org.apache.camel.component.crypto.cms.sig

Class DefaultSignedDataVerifierConfiguration

java.lang.Object

org.apache.camel.component.crypto.cms.common.DefaultCryptoCmsConfiguration

org.apache.camel.component.crypto.cms.common.DefaultCryptoCmsUnMarshallerConfiguration

org.apache.camel.component.crypto.cms.sig.DefaultSignedDataVerifierConfiguration

All Implemented Interfaces:

Cloneable, CryptoCmsUnMarshallerConfiguration, SignedDataVerifierConfiguration

@UriParams
public class DefaultSignedDataVerifierConfiguration
extends DefaultCryptoCmsUnMarshallerConfiguration
implements SignedDataVerifierConfiguration, Cloneable

Fetches the X.509 certificates which can be used for the verification from a Java keystore.

Constructor Summary

Constructors

Constructor and Description
DefaultSignedDataVerifierConfiguration()

Method Summary

Modifier and Type	Method and Description
DefaultSignedDataVerifierConfiguration	copy() Creates a copy of this instance.
Collection<X509Certificate>	getCertificates(org.apache.camel.Exchange exchange) Returns the collection of certificates whose public keys are used to verify the signatures contained in the Signed Data object if the certificates match the signer information given in the Signed Data object.
Boolean	isSignedDataHeaderBase64(org.apache.camel.Exchange exchange) Indicates whether the value in the Signed Data header (given by CryptoCmsConstants.CAMEL_CRYPTO_CMS_SIGNED_DATA is base64 encoded.
Boolean	isVerifySignaturesOfAllSigners(org.apache.camel.Exchange exchange) If true then the signatures of all signers are checked.
void	setSignedDataHeaderBase64(Boolean signedDataHeaderBase64) Indicates whether the value in the header CamelCryptoCmsSignedData is base64 encoded.
void	setVerifySignaturesOfAllSigners(Boolean verifySignaturesOfAllSigners) If true then the signatures of all signers contained in the Signed Data object are verified.

Methods inherited from class org.apache.camel.component.crypto.cms.common.DefaultCryptoCmsUnMarshallerConfiguration

isFromBase64, setFromBase64

Methods inherited from class org.apache.camel.component.crypto.cms.common.DefaultCryptoCmsConfiguration

getKeyStore, getKeyStoreParameters, setKeyStore, setKeyStoreParameters

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface org.apache.camel.component.crypto.cms.common.CryptoCmsUnMarshallerConfiguration

isFromBase64

Constructor Detail

DefaultSignedDataVerifierConfiguration

public DefaultSignedDataVerifierConfiguration()

Method Detail

setSignedDataHeaderBase64

public void setSignedDataHeaderBase64(Boolean signedDataHeaderBase64)

Indicates whether the value in the header CamelCryptoCmsSignedData is base64 encoded. Default value is false.

Only relevant for detached signatures. In the detached signature case, the header contains the Signed Data object.

isSignedDataHeaderBase64

public Boolean isSignedDataHeaderBase64(org.apache.camel.Exchange exchange)
                                 throws CryptoCmsException

Description copied from interface: SignedDataVerifierConfiguration

Indicates whether the value in the Signed Data header (given by CryptoCmsConstants.CAMEL_CRYPTO_CMS_SIGNED_DATA is base64 encoded.

Specified by:

isSignedDataHeaderBase64 in interface SignedDataVerifierConfiguration

Throws:

CryptoCmsException

setVerifySignaturesOfAllSigners

public void setVerifySignaturesOfAllSigners(Boolean verifySignaturesOfAllSigners)

If true then the signatures of all signers contained in the Signed Data object are verified. If false then only one signature whose signer info matches with one of the specified certificates is verified. Default value is true.

isVerifySignaturesOfAllSigners

public Boolean isVerifySignaturesOfAllSigners(org.apache.camel.Exchange exchange)
                                       throws CryptoCmsException

Description copied from interface: SignedDataVerifierConfiguration

If true then the signatures of all signers are checked. If false then the verifier searches for a signer which matches with one of the specified certificates and verifies only the signature of the first found signer.

Specified by:

isVerifySignaturesOfAllSigners in interface SignedDataVerifierConfiguration

Throws:

CryptoCmsException

getCertificates

public Collection<X509Certificate> getCertificates(org.apache.camel.Exchange exchange)
                                            throws CryptoCmsException

Description copied from interface: SignedDataVerifierConfiguration

Returns the collection of certificates whose public keys are used to verify the signatures contained in the Signed Data object if the certificates match the signer information given in the Signed Data object.

Specified by:

getCertificates in interface SignedDataVerifierConfiguration

Throws:

CryptoCmsException

copy

public DefaultSignedDataVerifierConfiguration copy()

Description copied from interface: SignedDataVerifierConfiguration

Creates a copy of this instance. For example by cloning.

Specified by:

copy in interface SignedDataVerifierConfiguration