sun.security.x509

Class CertificatePoliciesExtension

java.lang.Object

sun.security.x509.Extension

sun.security.x509.CertificatePoliciesExtension

All Implemented Interfaces:

CertAttrSet<java.lang.String>

public class CertificatePoliciesExtension
extends Extension
implements CertAttrSet<java.lang.String>

This class defines the certificate policies extension which specifies the policies under which the certificate has been issued and the purposes for which the certificate may be used.

Applications with specific policy requirements are expected to have a list of those policies which they will accept and to compare the policy OIDs in the certificate to that list. If this extension is critical, the path validation software MUST be able to interpret this extension (including the optional qualifier), or MUST reject the certificate.

Optional qualifiers are not supported in this implementation, as they are not recommended by RFC2459. The ASN.1 syntax for this is (IMPLICIT tagging is defined in the module definition):

 id-ce-certificatePolicies OBJECT IDENTIFIER ::=  { id-ce 32 }

 certificatePolicies ::= SEQUENCE SIZE (1..MAX) OF PolicyInformation

 PolicyInformation ::= SEQUENCE {
      policyIdentifier   CertPolicyId,
      policyQualifiers   SEQUENCE SIZE (1..MAX) OF
                              PolicyQualifierInfo OPTIONAL }

 CertPolicyId ::= OBJECT IDENTIFIER
 

Since:

1.4

Author:

Anne Anderson

See Also:

Extension, CertAttrSet

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	IDENT Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.
static java.lang.String	NAME Attribute names.
static java.lang.String	POLICIES

Fields inherited from class sun.security.x509.Extension

critical, extensionId, extensionValue

Constructor Summary

Constructors

Constructor and Description
CertificatePoliciesExtension(java.lang.Boolean critical, java.util.List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality.
CertificatePoliciesExtension(java.lang.Boolean critical, java.lang.Object value) Create the extension from its DER encoded value and criticality.
CertificatePoliciesExtension(java.util.List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false.

Method Summary

Methods

Modifier and Type	Method and Description
void	delete(java.lang.String name) Delete the attribute value.
void	encode(java.io.OutputStream out) Write the extension to the DerOutputStream.
java.lang.Object	get(java.lang.String name) Get the attribute value.
java.util.Enumeration<java.lang.String>	getElements() Return an enumeration of names of attributes existing within this attribute.
java.lang.String	getName() Return the name of this attribute.
void	set(java.lang.String name, java.lang.Object obj) Set the attribute value.
java.lang.String	toString() Return the extension as user readable string.

Methods inherited from class sun.security.x509.Extension

encode, equals, getExtensionId, getExtensionValue, hashCode, isCritical

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Field Detail

IDENT

public static final java.lang.String IDENT

Identifier for this attribute, to be used with the get, set, delete methods of Certificate, x509 type.

See Also:

Constant Field Values

NAME

public static final java.lang.String NAME

Attribute names.

See Also:

Constant Field Values

POLICIES

public static final java.lang.String POLICIES

See Also:

Constant Field Values

Constructor Detail

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.util.List<PolicyInformation> certPolicies)
                             throws java.io.IOException

Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false.

Parameters:

certPolicies - the List of PolicyInformation.

Throws:

java.io.IOException

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.lang.Boolean critical,
                            java.util.List<PolicyInformation> certPolicies)
                             throws java.io.IOException

Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality.

Parameters:

critical - true if the extension is to be treated as critical.

certPolicies - the List of PolicyInformation.

Throws:

java.io.IOException

CertificatePoliciesExtension

public CertificatePoliciesExtension(java.lang.Boolean critical,
                            java.lang.Object value)
                             throws java.io.IOException

Create the extension from its DER encoded value and criticality.

Parameters:

critical - true if the extension is to be treated as critical.

value - an array of DER encoded bytes of the actual value.

Throws:

java.lang.ClassCastException - if value is not an array of bytes

java.io.IOException - on error.

Method Detail

toString

public java.lang.String toString()

Return the extension as user readable string.

Specified by:

toString in interface CertAttrSet<java.lang.String>

Overrides:

toString in class Extension

Returns:

value of this certificate attribute in printable form.

encode

public void encode(java.io.OutputStream out)
            throws java.io.IOException

Write the extension to the DerOutputStream.

Specified by:

encode in interface CertAttrSet<java.lang.String>

Parameters:

out - the DerOutputStream to write the extension to.

Throws:

java.io.IOException - on encoding errors.

set

public void set(java.lang.String name,
       java.lang.Object obj)
         throws java.io.IOException

Set the attribute value.

Specified by:

set in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute (e.g. "x509.info.key")

obj - the attribute object.

Throws:

java.io.IOException - on other errors.

get

public java.lang.Object get(java.lang.String name)
                     throws java.io.IOException

Get the attribute value.

Specified by:

get in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to return.

Throws:

java.io.IOException - on other errors.

delete

public void delete(java.lang.String name)
            throws java.io.IOException

Delete the attribute value.

Specified by:

delete in interface CertAttrSet<java.lang.String>

Parameters:

name - the name of the attribute to delete.

Throws:

java.io.IOException - on other errors.

getElements

public java.util.Enumeration<java.lang.String> getElements()

Return an enumeration of names of attributes existing within this attribute.

Specified by:

getElements in interface CertAttrSet<java.lang.String>

Returns:

an enumeration of the attribute names.

getName

public java.lang.String getName()

Return the name of this attribute.

Specified by:

getName in interface CertAttrSet<java.lang.String>

Returns:

the name of this CertAttrSet.