iaik.pdf.parameters

Class CadesTParameters

java.lang.Object

iaik.pdf.parameters.SignatureParameters

iaik.pdf.parameters.CMSSignatureParameters

iaik.pdf.parameters.CadesBESParameters

iaik.pdf.parameters.CadesTParameters

public class CadesTParameters
extends CadesBESParameters

Parameter class used to create CMS signatures according to profile CAdES-T. This profile extends the CAdES-BES signature with a signature timestamp.

See Also:

CadesSignature, CadesSignatureStream

Constructor Summary

Constructors

Constructor and Description
CadesTParameters(java.lang.String tsaUrl) Constructor for parameters used for a CAdES-T signature creation.
CadesTParameters(java.lang.String tsaUrl, java.lang.String username, java.lang.String password) Constructor for parameters used for a CAdES-T signature creation.
CadesTParameters(java.lang.String tsaUrl, java.lang.String username, java.lang.String password, java.lang.String imprintDigestAlgorithm) Constructor for parameters used for a CAdES-T signature creation.

Method Summary

Modifier and Type	Method and Description
void	addSignatureTimestampProperties(java.lang.String tsaUrl, java.lang.String username, java.lang.String password) To create multiple signature timestamps, add further timestamp properties for each timestamp that shall be added.
void	addSignatureTimestampProperties(java.lang.String tsaUrl, java.lang.String username, java.lang.String password, java.lang.String imprintDigestAlgorithm) To create multiple signature timestamps, add further timestamp properties for each timestamp that shall be added.
java.lang.String	getImprintDigestAlgorithm() Get digest algorithm, used to hash the data and create the signature timestamp.
TimestampProperties[]	getSignatureTimestampProperties() Get all timestamp properties configured for this parameters to create the respective number of signature timestamps.
java.lang.String	getTsaPw() Get password for authorization at the timestamp server, used to create the signature timestamp.
java.lang.String	getTsaUrl() Get URL of timestamp authority, used to create the signature timestamp.
java.lang.String	getTsaUsername() Get username for authorization at the timestamp server, used to create the signature timestamp.
java.util.Vector<iaik.asn1.structures.Attribute>	getUnsignedSignerInfoAttributes(iaik.cms.SignedDataStream signedData, iaik.cms.SignerInfo signerInfo, iaik.x509.X509Certificate[] signerCertificateChain) Return all unsigned attributes as determined by the respective parameter class.

Methods inherited from class iaik.pdf.parameters.CadesBESParameters

addSignaturePolicyIdentifier, getSignedSignerInfoAttributes

Methods inherited from class iaik.pdf.parameters.CMSSignatureParameters

addContentTimestampProps, setContentTimestampProperties

Methods inherited from class iaik.pdf.parameters.SignatureParameters

getDigestAlgorithm, getSignatureAlgorithm, isSigningCertificateAttributeIncluded, setDigestAlgorithm, setSignatureAlgorithm

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CadesTParameters

public CadesTParameters(java.lang.String tsaUrl)
                 throws CmsCadesException

Constructor for parameters used for a CAdES-T signature creation. Default digest algorithm SHA-256 TimeStampTokenUtil.DEFAULTDIGESTALGORITHM is used, to hash the data that shall be timestamped.

Parameters:

tsaUrl - URL of the timestamp authority

Throws:

CmsCadesException - if timestamp authority URL is null or empty

CadesTParameters

public CadesTParameters(java.lang.String tsaUrl,
                        java.lang.String username,
                        java.lang.String password)
                 throws CmsCadesException

Constructor for parameters used for a CAdES-T signature creation. Default digest algorithm SHA-256 TimeStampTokenUtil.DEFAULTDIGESTALGORITHM is used, to hash the data that shall be timestamped.

Parameters:

tsaUrl - URL of the timestamp authority

username - username for authorization

password - password for authorization

Throws:

CmsCadesException - if timestamp authority URL is null or empty

CadesTParameters

public CadesTParameters(java.lang.String tsaUrl,
                        java.lang.String username,
                        java.lang.String password,
                        java.lang.String imprintDigestAlgorithm)
                 throws CmsCadesException

Constructor for parameters used for a CAdES-T signature creation.

Parameters:

tsaUrl - URL of the timestamp authority

username - username for authorization

password - password for authorization

imprintDigestAlgorithm - digest algorithm to hash the data, that shall be timestamped

Throws:

CmsCadesException - if timestamp authority URL is null or empty

Method Detail

addSignatureTimestampProperties

public void addSignatureTimestampProperties(java.lang.String tsaUrl,
                                            java.lang.String username,
                                            java.lang.String password)
                                     throws CmsCadesException

To create multiple signature timestamps, add further timestamp properties for each timestamp that shall be added. Default digest algorithm SHA-256 TimeStampTokenUtil.DEFAULTDIGESTALGORITHM is used, to hash the data that shall be timestamped.

Parameters:

tsaUrl - URL of the timestamp authority

username - username for authorization

password - password for authorization

Throws:

CmsCadesException - if timestamp authority URL is null or empty

addSignatureTimestampProperties

public void addSignatureTimestampProperties(java.lang.String tsaUrl,
                                            java.lang.String username,
                                            java.lang.String password,
                                            java.lang.String imprintDigestAlgorithm)
                                     throws CmsCadesException

To create multiple signature timestamps, add further timestamp properties for each timestamp that shall be added.

Parameters:

tsaUrl - URL of the timestamp authority

username - username for authorization

password - password for authorization

imprintDigestAlgorithm - digest algorithm to hash the data, that shall be timestamped

Throws:

CmsCadesException - if timestamp authority URL is null or empty

getTsaUrl

public java.lang.String getTsaUrl()

Get URL of timestamp authority, used to create the signature timestamp. If more timestamp properties have been set, the first set TSA URL will be returned.

Returns:

URL of the timestamp authority

getTsaUsername

public java.lang.String getTsaUsername()

Get username for authorization at the timestamp server, used to create the signature timestamp. If more timestamp properties have been set, the first set username will be returned.

Returns:

username for using the timestamp server

getTsaPw

public java.lang.String getTsaPw()

Get password for authorization at the timestamp server, used to create the signature timestamp. If more timestamp properties have been set, the first set password will be returned.

Returns:

password for using the timestamp server

getImprintDigestAlgorithm

public java.lang.String getImprintDigestAlgorithm()

Get digest algorithm, used to hash the data and create the signature timestamp. If more timestamp properties have been set, the first set digest algorithm will be returned.

Returns:

digest algorithm to hash the timestamped data

getSignatureTimestampProperties

public TimestampProperties[] getSignatureTimestampProperties()

Get all timestamp properties configured for this parameters to create the respective number of signature timestamps.

Returns:

the configured timestamp properties

getUnsignedSignerInfoAttributes

public java.util.Vector<iaik.asn1.structures.Attribute> getUnsignedSignerInfoAttributes(iaik.cms.SignedDataStream signedData,
                                                                                        iaik.cms.SignerInfo signerInfo,
                                                                                        iaik.x509.X509Certificate[] signerCertificateChain)
                                                                                 throws CmsCadesException

Description copied from class: SignatureParameters

Return all unsigned attributes as determined by the respective parameter class. These attributes may be created automatically by the chosen class or may be influenced by provided methods (e.g. optional SignatureTimestamp for PAdES signatures). The attributes are not added to the given SignerInfo object, as further attributes may be added by the user. Some details of the given SignedData object, SignerInfo object and certificates may be required for creating certain attributes. This method is internally used for creating CAdES signatures.

Overrides:

getUnsignedSignerInfoAttributes in class SignatureParameters

Parameters:

signedData - SignedData object containing the respective signer info

signerInfo - the corresponding SignerInfo object

signerCertificateChain - used certificate chain for the corresponding signer info

Returns:

the unsigned attributes as given by this parameter class

Throws:

CmsCadesException - if an attribute can't be created