eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIOCSPSource

eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIDelegatedOCSPSource

All Implemented Interfaces:: OCSPSource, RevocationSource<OCSP>, Serializable

public class PKIDelegatedOCSPSource extends PKIOCSPSource

The PkiOCSPSource class implements the OCSPSource interface for obtaining revocation tokens. It retrieves OCSP responses for a given certificate by sending OCSP requests to a specified OCSP responder.

See Also:

Field Summary

Fields inherited from class eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIOCSPSource
certEntityRepository
Constructor Summary

Constructors

Constructor

Description

PKIDelegatedOCSPSource(CertEntityRepository certEntityRepository)

Default constructor
Method Summary

Modifier and Type

Method

Description

protected CertEntity

getOcspResponder(CertificateToken certificateToken, CertificateToken issuerCertificateToken)

Returns a CertEntity to be used as an OCSP Response issuer.

void

setOcspResponder(CertEntity ocspResponder)

Sets the OCSP Responder CertEntity to sign the generated OCSP responses.

void

setOcspResponders(Map<CertEntity,CertEntity> ocspResponders)

Sets a map of CA cert entities and their delegated OCSP Responders

Methods inherited from class eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIOCSPSource
addRevocationStatusToOCSPResponse, buildOCSPRequest, buildOCSPResponse, canGenerate, getCertificateTokenRevocation, getNextUpdate, getProducedAtTime, getRespID, getRevocationToken, getSignatureAlgorithm, getThisUpdate, initBuilder, setDigestAlgorithm, setEncryptionAlgorithm, setMaskGenerationFunction, setNextUpdate, setProducedAtTime, setResponderIdByKey, setThisUpdate

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- PKIDelegatedOCSPSource
  
  public PKIDelegatedOCSPSource(CertEntityRepository certEntityRepository)
  
  Default constructor
  
  Parameters:
  
  certEntityRepository - CertEntityRepository
Method Details
- setOcspResponders
  
  public void setOcspResponders(Map<CertEntity,CertEntity> ocspResponders)
  
  Sets a map of CA cert entities and their delegated OCSP Responders
  
  Parameters:
  
  ocspResponders - a map between CA CertEntitys and delegated OCSP Responder CertEntitys
- setOcspResponder
  
  public void setOcspResponder(CertEntity ocspResponder)
  
  Description copied from class: PKIOCSPSource
  
  Sets the OCSP Responder CertEntity to sign the generated OCSP responses. If not defined (or set to NULL), will use the certificate's issuer certificate as the OCSP responder.
  
  Overrides:
  
  setOcspResponder in class PKIOCSPSource
  
  Parameters:
  
  ocspResponder - CertEntity to issue OCSP responses
- getOcspResponder
  
  protected CertEntity getOcspResponder(CertificateToken certificateToken, CertificateToken issuerCertificateToken)
  
  Description copied from class: PKIOCSPSource
  
  Returns a CertEntity to be used as an OCSP Response issuer.
  
  Overrides:
  
  getOcspResponder in class PKIOCSPSource
  
  Parameters:
  
  certificateToken - CertificateToken to request OCSP Response for
  
  issuerCertificateToken - CertificateToken issued the certificateToken
  
  Returns:
  
  CertEntity representing the entry to be used as an issuer of the OCSP Response

Class PKIDelegatedOCSPSource

Field Summary

Fields inherited from class eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIOCSPSource

Constructor Summary

Method Summary

Methods inherited from class eu.europa.esig.dss.pki.x509.revocation.ocsp.PKIOCSPSource

Methods inherited from class java.lang.Object

Constructor Details

PKIDelegatedOCSPSource

Method Details

setOcspResponders

setOcspResponder

getOcspResponder