Package eu.europa.esig.dss.signature

Class SignatureRequirementsChecker

java.lang.Object

eu.europa.esig.dss.signature.SignatureRequirementsChecker

Direct Known Subclasses:

PAdESSignatureRequirementsChecker

public class SignatureRequirementsChecker
extends Object

This class is used to verify if the signature can be created according to the provided requirements in a signature parameters instance

Field Summary

Fields

Modifier and Type	Field	Description
protected final CertificateVerifier	certificateVerifier	CertificateVerifier to be used for certificates validation
protected final AbstractSignatureParameters<?>	signatureParameters	The signature parameters used for signature creation/extension

Constructor Summary

Constructors

Constructor	Description
SignatureRequirementsChecker(CertificateVerifier certificateVerifier, AbstractSignatureParameters<?> signatureParameters)	Default constructor

Method Summary

Modifier and Type	Method	Description
void	assertCertificateChainValidForCLevel(List<AdvancedSignature> signatures)	Checks whether across signatures the corresponding certificate chains require revocation data for C-level augmentation
void	assertCertificateChainValidForLTLevel(List<AdvancedSignature> signatures)	Checks whether across signatures the corresponding certificate chains require revocation data for LT-level augmentation
void	assertCertificateChainValidForXLLevel(List<AdvancedSignature> signatures)	Checks whether across signatures the corresponding certificate chains require revocation data for XL-level augmentation
protected void	assertCLevelIsHighest(List<AdvancedSignature> signatures)	Checks whether across signatures the C-level is highest and C-level augmentation can be performed
void	assertExtendToCLevelPossible(List<AdvancedSignature> signatures)	Verifies whether extension of signatures to C-level is possible
void	assertExtendToLTLevelPossible(List<AdvancedSignature> signatures)	Verifies whether extension of signatures to LT-level is possible
void	assertExtendToTLevelPossible(List<AdvancedSignature> signatures)	Verifies whether extension of signatures to T-level is possible
void	assertExtendToXLevelPossible(List<AdvancedSignature> signatures)	Verifies whether extension of signatures to X-level is possible
void	assertExtendToXLLevelPossible(List<AdvancedSignature> signatures)	Verifies whether extension of signatures to XL-level is possible
protected void	assertLTLevelIsHighest(List<AdvancedSignature> signatures)	Checks whether across signatures the LT-level is highest and LT-level augmentation can be performed
void	assertSignaturesValid(Collection<AdvancedSignature> signatures)	Verifies cryptographical validity of the signatures
void	assertSigningCertificateIsValid(CertificateToken certificateToken)	This method verifies whether the provided certificate token is acceptable for a signature creation against the provided signatureParameters
void	assertSigningCertificateIsValid(AdvancedSignature signature)	This method verifies a signing certificate of the given signature
void	assertSigningCertificateIsValid(Collection<AdvancedSignature> signatures)	This method verifies a signing certificate for a collection of the given signatures
protected void	assertTLevelIsHighest(List<AdvancedSignature> signatures)	Checks whether across signatures the T-level is highest and T-level augmentation can be performed
protected void	assertXLevelIsHighest(List<AdvancedSignature> signatures)	Checks whether across signatures the X-level is highest and X-level augmentation can be performed
protected void	assertXLLevelIsHighest(List<AdvancedSignature> signatures)	Checks whether across signatures the XL-level is highest and XL-level augmentation can be performed
protected void	checkCLevelIsHighest(AdvancedSignature signature, SignatureStatus status)	Verifies whether the signature has maximum B-, T- or LT-level
protected void	checkLTLevelIsHighest(AdvancedSignature signature, SignatureStatus status)	Verifies whether the signature has maximum B-, T- or LT-level
protected void	checkTLevelIsHighest(AdvancedSignature signature, SignatureStatus status)	Verifies whether the signature has maximum B- or T-level
protected void	checkXLevelIsHighest(AdvancedSignature signature, SignatureStatus status)	Verifies whether the signature has maximum B-, T- or LT-level
protected void	checkXLLevelIsHighest(AdvancedSignature signature, SignatureStatus status)	Verifies whether the signature has maximum X-level
boolean	hasALevelOrHigher(AdvancedSignature signature)	Checks if the signature has A-level
boolean	hasLTALevelOrHigher(AdvancedSignature signature)	Checks if the signature has LTA-level
boolean	hasLTLevelOrHigher(AdvancedSignature signature)	Checks if the signature has LTA-level
boolean	hasXLevelOrHigher(AdvancedSignature signature)	Checks if the signature has LTA-level
boolean	hasXLLevelOrHigher(AdvancedSignature signature)	Checks if the signature has LTA-level

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

certificateVerifier

protected final CertificateVerifier certificateVerifier

CertificateVerifier to be used for certificates validation

signatureParameters

protected final AbstractSignatureParameters<?> signatureParameters

The signature parameters used for signature creation/extension

Constructor Details

SignatureRequirementsChecker

public SignatureRequirementsChecker(CertificateVerifier certificateVerifier,
 AbstractSignatureParameters<?> signatureParameters)

Default constructor

Parameters:

certificateVerifier - CertificateVerifier

signatureParameters - AbstractSignatureParameters

Method Details

assertSigningCertificateIsValid

public void assertSigningCertificateIsValid(CertificateToken certificateToken)

This method verifies whether the provided certificate token is acceptable for a signature creation against the provided signatureParameters

Parameters:

certificateToken - CertificateToken

assertSigningCertificateIsValid

public void assertSigningCertificateIsValid(AdvancedSignature signature)

This method verifies a signing certificate of the given signature

Parameters:

signature - AdvancedSignature to verify

assertSigningCertificateIsValid

public void assertSigningCertificateIsValid(Collection<AdvancedSignature> signatures)

This method verifies a signing certificate for a collection of the given signatures

Parameters:

signatures - a collection of AdvancedSignatures to verify signing-certificate for

assertExtendToTLevelPossible

public void assertExtendToTLevelPossible(List<AdvancedSignature> signatures)

Verifies whether extension of signatures to T-level is possible

Parameters:

signatures - a list of AdvancedSignatures

assertTLevelIsHighest

protected void assertTLevelIsHighest(List<AdvancedSignature> signatures)

Checks whether across signatures the T-level is highest and T-level augmentation can be performed

Parameters:

signatures - a list of AdvancedSignatures

checkTLevelIsHighest

protected void checkTLevelIsHighest(AdvancedSignature signature,
 SignatureStatus status)

Verifies whether the signature has maximum B- or T-level

Parameters:

signature - AdvancedSignature to be verifies

status - SignatureStatus to fill in case of error

hasLTLevelOrHigher

public boolean hasLTLevelOrHigher(AdvancedSignature signature)

Checks if the signature has LTA-level

Parameters:

signature - AdvancedSignature to be validated

Returns:

TRUE if the signature has LTA-level, FALSE otherwise

assertExtendToLTLevelPossible

public void assertExtendToLTLevelPossible(List<AdvancedSignature> signatures)

Verifies whether extension of signatures to LT-level is possible

Parameters:

signatures - a list of AdvancedSignatures

assertLTLevelIsHighest

protected void assertLTLevelIsHighest(List<AdvancedSignature> signatures)

Checks whether across signatures the LT-level is highest and LT-level augmentation can be performed

Parameters:

signatures - a list of AdvancedSignatures

checkLTLevelIsHighest

protected void checkLTLevelIsHighest(AdvancedSignature signature,
 SignatureStatus status)

Verifies whether the signature has maximum B-, T- or LT-level

Parameters:

signature - AdvancedSignature to be verifies

status - SignatureStatus to fill in case of error

hasLTALevelOrHigher

public boolean hasLTALevelOrHigher(AdvancedSignature signature)

Checks if the signature has LTA-level

Parameters:

signature - AdvancedSignature to be validated

Returns:

TRUE if the signature has LTA-level, FALSE otherwise

assertCertificateChainValidForLTLevel

public void assertCertificateChainValidForLTLevel(List<AdvancedSignature> signatures)

Checks whether across signatures the corresponding certificate chains require revocation data for LT-level augmentation

Parameters:

signatures - a list of AdvancedSignatures

assertCertificateChainValidForCLevel

public void assertCertificateChainValidForCLevel(List<AdvancedSignature> signatures)

Checks whether across signatures the corresponding certificate chains require revocation data for C-level augmentation

Parameters:

signatures - a list of AdvancedSignatures

assertCertificateChainValidForXLLevel

public void assertCertificateChainValidForXLLevel(List<AdvancedSignature> signatures)

Checks whether across signatures the corresponding certificate chains require revocation data for XL-level augmentation

Parameters:

signatures - a list of AdvancedSignatures

assertExtendToCLevelPossible

public void assertExtendToCLevelPossible(List<AdvancedSignature> signatures)

Verifies whether extension of signatures to C-level is possible

Parameters:

signatures - a list of AdvancedSignatures

assertCLevelIsHighest

protected void assertCLevelIsHighest(List<AdvancedSignature> signatures)

Checks whether across signatures the C-level is highest and C-level augmentation can be performed

Parameters:

signatures - a list of AdvancedSignatures

checkCLevelIsHighest

protected void checkCLevelIsHighest(AdvancedSignature signature,
 SignatureStatus status)

Verifies whether the signature has maximum B-, T- or LT-level

Parameters:

signature - AdvancedSignature to be verifies

status - SignatureStatus to fill in case of error

hasXLevelOrHigher

public boolean hasXLevelOrHigher(AdvancedSignature signature)

Checks if the signature has LTA-level

Parameters:

signature - AdvancedSignature to be validated

Returns:

TRUE if the signature has LTA-level, FALSE otherwise

assertExtendToXLevelPossible

public void assertExtendToXLevelPossible(List<AdvancedSignature> signatures)

Verifies whether extension of signatures to X-level is possible

Parameters:

signatures - a list of AdvancedSignatures

assertXLevelIsHighest

protected void assertXLevelIsHighest(List<AdvancedSignature> signatures)

Checks whether across signatures the X-level is highest and X-level augmentation can be performed

Parameters:

signatures - a list of AdvancedSignatures

checkXLevelIsHighest

protected void checkXLevelIsHighest(AdvancedSignature signature,
 SignatureStatus status)

Verifies whether the signature has maximum B-, T- or LT-level

Parameters:

signature - AdvancedSignature to be verifies

status - SignatureStatus to fill in case of error

hasXLLevelOrHigher

public boolean hasXLLevelOrHigher(AdvancedSignature signature)

Checks if the signature has LTA-level

Parameters:

signature - AdvancedSignature to be validated

Returns:

TRUE if the signature has LTA-level, FALSE otherwise

assertExtendToXLLevelPossible

public void assertExtendToXLLevelPossible(List<AdvancedSignature> signatures)

Verifies whether extension of signatures to XL-level is possible

Parameters:

signatures - a list of AdvancedSignatures

assertXLLevelIsHighest

protected void assertXLLevelIsHighest(List<AdvancedSignature> signatures)

Checks whether across signatures the XL-level is highest and XL-level augmentation can be performed

Parameters:

signatures - a list of AdvancedSignatures

checkXLLevelIsHighest

protected void checkXLLevelIsHighest(AdvancedSignature signature,
 SignatureStatus status)

Verifies whether the signature has maximum X-level

Parameters:

signature - AdvancedSignature to be verifies

status - SignatureStatus to fill in case of error

hasALevelOrHigher

public boolean hasALevelOrHigher(AdvancedSignature signature)

Checks if the signature has A-level

Parameters:

signature - AdvancedSignature to be validated

Returns:

TRUE if the signature has A-level, FALSE otherwise

assertSignaturesValid

public void assertSignaturesValid(Collection<AdvancedSignature> signatures)

Verifies cryptographical validity of the signatures

Parameters:

signatures - a collection of AdvancedSignatures