProfile
        Parameters:
        request - request
        Returns:
        distringuished name of the request owner
      • setPOPchallenge

        public void setPOPchallenge​(IRequest req)
                             throws EBaseException
        setPOPchallenge generates a POP challenge and sets necessary info in request for composing encryptedPOP later
        Parameters:
        req - the request
        Throws:
        EBaseException
      • getPKIDataFromCMCblob

        public org.mozilla.jss.pkix.cmc.PKIData getPKIDataFromCMCblob​(java.util.Locale locale,
                                                                      java.lang.String certReqBlob)
                                                               throws EProfileException
        getPKIDataFromCMCblob
        Parameters:
        certReqBlob - cmc b64 encoded blob
        Returns:
        PKIData
        Throws:
        EProfileException
      • getCMCSigningCertSNfromCertSerial

        public static CertificateSubjectName getCMCSigningCertSNfromCertSerial​(java.lang.String certSerial)
                                                                        throws java.lang.Exception
        Throws:
        java.lang.Exception
      • getCMCSigningCertFromCertSerial

        public static X509CertImpl getCMCSigningCertFromCertSerial​(java.lang.String certSerial)
                                                            throws java.lang.Exception
        getCMCSigningCertFromCertSerial is to be used when authentication was done with CMCUserSignedAuth where the resulting authToken contains IAuthManager.CRED_CMC_SIGNING_CERT, serial number This method takes the serial number and finds the cert from the CA's certdb
        Throws:
        java.lang.Exception
      • parseCMC

        public org.mozilla.jss.pkix.cmc.TaggedRequest[] parseCMC​(java.util.Locale locale,
                                                                 java.lang.String certreq)
                                                          throws EProfileException
        Throws:
        EProfileException
      • parseCMC

        public org.mozilla.jss.pkix.cmc.TaggedRequest[] parseCMC​(java.util.Locale locale,
                                                                 java.lang.String certreq,
                                                                 boolean donePOI)
                                                          throws EProfileException
        Throws:
        EProfileException
      • getPopLinkWitnessV2control

        protected org.mozilla.jss.pkix.cmc.PopLinkWitnessV2 getPopLinkWitnessV2control​(org.mozilla.jss.asn1.ASN1Value value)
        getPopLinkWitnessV2control
      • verifyPopLinkWitnessV2

        protected boolean verifyPopLinkWitnessV2​(org.mozilla.jss.pkix.cmc.PopLinkWitnessV2 popLinkWitnessV2,
                                                 byte[] randomSeed,
                                                 byte[] sharedSecret,
                                                 java.lang.String ident_string)
        verifyPopLinkWitnessV2
      • parseCRMF

        public org.mozilla.jss.pkix.crmf.CertReqMsg[] parseCRMF​(java.util.Locale locale,
                                                                java.lang.String certreq)
                                                         throws EProfileException
        Throws:
        EProfileException
      • getPKIArchiveOptions

        protected org.mozilla.jss.pkix.crmf.PKIArchiveOptions getPKIArchiveOptions​(org.mozilla.jss.pkix.primitive.AVA ava)
      • toPKIArchiveOptions

        public org.mozilla.jss.pkix.crmf.PKIArchiveOptions toPKIArchiveOptions​(byte[] options)
      • toByteArray

        public byte[] toByteArray​(org.mozilla.jss.pkix.crmf.PKIArchiveOptions options)
      • normalizeCertReq

        public java.lang.String normalizeCertReq​(java.lang.String s)
      • getLocale

        public java.util.Locale getLocale​(IRequest request)
      • populateInput

        public void populateInput​(IProfileContext ctx,
                                  IRequest request)
                           throws EProfileException
        Populate input

        (either all "agent" profile cert requests NOT made through a connector, or all "EE" profile cert requests NOT made through a connector)

        • signed.audit LOGGING_SIGNED_AUDIT_PROFILE_CERT_REQUEST used when a profile cert request is made (before approval process)
        Specified by:
        populateInput in interface IProfile
        Overrides:
        populateInput in class BasicProfile
        Parameters:
        ctx - profile context
        request - the certificate request
        Throws:
        EProfileException - an error related to this profile has occurred
      • auditRequesterID

        protected java.lang.String auditRequesterID​(IRequest request)
        Signed Audit Log Requester ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "RequesterID" for a signed audit log message.

        Parameters:
        request - the actual request
        Returns:
        id string containing the signed audit log message RequesterID
      • auditProfileID

        protected java.lang.String auditProfileID()
        Signed Audit Log Profile ID This method is inherited by all extended "EnrollProfile"s, and is called to obtain the "ProfileID" for a signed audit log message.

        Returns:
        id string containing the signed audit log message ProfileID