public abstract class Certificate extends Object implements Serializable
Abstract class for managing a variety of identity certificates. An identity certificate is a binding of a principal to a public key which is vouched for by another principal. (A principal represents an entity such as an individual user, a group, or a corporation.)
This class is an abstraction for certificates that have different formats but important common uses. For example, different types of certificates, such as X.509 and PGP, share general certificate functionality (like encoding and verifying) and some types of information (like a public key).
X.509, PGP, and SDSI certificates can all be implemented by subclassing the Certificate class, even though they contain different sets of information, and they store and retrieve the information in different ways.
X509Certificate
,
CertificateFactory
,
Serialized FormModifier | Constructor and Description |
---|---|
protected |
Certificate(String type)
Creates a certificate of the specified type.
|
Modifier and Type | Method and Description |
---|---|
boolean |
equals(Object other)
Compares this certificate for equality with the specified object.
|
abstract byte[] |
getEncoded()
Returns the encoded form of this certificate.
|
abstract PublicKey |
getPublicKey()
Gets the public key from this certificate.
|
String |
getType()
Returns the type of this certificate.
|
int |
hashCode()
Returns a hashcode value for this certificate from its encoded form.
|
abstract String |
toString()
Returns a string representation of this certificate.
|
abstract void |
verify(PublicKey key)
Verifies that this certificate was signed using the private key that corresponds to the specified public key.
|
abstract void |
verify(PublicKey key,
String sigProvider)
Verifies that this certificate was signed using the private key that corresponds to the specified public key.
|
protected Certificate(String type)
type
- the standard name of the certificate type. See the CertificateFactory Types section in the
Java Security Standard Algorithm Names Specification for information about standard certificate
types. Consult the release documentation for your implementation to see which types are supported.public boolean equals(@Nullable Object other)
other
object is an
instanceof
Certificate
, then its encoded form is retrieved and compared with the encoded form of
this certificate.equals
in class Object
other
- the object to test for equality with this certificate.Object.hashCode()
,
HashMap
public abstract byte[] getEncoded() throws CertificateEncodingException
CertificateEncodingException
- if an encoding error occurs.public abstract PublicKey getPublicKey()
public final String getType()
public int hashCode()
hashCode
in class Object
Object.equals(java.lang.Object)
,
System.identityHashCode(java.lang.Object)
public abstract String toString()
public abstract void verify(PublicKey key) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key
- the PublicKey used to carry out the verification.NoSuchAlgorithmException
- on unsupported signature algorithms.InvalidKeyException
- on incorrect key.NoSuchProviderException
- if there's no default provider.SignatureException
- on signature errors.CertificateException
- on encoding errors.public abstract void verify(PublicKey key, String sigProvider) throws CertificateException, NoSuchAlgorithmException, InvalidKeyException, NoSuchProviderException, SignatureException
key
- the PublicKey used to carry out the verification.sigProvider
- the name of the signature provider.NoSuchAlgorithmException
- on unsupported signature algorithms.InvalidKeyException
- on incorrect key.NoSuchProviderException
- on incorrect provider.SignatureException
- on signature errors.CertificateException
- on encoding errors.