eu.emi.security.authn.x509.helpers.proxy
Class ProxyHelper

java.lang.Object
  extended by eu.emi.security.authn.x509.helpers.proxy.ProxyHelper

public class ProxyHelper
extends Object

Various helpers for handling proxy certificates

Author:
J. Hahkala, K. Benedyczak

Constructor Summary
ProxyHelper()
           
 
Method Summary
static String getLastCN(X500Name x500Name)
           
static String getLastCN(X500Principal principal)
           
static int getProxyPathLimit(X509Certificate cert)
          Returns the proxy path limit of the proxy.
static ExtendedProxyType getProxyType(X509Certificate certificate)
          Checks if the certificate is a proxy and if so return its type.
static boolean isLimited(X509Certificate cert)
          Checks if the certificate is a limited proxy in Globus sense, i.e.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

ProxyHelper

public ProxyHelper()
Method Detail

getProxyType

public static ExtendedProxyType getProxyType(X509Certificate certificate)
Checks if the certificate is a proxy and if so return its type.

Parameters:
certificate - to be checked
Returns:
the proxy type or info that it is a normal certificate.

getLastCN

public static String getLastCN(X500Principal principal)
                        throws IllegalArgumentException
Throws:
IllegalArgumentException

getLastCN

public static String getLastCN(X500Name x500Name)
                        throws IllegalArgumentException
Throws:
IllegalArgumentException

getProxyPathLimit

public static int getProxyPathLimit(X509Certificate cert)
                             throws IOException
Returns the proxy path limit of the proxy. The argument is not checked if is a real proxy.

Parameters:
cert -
Returns:
path limit as set for the DRAFT and RFC proxies. In case of legacy proxies or unlimited proxies Integer.MAX_VALUE is returned.
Throws:
IOException - if the extension can not be parsed

isLimited

public static boolean isLimited(X509Certificate cert)
                         throws IOException
Checks if the certificate is a limited proxy in Globus sense, i.e. if its last CN is equal to 'limited proxy' (in case of legacy proxies) or if the special limited proxy policy is used.

Parameters:
cert -
Returns:
true only if the parameter is a limited proxy
Throws:
IOException


Copyright © 2012-2013 European Middleware Initiative. All Rights Reserved.