org.gudy.bouncycastle.jce
Class X509V3CertificateGenerator

java.lang.Object
  extended by org.gudy.bouncycastle.jce.X509V3CertificateGenerator

public class X509V3CertificateGenerator
extends Object

class to produce an X.509 Version 3 certificate.


Constructor Summary
X509V3CertificateGenerator()
           
 
Method Summary
 void addExtension(DERObjectIdentifier OID, boolean critical, byte[] value)
          add a given extension field for the standard extensions tag (tag 3)
 void addExtension(DERObjectIdentifier OID, boolean critical, DEREncodable value)
          add a given extension field for the standard extensions tag (tag 3)
 void addExtension(String OID, boolean critical, byte[] value)
          add a given extension field for the standard extensions tag (tag 3) The value parameter becomes the contents of the octet string associated with the extension.
 void addExtension(String OID, boolean critical, DEREncodable value)
          add a given extension field for the standard extensions tag (tag 3)
 X509Certificate generateX509Certificate(PrivateKey key)
          generate an X509 certificate, based on the current issuer and subject using the default provider "BC".
 X509Certificate generateX509Certificate(PrivateKey key, SecureRandom random)
          generate an X509 certificate, based on the current issuer and subject using the default provider "BC", and the passed in source of randomness (if required).
 X509Certificate generateX509Certificate(PrivateKey key, String provider)
          generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing.
 X509Certificate generateX509Certificate(PrivateKey key, String provider, SecureRandom random)
          generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing and the supplied source of randomness, if required.
 void reset()
          reset the generator
 void setIssuerDN(X509Name issuer)
          Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.
 void setNotAfter(Date date)
           
 void setNotBefore(Date date)
           
 void setPublicKey(PublicKey key)
           
 void setSerialNumber(BigInteger serialNumber)
          set the serial number for the certificate.
 void setSignatureAlgorithm(String signatureAlgorithm)
           
 void setSubjectDN(X509Name subject)
          Set the subject distinguished name.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

X509V3CertificateGenerator

public X509V3CertificateGenerator()
Method Detail

reset

public void reset()
reset the generator


setSerialNumber

public void setSerialNumber(BigInteger serialNumber)
set the serial number for the certificate.


setIssuerDN

public void setIssuerDN(X509Name issuer)
Set the issuer distinguished name - the issuer is the entity whose private key is used to sign the certificate.


setNotBefore

public void setNotBefore(Date date)

setNotAfter

public void setNotAfter(Date date)

setSubjectDN

public void setSubjectDN(X509Name subject)
Set the subject distinguished name. The subject describes the entity associated with the public key.


setPublicKey

public void setPublicKey(PublicKey key)

setSignatureAlgorithm

public void setSignatureAlgorithm(String signatureAlgorithm)

addExtension

public void addExtension(String OID,
                         boolean critical,
                         DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)


addExtension

public void addExtension(DERObjectIdentifier OID,
                         boolean critical,
                         DEREncodable value)
add a given extension field for the standard extensions tag (tag 3)


addExtension

public void addExtension(String OID,
                         boolean critical,
                         byte[] value)
add a given extension field for the standard extensions tag (tag 3) The value parameter becomes the contents of the octet string associated with the extension.


addExtension

public void addExtension(DERObjectIdentifier OID,
                         boolean critical,
                         byte[] value)
add a given extension field for the standard extensions tag (tag 3)


generateX509Certificate

public X509Certificate generateX509Certificate(PrivateKey key)
                                        throws SecurityException,
                                               SignatureException,
                                               InvalidKeyException
generate an X509 certificate, based on the current issuer and subject using the default provider "BC".

Throws:
SecurityException
SignatureException
InvalidKeyException

generateX509Certificate

public X509Certificate generateX509Certificate(PrivateKey key,
                                               SecureRandom random)
                                        throws SecurityException,
                                               SignatureException,
                                               InvalidKeyException
generate an X509 certificate, based on the current issuer and subject using the default provider "BC", and the passed in source of randomness (if required).

Throws:
SecurityException
SignatureException
InvalidKeyException

generateX509Certificate

public X509Certificate generateX509Certificate(PrivateKey key,
                                               String provider)
                                        throws NoSuchProviderException,
                                               SecurityException,
                                               SignatureException,
                                               InvalidKeyException
generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing.

Throws:
NoSuchProviderException
SecurityException
SignatureException
InvalidKeyException

generateX509Certificate

public X509Certificate generateX509Certificate(PrivateKey key,
                                               String provider,
                                               SecureRandom random)
                                        throws NoSuchProviderException,
                                               SecurityException,
                                               SignatureException,
                                               InvalidKeyException
generate an X509 certificate, based on the current issuer and subject, using the passed in provider for the signing and the supplied source of randomness, if required.

Throws:
NoSuchProviderException
SecurityException
SignatureException
InvalidKeyException