Class PolicyConstraintsExt
- java.lang.Object
-
- org.dogtagpki.legacy.server.policy.APolicyRule
-
- org.dogtagpki.legacy.server.policy.extensions.PolicyConstraintsExt
-
- All Implemented Interfaces:
IExtendedPluginInfo
,IPolicy
,IEnrollmentPolicy
,IPolicyRule
public class PolicyConstraintsExt extends APolicyRule implements IEnrollmentPolicy, IExtendedPluginInfo
Policy Constraints Extension Policy Adds the policy constraints extension to (CA) certificates. Filtering of CA certificates is done through predicates.NOTE: The Policy Framework has been replaced by the Profile Framework.
- Version:
- $Revision$, $Date$
-
-
Field Summary
Fields Modifier and Type Field Description protected static boolean
DEF_CRITICAL
protected static int
DEF_INHIBIT_POLICY_MAPPING
protected static int
DEF_REQ_EXPLICIT_POLICY
protected IConfigStore
mConfig
protected boolean
mCritical
protected static java.util.Vector<java.lang.String>
mDefaultParams
protected boolean
mEnabled
protected int
mInhibitPolicyMapping
protected java.util.Vector<java.lang.String>
mInstanceParams
protected PolicyConstraintsExtension
mPolicyConstraintsExtension
protected int
mReqExplicitPolicy
protected static java.lang.String
PROP_CRITICAL
protected static java.lang.String
PROP_INHIBIT_POLICY_MAPPING
protected static java.lang.String
PROP_REQ_EXPLICIT_POLICY
-
Fields inherited from class org.dogtagpki.legacy.server.policy.APolicyRule
DESC, mFilterExp, mInstanceName, mLogger, NAME
-
Fields inherited from interface com.netscape.certsrv.base.IExtendedPluginInfo
HELP_TEXT, HELP_TOKEN
-
Fields inherited from interface org.dogtagpki.legacy.policy.IPolicyRule
PROP_ENABLE, PROP_IMPLNAME, PROP_PREDICATE
-
-
Constructor Summary
Constructors Constructor Description PolicyConstraintsExt()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description PolicyResult
apply(IRequest req)
Adds Policy Constraints Extension to a (CA) certificate.PolicyResult
applyCert(IRequest req, X509CertInfo certInfo)
java.util.Vector<java.lang.String>
getDefaultParams()
Return default parameters for a policy implementation.java.lang.String[]
getExtendedPluginInfo(java.util.Locale locale)
gets plugin info for pretty console edit displays.java.util.Vector<java.lang.String>
getInstanceParams()
Return configured parameters for a policy rule instance.void
init(ISubsystem owner, IConfigStore config)
Initializes this policy rule.-
Methods inherited from class org.dogtagpki.legacy.server.policy.APolicyRule
agentApproved, createKeyIdentifier, deferred, formSHA1KeyId, formSpkiSHA1KeyId, getDescription, getInstanceName, getName, getPredicate, log, setError, setError, setError, setInstanceName, setPolicyException, setPolicyException, setPredicate
-
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
-
Methods inherited from interface org.dogtagpki.legacy.policy.IPolicyRule
getDescription, getInstanceName, getName, getPredicate, setError, setInstanceName, setPolicyException, setPredicate
-
-
-
-
Field Detail
-
PROP_CRITICAL
protected static final java.lang.String PROP_CRITICAL
- See Also:
- Constant Field Values
-
PROP_REQ_EXPLICIT_POLICY
protected static final java.lang.String PROP_REQ_EXPLICIT_POLICY
- See Also:
- Constant Field Values
-
PROP_INHIBIT_POLICY_MAPPING
protected static final java.lang.String PROP_INHIBIT_POLICY_MAPPING
- See Also:
- Constant Field Values
-
DEF_CRITICAL
protected static final boolean DEF_CRITICAL
- See Also:
- Constant Field Values
-
DEF_REQ_EXPLICIT_POLICY
protected static final int DEF_REQ_EXPLICIT_POLICY
- See Also:
- Constant Field Values
-
DEF_INHIBIT_POLICY_MAPPING
protected static final int DEF_INHIBIT_POLICY_MAPPING
- See Also:
- Constant Field Values
-
mEnabled
protected boolean mEnabled
-
mConfig
protected IConfigStore mConfig
-
mCritical
protected boolean mCritical
-
mReqExplicitPolicy
protected int mReqExplicitPolicy
-
mInhibitPolicyMapping
protected int mInhibitPolicyMapping
-
mPolicyConstraintsExtension
protected PolicyConstraintsExtension mPolicyConstraintsExtension
-
mInstanceParams
protected java.util.Vector<java.lang.String> mInstanceParams
-
mDefaultParams
protected static java.util.Vector<java.lang.String> mDefaultParams
-
-
Method Detail
-
init
public void init(ISubsystem owner, IConfigStore config) throws EBaseException
Initializes this policy rule.The entries may be of the form: ca.Policy.rule.
.predicate=certType==ca ca.Policy.rule. .implName= ca.Policy.rule. .enable=true - Specified by:
init
in interfaceIPolicyRule
- Specified by:
init
in classAPolicyRule
- Parameters:
config
- The config store reference- Throws:
EBaseException
-
apply
public PolicyResult apply(IRequest req)
Adds Policy Constraints Extension to a (CA) certificate. If a Policy constraints Extension is already there, accept it if it's been approved by agent, else replace it.- Specified by:
apply
in interfaceIPolicy
- Specified by:
apply
in interfaceIPolicyRule
- Specified by:
apply
in classAPolicyRule
- Parameters:
req
- The request on which to apply policy.- Returns:
- The policy result object.
-
applyCert
public PolicyResult applyCert(IRequest req, X509CertInfo certInfo)
-
getInstanceParams
public java.util.Vector<java.lang.String> getInstanceParams()
Return configured parameters for a policy rule instance.- Specified by:
getInstanceParams
in interfaceIPolicyRule
- Specified by:
getInstanceParams
in classAPolicyRule
- Returns:
- nvPairs A Vector of name/value pairs.
-
getDefaultParams
public java.util.Vector<java.lang.String> getDefaultParams()
Return default parameters for a policy implementation.- Specified by:
getDefaultParams
in interfaceIPolicyRule
- Specified by:
getDefaultParams
in classAPolicyRule
- Returns:
- nvPairs A Vector of name/value pairs.
-
getExtendedPluginInfo
public java.lang.String[] getExtendedPluginInfo(java.util.Locale locale)
gets plugin info for pretty console edit displays.- Specified by:
getExtendedPluginInfo
in interfaceIExtendedPluginInfo
-
-