Package eu.europa.esig.dss.spi.x509.revocation.crl

Class CRLToken

java.lang.Object

eu.europa.esig.dss.model.x509.Token

eu.europa.esig.dss.spi.x509.revocation.RevocationToken<CRL>

eu.europa.esig.dss.spi.x509.revocation.crl.CRLToken

All Implemented Interfaces:

IdentifierBasedObject, Serializable

public class CRLToken
extends RevocationToken<CRL>

This class represents a CRL and provides the information about its validity.

See Also:

• Serialized Form

Field Summary

Fields inherited from class eu.europa.esig.dss.spi.x509.revocation.RevocationToken

archiveCutOff, certHashMatch, certHashPresent, expiredCertsOnCRL, externalOrigin, nextUpdate, productionDate, reason, relatedCertificate, revocationDate, sourceURL, status, thisUpdate

Fields inherited from class eu.europa.esig.dss.model.x509.Token

publicKeyOfTheSigner, signatureAlgorithm, signatureInvalidityReason, signatureValidity

Constructor Summary

Constructors

Constructor	Description
CRLToken(CertificateToken certificateToken, CRLValidity crlValidity)	The constructor to be used with the certificate which is managed by the CRL and the CRLValidity.

Method Summary

Modifier and Type	Method	Description
protected SignatureValidity	checkIsSignedBy(PublicKey publicKey)	Verifies if the current token has been signed by the specified publicKey
String	getAbbreviation()	This method returns the DSS abbreviation of the CRLToken.
RevocationCertificateSource	getCertificateSource()	Returns a source of embedded into a revocation token certificates
InputStream	getCRLStream()	Opens InputStream of the CRL binaries
CRLValidity	getCrlValidity()	Returns a CRLValidity
byte[]	getEncoded()	Returns the encoded form of the wrapped token.
CertificateToken	getIssuerCertificateToken()	Returns issuer CertificateToken
X500Principal	getIssuerX500Principal()	Returns the X500Principal of the certificate which was used to sign this token.
RevocationType	getRevocationType()	Returns the Revocation Token type (CRL or OCSP)
boolean	isValid()	Indicates if the token signature is intact and the signing certificate has cRLSign key usage bit set.
String	toString(String indentStr)	Returns a string representation of the token.

Methods inherited from class eu.europa.esig.dss.spi.x509.revocation.RevocationToken

buildTokenIdentifier, equals, getArchiveCutOff, getCreationDate, getExpiredCertsOnCRL, getExternalOrigin, getNextUpdate, getProductionDate, getReason, getRelatedCertificate, getRelatedCertificateId, getRevocationDate, getSourceURL, getStatus, getThisUpdate, hashCode, isCertHashMatch, isCertHashPresent, isInternal, setExternalOrigin, setSourceURL

Methods inherited from class eu.europa.esig.dss.model.x509.Token

getDigest, getDSSId, getDSSIdAsString, getInvalidityReason, getPublicKeyOfTheSigner, getSignatureAlgorithm, getSignatureValidity, isSelfSigned, isSignatureIntact, isSignedBy, isSignedBy, toString

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, wait, wait, wait

Constructor Details

CRLToken

public CRLToken(CertificateToken certificateToken,
 CRLValidity crlValidity)

The constructor to be used with the certificate which is managed by the CRL and the CRLValidity.

Parameters:

certificateToken - the CertificateToken which is managed by this CRL.

crlValidity - CRLValidity containing the information about the validity of the CRL

Method Details

checkIsSignedBy

protected SignatureValidity checkIsSignedBy(PublicKey publicKey)

Description copied from class: Token

Verifies if the current token has been signed by the specified publicKey

Specified by:

checkIsSignedBy in class Token

Parameters:

publicKey - PublicKey of a signing candidate

Returns:

SignatureValidity

getCertificateSource

public RevocationCertificateSource getCertificateSource()

Description copied from class: RevocationToken

Returns a source of embedded into a revocation token certificates

Specified by:

getCertificateSource in class RevocationToken<CRL>

Returns:

RevocationCertificateSource

getCrlValidity

public CRLValidity getCrlValidity()

Returns a CRLValidity

Returns:

CRLValidity

getIssuerX500Principal

public X500Principal getIssuerX500Principal()

Description copied from class: Token

Returns the X500Principal of the certificate which was used to sign this token.

Specified by:

getIssuerX500Principal in class Token

Returns:

the issuer's X500Principal

getIssuerCertificateToken

public CertificateToken getIssuerCertificateToken()

Description copied from class: RevocationToken

Returns issuer CertificateToken

Specified by:

getIssuerCertificateToken in class RevocationToken<CRL>

Returns:

issuer CertificateToken

getEncoded

public byte[] getEncoded()

Description copied from class: Token

Returns the encoded form of the wrapped token.

Specified by:

getEncoded in class Token

Returns:

the encoded form of the wrapped token

getCRLStream

public InputStream getCRLStream()

Opens InputStream of the CRL binaries

Returns:

InputStream

isValid

public boolean isValid()

Indicates if the token signature is intact and the signing certificate has cRLSign key usage bit set.

Overrides:

isValid in class Token

Returns:

true or false

getRevocationType

public RevocationType getRevocationType()

Description copied from class: RevocationToken

Returns the Revocation Token type (CRL or OCSP)

Specified by:

getRevocationType in class RevocationToken<CRL>

Returns:

RevocationType of the token

getAbbreviation

public String getAbbreviation()

This method returns the DSS abbreviation of the CRLToken. It is used for debugging purpose.

Overrides:

getAbbreviation in class Token

Returns:

the DSS abbreviation of the CRLToken

toString

public String toString(String indentStr)

Description copied from class: Token

Returns a string representation of the token.

Specified by:

toString in class Token

Parameters:

indentStr - the indentation to use

Returns:

string representation of the token