public abstract class QualifyingPropertiesFactory extends Object
QualifyingProperties as defined in the as
defined in the ETSI specification for XML Advanced Electronic Signatures
(XAdES) from scratch or for unmarshaling an XMLSignature object from a
corresponding XML representation.| Modifier | Constructor and Description |
|---|---|
protected |
QualifyingPropertiesFactory()
Default constructor, for invocation by subclasses.
|
| Modifier and Type | Method and Description |
|---|---|
static QualifyingPropertiesFactory |
getInstance()
Returns a
QualifyingPropertiesFactory that supports the XML
processing mechanism type (ex: "DOM"). |
static QualifyingPropertiesFactory |
getInstance(String mechanismType)
Returns a
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM"). |
static QualifyingPropertiesFactory |
getInstance(String mechanismType,
Provider provider)
Returns a
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM"), as
supplied by the provider. |
static QualifyingPropertiesFactory |
getInstance(String mechanismType,
String provider)
Returns a
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM"), as
supplied by the provider. |
String |
getMechanismType()
Returns the type of the XML processing mechanism and representation
supported by this
QualifyingPropertiesFactory. |
Provider |
getProvider()
Returns the provider of this
QualifyingPropertiesFactory. |
abstract URIDereferencer |
getURIDereferencer()
Returns a reference to the
URIDereferencer that is used by
default to dereference URIs in qualifying properties. |
abstract boolean |
isFeatureSupported(String feature)
Indicates whether a specified feature is supported.
|
abstract AllDataObjectsTimeStamp |
newAllDataObjectsTimeStamp(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
AllDataObjectsTimeStamp property with the
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token. |
abstract AllDataObjectsTimeStamp |
newAllDataObjectsTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newAllDataObjectsTimeStamp(CanonicalizationMethod, String, String)
. |
abstract ArchiveTimeStamp |
newArchiveTimeStamp(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
ArchiveTimeStamp property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token. |
abstract ArchiveTimeStamp |
newArchiveTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newArchiveTimeStamp(CanonicalizationMethod, String, String)
. |
abstract AttrAuthoritiesCertValues |
newAttrAuthoritiesCertValues(List certificates,
String id)
Creates a
AttrAuthoritiesCertValues property with the given
list of EncapsulatedX509Certificates and OtherCertificate
and the specified id-attribute value. |
abstract AttributeCertificateRefs |
newAttributeCertificateRefs(List certRefs,
String id)
Deprecated.
By
ETSI EN 319 132-1.
Use newAttributeCertificateRefsV2(List, String) instead. |
abstract AttributeCertificateRefsV2 |
newAttributeCertificateRefsV2(List certRefs,
String id)
Creates a new
AttributeCertificateRefsV2 with the given list of
CertIDV2s. |
abstract AttributeRevocationRefs |
newAttributeRevocationRefs(List crlRefs,
List ocspRefs,
List otherRefs,
String id)
|
abstract AttributeRevocationValues |
newAttributeRevocationValues(List crlValues,
List ocspValues,
List otherValues,
String id)
Creates a
AttributeRevocationValues property with the
specified list of EncapsulatedCRLValues, list of
EncapsulatedOCSPValues, list of OtherValues and
id-attribute value. |
abstract CertID |
newCertID(String uri,
DigestMethod digestMethod,
byte[] digestValue,
IssuerSerial issuerSerial)
Deprecated.
By
ETSI EN 319 132-1. Use one of
instead. |
abstract CertID |
newCertID(String uri,
IssuerSerial issuerSerial,
DigestMethod digestMethod,
InputStream digestInput)
Deprecated.
By
ETSI EN 319 132-1. Use one of
instead. |
abstract CertID |
newCertID(String uri,
X509Certificate certificate,
DigestMethod digestMethod)
Deprecated.
By
ETSI EN 319 132-1. Use one of
instead. |
abstract CertIDV2 |
newCertIDV2(String uri,
DigestMethod digestMethod,
byte[] digestValue)
Creates a new
CertIDV2 with the given URI, digest method and digest value. |
abstract CertIDV2 |
newCertIDV2(String uri,
DigestMethod digestMethod,
byte[] digestValue,
IssuerSerialV2 issuerSerial)
Creates a new
CertIDV2 with the given URI,
digest method, digest value issuer and serial |
abstract CertIDV2 |
newCertIDV2(String uri,
DigestMethod digestMethod,
InputStream digestInput)
Creates a new
CertIDV2 with the given URI,
digest method and input for computing the digest. |
abstract CertIDV2 |
newCertIDV2(String uri,
IssuerSerialV2 issuerSerial,
DigestMethod digestMethod,
InputStream digestInput)
Creates a new
CertIDV2 with the given URI, issuer and serial
number, digest method and input for computing the digest. |
abstract CertIDV2 |
newCertIDV2(String uri,
X509Certificate certificate,
DigestMethod digestMethod,
boolean addIssuerSerial)
Creates a new
CertIDV2 with the given URI, certificate,
and digest method |
abstract CertificateValues |
newCertificateValues(List certificates,
String id)
Creates a
CertificateValues property with the given list of
EncapsulatedX509Certificates and OtherCertificate and the
specified id-attribute value. |
abstract CertifiedRole |
newCertifiedRole(byte[] attributeCertificate,
String id,
String encoding)
Deprecated.
By
ETSI EN 319 132-1. Use newCertifiedRoleV2(X509AttributeCertificate) or
{newCertifiedRoleV2(OtherAttributeCertificate) instead. |
abstract CertifiedRoleV2 |
newCertifiedRoleV2(OtherAttributeCertificate otherAttributeCertificate)
Creates a
CertifiedRoleV2 object with the given OtherAttributeCertificate. |
abstract CertifiedRoleV2 |
newCertifiedRoleV2(X509AttributeCertificate x509AttributeCertificate)
Creates a
CertifiedRoleV2 object with the given X509AttributeCertificate. |
abstract ClaimedRole |
newClaimedRole(List content)
Creates a new
ClaimedRole element with the given content. |
abstract CommitmentTypeIndication |
newCommitmentTypeIndication(ObjectIdentifier commitmentTypeId,
List objectReferences,
List commitmentTypeQualifiers)
Creates a new
CommitmentTypeIndication property with the given
commitment type identifier, object references and commitment type
qualifiers. |
abstract CommitmentTypeQualifier |
newCommitmentTypeQualifer(List content)
Creates a
CommitmentTypeQualifier with the specified list of
XMLStructures. |
abstract CompleteCertificateRefs |
newCompleteCertificateRefs(List certRefs,
String id)
Deprecated.
By
ETSI EN 319 132-1.
Use newCompleteCertificateRefsV2(List, String) instead. |
abstract CompleteCertificateRefsV2 |
newCompleteCertificateRefsV2(List certRefs,
String id)
Creates a new
CompleteCertificateRefsV2 with the given list of
CertIDV2s. |
abstract CompleteRevocationRefs |
newCompleteRevocationRefs(List crlRefs,
List ocspRefs,
List otherRefs,
String id)
|
abstract CounterSignature |
newCounterSignature(XMLSignature counterSignature)
Deprecated.
|
abstract CounterSignature |
newCounterSignature(XMLSignature counterSignature,
KeySelector keySelector)
Creates a
CounterSignature property with the specified
signature. |
abstract CounterSignature |
newCounterSignature(XMLSignature counterSignature,
KeySelector keySelector,
String id)
Creates a
CounterSignature property with the specified
signature. |
abstract CRLIdentifier |
newCRLIdentifier(String issuer,
Date issuerTime,
BigInteger number,
String uri)
Creates a
CRLIdentifier with the given issuer name, issuer
time, CRL number and URI. |
abstract CRLRef |
newCRLRef(CRLIdentifier crlIdentifier,
DigestAlgAndValue digestAlgAndValue)
Creates a
CRLRef with the given CRL identifier and digest
value. |
abstract CRLRef |
newCRLRef(CRLIdentifier crlIdentifier,
DigestMethod digestMethod,
InputStream digestInputStream)
Creates a
CRLRef with the given CRL identifier, digest method,
and input for the digest computation. |
abstract CRLRef |
newCRLRef(X509CRL x509CRL,
DigestMethod digestMethod,
String uri)
Creates a
CRLRef element for the given CRL with the specified
digest algorithm and URI. |
abstract DataObjectFormat |
newDataObjectFormat(String description,
ObjectIdentifier objectIdentifier,
String mimeType,
String encoding,
String objectReference)
Creates a new
DataObjectFormat property with the given
description, object identifier, MIME type, encoding and object refererence. |
abstract DigestAlgAndValue |
newDigestAlgAndValue(DigestMethod digestMethod,
byte[] digestValue)
Creates a
DigestAlgAndValue element with the given digest
method and digest value. |
abstract EncapsulatedCRLValue |
newEncapsulatedCRLValue(X509CRL x509crl,
String id,
String encoding)
Creates a
EncapsulatedCRLValue with the given X509 CRL,
id-attribute value and encoding. |
abstract EncapsulatedOCSPValue |
newEncapsulatedOCSPValue(byte[] ocspResponse,
String id,
String encoding)
Creates a
EncapsulatedOCSPValue with the given OCSP response,
id-attribute value and encoding. |
abstract EncapsulatedX509Certificate |
newEncapsulatedX509Certificate(X509Certificate x509Certificate,
String id,
String encoding)
Creates a
EncapsulatedX509Certificate with the given X509
certificate, id-attribute value and encoding. |
abstract Include |
newInclude(String uri)
The
XAdES v1.3.2 section 7.1.4.3.1 Include mechanism (page 30) SHOULD NOT
be used with the exception of
XAdES v1.3.2 section 7.2.10 IndividualDataObjectsTimeStamp element (page
40).
|
abstract Include |
newInclude(String uri,
boolean referencedData)
The
XAdES v1.3.2 section 7.1.4.3.1 Include mechanism (page 30) SHOULD NOT
be used with the exception of
XAdES v1.3.2 section 7.2.10 IndividualDataObjectsTimeStamp element (page
40).
|
abstract IndividualDataObjectsTimeStamp |
newIndividualDataObjectsTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
IndividualDataObjectsTimeStamp property with the
specified list of Includes, canonicalization method,
id-attribute value and id-attribute value of the
time-stamp token. |
abstract IssuerSerial |
newIssuerSerial(String issuerName,
BigInteger serialNumber)
Deprecated.
By
ETSI EN 319 132-1. Use newIssuerSerialV2(X509Certificate). |
abstract IssuerSerialV2 |
newIssuerSerialV2(String issuerName,
BigInteger serialNumber)
Creates a new
IssuerSerialV2 from the specified X.500 issuer
distinguished name and serial number. |
abstract IssuerSerialV2 |
newIssuerSerialV2(X509Certificate cert)
Creates a new
IssuerSerialV2 from the issuerDN and serial
number in the given certificate. |
abstract NoticeRef |
newNoticeRef(String organization,
List numbers)
Creates a new
NoticeRef element with the given organization
and notice numbers. |
abstract ObjectIdentifier |
newObjectIdentifier(String identifier,
Identifier.Qualifier qualifier,
String description,
List documentationReferences)
Creates a new
ObjectIdentifier with the given identifier,
description and documentation references. |
abstract OCSPIdentifier |
newOCSPIdentifier(byte[] publicKeyHash,
Date producedAt,
String uri)
Creates a
OCSPIdentifier with the given hash of a Public Key,
producedAt date and URI. |
abstract OCSPIdentifier |
newOCSPIdentifier(String responderId,
Date producedAt,
String uri)
Creates a
OCSPIdentifier with the given responder ID,
producedAt date and URI. |
abstract OCSPRef |
newOCSPRef(byte[] ocspResponse,
DigestMethod digestMethod,
String uri)
Creates a
OCSPRef with the given OCSP response, digest method
and URI. |
abstract OCSPRef |
newOCSPRef(OCSPIdentifier ocspIdentifer,
DigestAlgAndValue digestAlgAndValue)
Creates a
OCSPRef with the given OCSP identifier and digest
value. |
abstract OCSPRef |
newOCSPRef(OCSPIdentifier ocspIdentifier,
DigestMethod digestMethod,
InputStream digestInputStream)
Creates a
OCSPRef with the given OCSP identifier, digest
method and input for the digest computation. |
abstract OtherAttributeCertificate |
newOtherAttributeCertificate(List content)
Creates an
OtherAttributeCertificate element with the specified list of
XMLStructures. |
abstract OtherCertificate |
newOtherCerificate(List content)
Creates a
OtherCertificate element with the specified list of
XMLStructures. |
abstract OtherRef |
newOtherRef(List content)
Creates a
OtherRef element with the specified list of
XMLStructures. |
abstract OtherValue |
newOtherValue(List content)
Creates a
OtherValue element with the specified list of
XMLStructures. |
abstract QualifyingProperties |
newQualifyingProperties(SignedProperties signedProperties,
String target,
String id)
Creates
QualifyingProperties with the specified signed
properties, target-attribute value and id
-attribute value. |
abstract QualifyingProperties |
newQualifyingProperties(SignedProperties signedProperties,
UnsignedProperties unsignedProperties,
String target,
String id)
Creates
QualifyingProperties with the specified signed
properties, unsigned properties, target-attribute value and
id-attribute value. |
abstract QualifyingPropertiesReference |
newQualifyingPropertiesReference(String uri,
List transforms,
String id)
Creates a
QualifyingPropertiesReference element with the given
URI, list of Transforms and id
-attribute value. |
abstract RecomputedDigestValue |
newRecomputedDigestValue(int order,
byte[] digestValue)
Creates the
RecomputedDigestValue with te given order and digest value. |
abstract RefsOnlyTimeStamp |
newRefsOnlyTimeStamp(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
By
ETSI EN 319 132-1.
Use newRefsOnlyTimeStampV2(CanonicalizationMethod, String, String) instead. |
abstract RefsOnlyTimeStamp |
newRefsOnlyTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newRefsOnlyTimeStamp(CanonicalizationMethod, String, String)
. |
abstract RefsOnlyTimeStampV2 |
newRefsOnlyTimeStampV2(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
RefsOnlyTimeStampV2 property with the specified list
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token. |
abstract RefsOnlyTimeStampV2 |
newRefsOnlyTimeStampV2(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newRefsOnlyTimeStampV2(CanonicalizationMethod, String, String)
. |
abstract RenewedDigests |
newRenewedDigests(DigestMethod digestMethod,
List recomputedDigestValues,
String id)
Creates the
RenewedDigests with te given digest method, list of RecomputedDigestValues and id. |
abstract RenewedDigests |
newRenewedDigests(DigestMethod digestMethod,
String id)
Creates the
RenewedDigests with te given digest method and id. |
abstract RevocationValues |
newRevocationValues(List crlValues,
List ocspValues,
List otherValues,
String id)
Creates a
RevocationValues property with the specified list of
EncapsulatedCRLValues, list of EncapsulatedOCSPValues, list
of OtherValues and id-attribute value. |
abstract SigAndRefsTimeStamp |
newSigAndRefsTimeStamp(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
By
ETSI EN 319 132-1.
Use newSigAndRefsTimeStampV2(CanonicalizationMethod, String, String) instead. |
abstract SigAndRefsTimeStamp |
newSigAndRefsTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newSigAndRefsTimeStamp(CanonicalizationMethod, String, String) |
abstract SigAndRefsTimeStampV2 |
newSigAndRefsTimeStampV2(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
SigAndRefsTimeStampV2 property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token. |
abstract SigAndRefsTimeStampV2 |
newSigAndRefsTimeStampV2(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newSigAndRefsTimeStampV2(CanonicalizationMethod, String, String)
. |
abstract SignaturePolicyId |
newSignaturePolicyId(ObjectIdentifier sigPolicyId,
List transforms,
DigestAlgAndValue sigPolicyHash,
List sigPolicyQualifiers)
Creates a new
SignaturePolicyId with the given object
identifier, transforms, digest value and list of qualifiers. |
abstract SignaturePolicyId |
newSignaturePolicyId(ObjectIdentifier sigPolicyId,
List transforms,
DigestMethod digestMethod,
Data digestInput,
List qualifiers)
Creates a new
SignaturePolicyId with the given object
identifier, transforms, digest method, digest input and list of qualifiers. |
abstract SignaturePolicyIdentifier |
newSignaturePolicyIdentifier()
Creates a new
SignaturePolicyIdentifier with
SignaturePolicyImplied. |
abstract SignaturePolicyIdentifier |
newSignaturePolicyIdentifier(SignaturePolicyId signaturePolicyId)
Creates a new
SignaturePolicyIdentifier with the given
SignaturePolicyId. |
abstract SignaturePolicyStore |
newSignaturePolicyStore(SPDocSpecification sPDocSpecification,
byte[] signaturePolicyDocument,
String id)
Creates the signature policy store with the given technical specification and
the signature policy document.
|
abstract SignaturePolicyStore |
newSignaturePolicyStore(SPDocSpecification sPDocSpecification,
InputStream signaturePolicyDocument,
String id)
Creates the signature policy store with the given technical specification and
the signature policy document.
|
abstract SignaturePolicyStore |
newSignaturePolicyStore(SPDocSpecification sPDocSpecification,
String sigPolDocLocalURI,
String id)
Creates the signature policy store with the given technical specification and
the uri pointing to the local stored signature policy document..
|
abstract SignatureProductionPlace |
newSignatureProductionPlace(String city,
String stateOrProvince,
String postalCode,
String countryName)
Deprecated.
By
ETSI EN 319 132-1. Use newSignatureProductionPlaceV2(String, String, String, String, String) instead. |
abstract SignatureProductionPlaceV2 |
newSignatureProductionPlaceV2(String city,
String streetAddress,
String stateOrProvince,
String postalCode,
String countryName)
Creates a new
SignatureProductionPlaceV2 property with the given
city, street address, state or province, postal code and country name. |
abstract SignatureTimeStamp |
newSignatureTimeStamp(CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Creates a
SignatureTimeStamp property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token. |
abstract SignatureTimeStamp |
newSignatureTimeStamp(List includes,
CanonicalizationMethod canonicalizationMethod,
String id,
String tokenId)
Deprecated.
use the implicit mechanism (not distributed case) instead
newSignatureTimeStamp(CanonicalizationMethod, String, String)
. |
abstract SignedAssertion |
newSignedAssertion(List content)
Creates an
SignedAssertion element with the specified list of
XMLStructures. |
abstract SignedDataObjectProperties |
newSignedDataObjectProperties(List dataObjectFormats,
List commitmentTypeIndications,
List allDataObjectsTimeStamps,
List individualDataObjectsTimeStamps,
String id)
Creates
SignedDataObjectProperties containing the specified
list of DataObjectFormats, list of CommitmentTypeIndication
s, list of AllDataObjectsTimeStamps, list of
IndividualDataObjectsTimeStamps and id-attribute
value. |
abstract SignedProperties |
newSignedProperties(SignedSignatureProperties signedSignatureProperties,
SignedDataObjectProperties signedDataObjectProperties,
String id)
Creates
SignedProperties with the specified signed signature
properties, signed data object properties and id-attribute
value. |
abstract SignedSignatureProperties |
newSignedSignatureProperties(SigningTime signingTime,
SigningCertificate signingCertificate,
SignaturePolicyIdentifier signaturePolicyIdentifier,
SignatureProductionPlace signatureProductionPlace,
SignerRole signerRole,
String id)
Deprecated.
|
abstract SignedSignatureProperties |
newSignedSignatureProperties(SigningTime signingTime,
SigningCertificateV2 signingCertificate,
SignaturePolicyIdentifier signaturePolicyIdentifier,
SignatureProductionPlaceV2 signatureProductionPlace,
SignerRoleV2 signerRole,
String id)
Creates
SignedSignatureProperties with the specified signing
time, signing certificate, signature policy identifier, signature
production place, signer role and id-attribute value. |
abstract SignerRole |
newSignerRole(List claimedRoles,
List certifiedRoles)
Deprecated.
By
ETSI EN 319 132-1. Use newSignerRoleV2(List, List, List) instead. |
abstract SignerRoleV2 |
newSignerRoleV2(List claimedRoles,
List certifiedRoles,
List signedAssertions)
Creates a new
SignerRoleV2 property with the given claimed roles,
certified roles and or signed assertions. |
abstract SigningCertificate |
newSigningCertificate(List certIDs)
Deprecated.
By
ETSI EN 319 132-1. Use newSigningCertificateV2(List). |
abstract SigningCertificateV2 |
newSigningCertificateV2(List certIDs)
Creates a new
SigningCertificateV2 with the given list of
CertIDV2s. |
abstract SigningTime |
newSigningTime()
Creates a new
SigningTime with the current system time. |
abstract SigningTime |
newSigningTime(Date date)
Deprecated.
The signing time should be as close as possible near the actual
signature creation time and MUST be after creation time of
signed DataObjectTimeStamps (if present). This is only assured
if the library sets the date automatically. Use method
newSigningTime() instead. |
abstract SigPolicyQualifier |
newSigPolicyQualifier(List content)
Creates a
SigPolicyQualifier with the specified list of
XMLStructures. |
abstract SPDocSpecification |
newSPDocSpecification(String identifier,
Identifier.Qualifier qualifier,
String description,
List documentationReferences)
Creates a new
SPDocSpecification with the given identifier,
description and documentation references. |
abstract SPURI |
newSPURI(String uri)
Creates a new
SPURI element with the given URI. |
abstract SPUserNotice |
newSPUserNotice(String explicitText,
NoticeRef noticeRef)
Creates a new
SPUserNotice element with the given explicit
text and the notice reference. |
abstract TimeStampValidationData |
newTimeStampValidationData(CertificateValues certificateValues,
RevocationValues revocationValues,
String uri,
String id)
Creates a
TimeStampValidationData property with the given |
abstract TimeStampValidationData |
newTimeStampValidationData(List certificates,
List crlValues,
List ocspValues,
List otherValues,
String uri,
String id)
Creates a
TimeStampValidationData property with the given list
of EncapsulatedX509Certificates, OtherCertificate list of
EncapsulatedCRLValues, list of EncapsulatedOCSPValues, list
of OtherValues and the specified id-attribute value. |
abstract UnsignedDataObjectProperties |
newUnsignedDataObjectProperties(List unsignedDataObjectProperties,
String id)
Creates a
UnsignedDataObjectProperties element with the given
list of UnsignedDataObjectProperty elements. |
abstract UnsignedDataObjectProperty |
newUnsignedDataObjectProperty(List content)
Creates a
UnsignedDataObjectProperty with the specified list
of XMLStructures. |
abstract UnsignedProperties |
newUnsignedProperties(UnsignedSignatureProperties unsignedSignatureProperties,
UnsignedDataObjectProperties unsignedDataObjectProperties,
String id)
Creates
UnsignedProperties with the specified unsigned
signature properties, unsigned data object properties and id
-attribute value. |
abstract UnsignedSignatureProperties |
newUnsignedSignatureProperties(List counterSignatures,
List signatureTimeStamps,
CompleteCertificateRefs certificateRefs,
CompleteRevocationRefs completeRevocationRefs,
AttributeCertificateRefs attributeCertificateRefs,
AttributeRevocationRefs attributeRevocationRefs,
List refsTimeStamps,
CertificateValues certificateValues,
RevocationValues revocationValues,
AttrAuthoritiesCertValues attrCertificateValues,
AttributeRevocationValues attributeRevocationValues,
List archiveTimeStamps,
String id)
Deprecated.
By
ETSI EN 319 132-1.
Use newUnsignedSignatureProperties(
List, List, CompleteCertificateRefsV2, CompleteRevocationRefs, AttributeCertificateRefsV2,
AttributeRevocationRefs, List, CertificateValues, RevocationValues, AttrAuthoritiesCertValues,
AttributeRevocationValues, List, SignaturePolicyStore, String) instead. |
abstract UnsignedSignatureProperties |
newUnsignedSignatureProperties(List counterSignatures,
List signatureTimeStamps,
CompleteCertificateRefsV2 certificateRefs,
CompleteRevocationRefs completeRevocationRefs,
AttributeCertificateRefsV2 attributeCertificateRefs,
AttributeRevocationRefs attributeRevocationRefs,
List refsTimeStamps,
CertificateValues certificateValues,
RevocationValues revocationValues,
AttrAuthoritiesCertValues attrCertificateValues,
AttributeRevocationValues attributeRevocationValues,
List archiveTimeStamps,
SignaturePolicyStore signaturePolicyStore,
String id)
Creates a
UnsignedSignatureProperties element with the given
list of CounterSignatures, list of SignatureTimeStamps,
complete certificate references, complete revocation references, attribute
certificate references, attribute revocation references, list of
SigAndRefsTimeStamps and RefsOnlyTimeStamps, certificate
values, revocation values and id-attribute value. |
abstract UnsignedSignatureProperties |
newUnsignedSignatureProperties(List counterSignatures,
String id)
Creates a
UnsignedSignatureProperties element with the given
list of CounterSignatures and id-attribute value. |
abstract X509AttributeCertificate |
newX509AttributeCertificate(byte[] attributeCertificate,
String id,
String encoding)
Creates a new
X509AttributeCertificate element with the given attribute
certificate. |
protected QualifyingPropertiesFactory()
public static QualifyingPropertiesFactory getInstance(String mechanismType) throws NullPointerException, NoSuchMechanismException
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM").
This method uses the standard JCA provider lookup mechanism to locate and
instantiate a QualifyingPropertiesFactory implementation of
the desired mechanism type.
mechanismType - the type of the XML processing mechanism and representationQualifyingPropertiesFactoryNullPointerException - if mechanismType is nullNoSuchMechanismException - if an implementation of the specified mechanismType
can not be foundpublic static QualifyingPropertiesFactory getInstance(String mechanismType, Provider provider) throws NullPointerException, NoSuchMechanismException
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM"), as
supplied by the provider.mechanismType - the type of the XML processing mechanism and representation.provider - the providerQualifyingPropertiesFactoryNullPointerException - if mechanism or provider is
nullNoSuchMechanismException - if an implementation of the requested mechanismType is
not available from the specified providerpublic static QualifyingPropertiesFactory getInstance(String mechanismType, String provider) throws NoSuchProviderException, NullPointerException
QualifyingPropertiesFactory that supports the
specified XML processing mechanism and representation type (ex: "DOM"), as
supplied by the provider.mechanismType - the type of the XML processing mechanism and representationprovider - the name of the providerQualifyingPropertiesFactoryNoSuchProviderException - if provider has not been configuredNullPointerException - if mechanismType or provider are
nullNoSuchMechanismException - if an implementation of the specified mechanismType
can not be foundpublic static QualifyingPropertiesFactory getInstance() throws NullPointerException, NoSuchProviderException
QualifyingPropertiesFactory that supports the XML
processing mechanism type (ex: "DOM"). This method uses the standard JCA
provider lookup mechanism to locate and instantiate a
QualifyingPropertiesFactory implementation of the default
mechanism type.QualifyingPropertiesFactoryNoSuchMechanismException - if an implementation of the default mechanismType can
not be foundNoSuchProviderExceptionNullPointerExceptionpublic final String getMechanismType()
QualifyingPropertiesFactory.QualifyingPropertiespublic final Provider getProvider()
QualifyingPropertiesFactory.QualifyingPropertiesFactory.public abstract boolean isFeatureSupported(String feature)
feature - the feature name (as an absolute URI)true if the specified feature is supported,
false otherwiseNullPointerException - if feature is nullpublic abstract URIDereferencer getURIDereferencer()
URIDereferencer that is used by
default to dereference URIs in qualifying properties.URIDereferencer (never
null)public abstract SigningTime newSigningTime(Date date)
newSigningTime() instead.SigningTime with the given date.date - the signing timeSigningTimeNullPointerException - if date is nullpublic abstract SigningTime newSigningTime()
SigningTime with the current system time.SigningTimepublic abstract SigningCertificate newSigningCertificate(List certIDs)
ETSI EN 319 132-1. Use newSigningCertificateV2(List).SigningCertificate with the given list of
CertIDs.certIDs - a list of CertIDs (may not be null or empty)SigningCertificateNullPointerException - if certIDs is nullIllegalArgumentException - if certIDs is emptyClassCastException - if certIDs contains any entries that are not of type
CertIDpublic abstract CertID newCertID(String uri, X509Certificate certificate, DigestMethod digestMethod)
ETSI EN 319 132-1. Use one of
instead.CertID with the given URI, certificate and
digest method.uri - the URI-attribute value (may be null)certificate - the X509 certificatedigestMethod - the digest method for creating a hash value of the certificateCertIDNullPointerException - if certificate or digestMethod is
nullpublic abstract CertID newCertID(String uri, IssuerSerial issuerSerial, DigestMethod digestMethod, InputStream digestInput)
ETSI EN 319 132-1. Use one of
instead.CertID with the given URI, issuer and serial
number, digest method and input for computing the digest.uri - the URI-attribute value (may be null)issuerSerial - the issuer and serial numberdigestMethod - the digest methoddigestInput - the input for computing the digestCertIDNullPointerException - if issuerSerial, digestMethod or
digestInput is nullpublic abstract CertID newCertID(String uri, DigestMethod digestMethod, byte[] digestValue, IssuerSerial issuerSerial)
ETSI EN 319 132-1. Use one of
instead.CertID with the given URI, issuer and serial
number, digest method and digest value.uri - the URI-attribute value (may be null)digestMethod - the digest methoddigestValue - the digest value (computed on the DER-encoded certificate)issuerSerial - the issuer and serial numberCertIDNullPointerException - if digestMethod, digestValue or
issuerSerial is nullpublic abstract IssuerSerial newIssuerSerial(String issuerName, BigInteger serialNumber)
ETSI EN 319 132-1. Use newIssuerSerialV2(X509Certificate).IssuerSerial from the specified X.500 issuer
distinguished name and serial number.issuerName - the issuer's distinguished name in RFC 2253 String format.
Implementations MUST support the attribute type keywords defined in
RFC 2253 (CN, L, ST, O, OU, C, STREET, DC and UID). Implementations
MAY support additional keywords.serialNumber - the serial numberIssuerSerialNullPointerException - if issuerName or serialNumber are
nullIllegalArgumentException - if the issuer name is not RFC 2253 complaint or one of the
attribute type keywords is not recognized.public abstract SigningCertificateV2 newSigningCertificateV2(List certIDs)
SigningCertificateV2 with the given list of
CertIDV2s.certIDs - a list of CertIDV2s (may not be null or empty)SigningCertificateV2NullPointerException - if certIDs is nullIllegalArgumentException - if certIDs is emptyClassCastException - if certIDs contains any entries that are not of type
CertIDV2public abstract CertIDV2 newCertIDV2(String uri, X509Certificate certificate, DigestMethod digestMethod, boolean addIssuerSerial)
CertIDV2 with the given URI, certificate,
and digest method
uri - the URI-attribute value (may be null)certificate - the X509 certificatedigestMethod - the digest method for creating a hash value of the certificateaddIssuerSerial - indicates, whether the IssuerSerialV2 element should be
added to the CertIDV2 or notCertIDV2NullPointerException - if certificate or digestMethod is
nullpublic abstract CertIDV2 newCertIDV2(String uri, DigestMethod digestMethod, InputStream digestInput)
CertIDV2 with the given URI,
digest method and input for computing the digest.uri - the URI-attribute value (may be null)digestMethod - the digest methoddigestInput - the input for computing the digestCertIDNullPointerException - if digestMethod or
digestInput is nullpublic abstract CertIDV2 newCertIDV2(String uri, IssuerSerialV2 issuerSerial, DigestMethod digestMethod, InputStream digestInput)
CertIDV2 with the given URI, issuer and serial
number, digest method and input for computing the digest.uri - the URI-attribute value (may be null)issuerSerial - the issuer and serial number, maybe nulldigestMethod - the digest methoddigestInput - the input for computing the digestCertIDNullPointerException - if digestMethod or
digestInput is nullpublic abstract CertIDV2 newCertIDV2(String uri, DigestMethod digestMethod, byte[] digestValue)
CertIDV2 with the given URI, digest method and digest value.uri - the URI-attribute value (may be null)digestMethod - the digest methoddigestValue - the digest value (computed on the DER-encoded certificate)CertIDNullPointerException - if digestMethod, digestValue is nullpublic abstract CertIDV2 newCertIDV2(String uri, DigestMethod digestMethod, byte[] digestValue, IssuerSerialV2 issuerSerial)
CertIDV2 with the given URI,
digest method, digest value issuer and serialuri - the URI-attribute value (may be null)digestMethod - the digest methoddigestValue - the digest value (computed on the DER-encoded certificate)issuerSerial - the issuer and serial number, maybe nullCertIDNullPointerException - if digestMethod, digestValue or
issuerSerial is nullpublic abstract IssuerSerialV2 newIssuerSerialV2(String issuerName, BigInteger serialNumber)
IssuerSerialV2 from the specified X.500 issuer
distinguished name and serial number.issuerName - the issuer's distinguished name in RFC 2253 String format.
Implementations MUST support the attribute type keywords defined in
RFC 2253 (CN, L, ST, O, OU, C, STREET, DC and UID). Implementations
MAY support additional keywords.serialNumber - the serial numberIssuerSerialV2NullPointerException - if issuerName or serialNumber are
nullIllegalArgumentException - if the issuer name is not RFC 2253 complaint or one of the
attribute type keywords is not recognized.public abstract IssuerSerialV2 newIssuerSerialV2(X509Certificate cert)
IssuerSerialV2 from the issuerDN and serial
number in the given certificate.cert - A certificate.IssuerSerialV2NullPointerException - if cert is nullIllegalArgumentException - if the given cert is not an instance of an X509Certificate and
the issuer name is not RFC 2253 compliant or if an S/MIMEv3 ESS IssuerSerial
cannot be created from the issuerDN and the serial number in the given certificate.public abstract ObjectIdentifier newObjectIdentifier(String identifier, Identifier.Qualifier qualifier, String description, List documentationReferences)
ObjectIdentifier with the given identifier,
description and documentation references.identifier - the identifierqualifier - the qualifier (one of
Identifier.Qualifier.OID_AS_URI or
Identifier.Qualifier.OID_AS_URN,
null)description - the description (may be null)documentationReferences - a list of Strings (may be null or empty)ObjectIdentifierNullPointerException - if identifier is nullClassCastException - if any of the documentation references is not of type
Stringpublic abstract SignaturePolicyIdentifier newSignaturePolicyIdentifier(SignaturePolicyId signaturePolicyId)
SignaturePolicyIdentifier with the given
SignaturePolicyId.signaturePolicyId - the SignaturePolicyIdSignaturePolicyIdentifierNullPointerException - if signaturePolicyId is nullpublic abstract SignaturePolicyIdentifier newSignaturePolicyIdentifier()
SignaturePolicyIdentifier with
SignaturePolicyImplied.SignaturePolicyIdentifierpublic abstract SignaturePolicyId newSignaturePolicyId(ObjectIdentifier sigPolicyId, List transforms, DigestMethod digestMethod, Data digestInput, List qualifiers)
SignaturePolicyId with the given object
identifier, transforms, digest method, digest input and list of qualifiers.
The input for the digest computation is obtained from the given
digestInput, if present, or alternatively from the Identifier
URI in the sigPolicyID, or, if this URI cannot be dereferenced, from the
first SPURI within the qualifiers that could be dereferenced
successfully. The digest is computed using the digest input as obtained
above and applying all present transforms according to the reference
processing model of XML-Signature
Syntax and Processing.
sigPolicyId - the object identifier of the signature policytransforms - a list of Transforms (may be
null or empty)digestMethod - the digest methoddigestInput - the input for the digest computation.qualifiers - a list of SigPolicyQualifiers (may be null or
empty)SignaturePolicyIdNullPointerException - if sigPolicyId, digestMethod or
digestInput is nullClassCastException - if any of the transforms is not of type
Transform, or if any of the
sigPolicyQualifiers is not of type SigPolicyQualifierIllegalArgumentException - if digestInput is null and no
SPURI is present in the qualifierspublic abstract SignaturePolicyId newSignaturePolicyId(ObjectIdentifier sigPolicyId, List transforms, DigestAlgAndValue sigPolicyHash, List sigPolicyQualifiers)
SignaturePolicyId with the given object
identifier, transforms, digest value and list of qualifiers.sigPolicyId - the object identifier of the signature policytransforms - a list of Transforms (may be
null or empty)sigPolicyHash - the digest value of the signature policysigPolicyQualifiers - a list of SigPolicyQualifiers (may be null or
empty)SignaturePolicyIdNullPointerException - if sigPolicyId or sigPolicyHash is
nullClassCastException - if any of the transforms is not of type
Transform, or if any of the
sigPolicyQualifiers is not of type SigPolicyQualifierpublic abstract SigPolicyQualifier newSigPolicyQualifier(List content)
SigPolicyQualifier with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)SigPolicyQualifierClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract SPURI newSPURI(String uri)
SPURI element with the given URI.uri - the URISPURINullPointerException - if uri is nullpublic abstract SPUserNotice newSPUserNotice(String explicitText, NoticeRef noticeRef)
SPUserNotice element with the given explicit
text and the notice reference.explicitText - the explicit textnoticeRef - the notice referenceSPUserNoticepublic abstract NoticeRef newNoticeRef(String organization, List numbers)
NoticeRef element with the given organization
and notice numbers.organization - the organizationnumbers - the notice numbers (may be empty but never null)NoticeRefNullPointerException - if organization or numbers is
nullpublic abstract SPDocSpecification newSPDocSpecification(String identifier, Identifier.Qualifier qualifier, String description, List documentationReferences)
SPDocSpecification with the given identifier,
description and documentation references.identifier - the identifierqualifier - the qualifier (one of
Identifier.Qualifier.OID_AS_URI or
Identifier.Qualifier.OID_AS_URN,
null)description - the description (may be null)documentationReferences - a list of Strings (may be null or empty)ObjectIdentifierNullPointerException - if identifier is nullClassCastException - if any of the documentation references is not of type
Stringpublic abstract SignaturePolicyStore newSignaturePolicyStore(SPDocSpecification sPDocSpecification, String sigPolDocLocalURI, String id)
sPDocSpecification - The SPDocSpecification definig the syntax used
for producing the signature policy document.
Must not be null.sigPolDocLocalURI - The uri pointing to the locally stored signature
policy document. Must not be null.id - The value of the Id attribute.
Maybe nullNullPointerException - if sPDocSpecification or sigPolDocLocalURI is nullpublic abstract SignaturePolicyStore newSignaturePolicyStore(SPDocSpecification sPDocSpecification, byte[] signaturePolicyDocument, String id)
sPDocSpecification - The SPDocSpecification definig the syntax used
for producing the signature policy document.
Must not be null.signaturePolicyDocument - The signature policy document to be added as
base64 encoded content to the <SignaturePolicyDocument>
element. Must not be null.id - The value of the Id attribute.
Maybe nullSignaturePolicyStore object.NullPointerException - if sPDocSpecification or SignaturePolicyDocument is nullpublic abstract SignaturePolicyStore newSignaturePolicyStore(SPDocSpecification sPDocSpecification, InputStream signaturePolicyDocument, String id)
sPDocSpecification - The SPDocSpecification definig the syntax used
for producing the signature policy document.
Must not be null.signaturePolicyDocument - The signature policy document to be added as
base64 encoded content of the <SignaturePolicyDocument>
element. Must not be null.id - The value of the Id attribute.
Maybe null.SignaturePolicyStore object.public abstract SignatureProductionPlace newSignatureProductionPlace(String city, String stateOrProvince, String postalCode, String countryName)
ETSI EN 319 132-1. Use newSignatureProductionPlaceV2(String, String, String, String, String) instead.SignatureProductionPlace property with the given
city, state or province, postal code and country name.city - the citystateOrProvince - the state or provincepostalCode - the postal codecountryName - the country nameSignatureProductionPlacepublic abstract SignatureProductionPlaceV2 newSignatureProductionPlaceV2(String city, String streetAddress, String stateOrProvince, String postalCode, String countryName)
SignatureProductionPlaceV2 property with the given
city, street address, state or province, postal code and country name.city - the citystreetAddress - the street addressstateOrProvince - the state or provincepostalCode - the postal codecountryName - the country nameSignatureProductionPlaceIllegalArgumentException - if all paramters are null or emptypublic abstract SignerRole newSignerRole(List claimedRoles, List certifiedRoles)
ETSI EN 319 132-1. Use newSignerRoleV2(List, List, List) instead.SignerRole property with the given claimed roles
and certified roles.claimedRoles - a list of ClaimedRoles (may be null but never
empty)certifiedRoles - a list of CertifiedRoles (may be null but never
empty)SignerRoleNullPointerException - if both, claimedRoles and certifiedRoles
are nullIllegalArgumentException - if claimedRoles or certifiedRoles is
emptypublic abstract ClaimedRole newClaimedRole(List content)
ClaimedRole element with the given content.content - a list of DOMStructures representing
the claimed roleClaimedRoleNullPointerException - if claimedRole is nullClassCastException - if any content is not of type
DOMStructureIllegalArgumentException - if content is emptypublic abstract CertifiedRole newCertifiedRole(byte[] attributeCertificate, String id, String encoding)
ETSI EN 319 132-1. Use newCertifiedRoleV2(X509AttributeCertificate) or
{newCertifiedRoleV2(OtherAttributeCertificate) instead.CertifiedRole element with the given attribute
certificate.attributeCertificate - a DER encoded attribute certificateid - an optional id-attribute value (may be
null)encoding - an optional encoding (may be null)CertifiedRoleNullPointerException - if attributeCertificate is nullIllegalArgumentException - if attributeCertificate is not a valid DER encoded
attribute certificatepublic abstract X509AttributeCertificate newX509AttributeCertificate(byte[] attributeCertificate, String id, String encoding)
X509AttributeCertificate element with the given attribute
certificate.attributeCertificate - a DER encoded attribute certificateid - an optional id-attribute value (may be
null)encoding - an optional encoding (may be null)X509AttributeCertificateNullPointerException - if attributeCertificate is nullIllegalArgumentException - if attributeCertificate is not a valid DER encoded
attribute certificatepublic abstract OtherAttributeCertificate newOtherAttributeCertificate(List content)
OtherAttributeCertificate element with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)OtherAttributeCertificateClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract CertifiedRoleV2 newCertifiedRoleV2(X509AttributeCertificate x509AttributeCertificate)
CertifiedRoleV2 object with the given X509AttributeCertificate.x509AttributeCertificate - a X509AttributeCertificateCertifiedRoleV2
throws NullPointerException
if x509AttributeCertificate is nullpublic abstract CertifiedRoleV2 newCertifiedRoleV2(OtherAttributeCertificate otherAttributeCertificate)
CertifiedRoleV2 object with the given OtherAttributeCertificate.otherAttributeCertificate - a OtherAttributeCertificateCertifiedRoleV2
throws NullPointerException
if x509AttributeCertificate is nullpublic abstract SignedAssertion newSignedAssertion(List content)
SignedAssertion element with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)SignedAssertionClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract SignerRoleV2 newSignerRoleV2(List claimedRoles, List certifiedRoles, List signedAssertions)
SignerRoleV2 property with the given claimed roles,
certified roles and or signed assertions.claimedRoles - a list of ClaimedRoles (may be null but never
empty)certifiedRoles - a list of CertifiedRoleV2s (may be null but never
empty)signedAssertions - a list of SignedAssertions (may be null but never
empty)SignerRoleV2IllegalArgumentException - If claimedRoles, certifiedRules
and signedAssertions are all null
or empty.public abstract DataObjectFormat newDataObjectFormat(String description, ObjectIdentifier objectIdentifier, String mimeType, String encoding, String objectReference)
DataObjectFormat property with the given
description, object identifier, MIME type, encoding and object refererence.description - an optional textual description (may be null)objectIdentifier - an optional identifier indicating the type of the signed data object
(may be null)mimeType - an optional MIME type (may be null)encoding - an optional encoding (may be null)objectReference - a URI referencing the ds:Reference corresponding to the
signed data objectDataObjectFormatNullPointerException - if objectReference is nullIllegalArgumentException - if objectReference is not a valid URI referencepublic abstract CommitmentTypeIndication newCommitmentTypeIndication(ObjectIdentifier commitmentTypeId, List objectReferences, List commitmentTypeQualifiers)
CommitmentTypeIndication property with the given
commitment type identifier, object references and commitment type
qualifiers.
If objectReferences is null the commitment type
indication applies for all signed data objects. This will be indicated by
presence of the AllSignedDataObject element.
commitmentTypeId - the commitment type identifierobjectReferences - a list of Strings, representing URI references to the
ds:Reference elements of the corresponding signed data
objects. If null or empty an empty
AllSignedDataObjects element is added indicating that
all signed references share the same commitment.commitmentTypeQualifiers - a optional list of CommitmentTypeQualifiers (may be
null or empty)CommitmentTypeIndicationNullPointerException - if commitmentTypeId is nullClassCastException - if any of the object references is not of type StringClassCastException - if any of the commitment type qualifiers is not of type
CommitmentTypeQualifierpublic abstract CommitmentTypeQualifier newCommitmentTypeQualifer(List content)
CommitmentTypeQualifier with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)CommitmentTypeQualifierClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract Include newInclude(String uri, boolean referencedData)
Include element with the specified URI and
referenced data attribute value.
If uri references a ds:Reference and the
referencedData-attribute is set to true, the data
referenced by the ds:Reference is processed according to the
XMLDSIG processing model.
If uri references a ds:Reference and the
referencedData-attribute is set to false or
omitted, the ds:Reference element itsself is used. If the
uri does not reference a ds:Reference the
referencedData-attribute must be set to false.
uri - the URI referencereferencedData - the referencedData-attribute valueIncludepublic abstract Include newInclude(String uri)
Include element with the specified URI
attribute value.
If uri references a ds:Reference the
canonicalized ds:Reference element itself will be used as
input for digest calculation.
uri - the URI referenceIncludepublic abstract AllDataObjectsTimeStamp newAllDataObjectsTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newAllDataObjectsTimeStamp(CanonicalizationMethod, String, String)
.AllDataObjectsTimeStamp property with the
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.includes - the list of Includes. Must be null or an
empty list, because this type of timestamp uses the implicit
mechanism only.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenAllDataObjectsTimeStampClassCastException - if includes contains elements that are not of type
Includepublic abstract AllDataObjectsTimeStamp newAllDataObjectsTimeStamp(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
AllDataObjectsTimeStamp property with the
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenAllDataObjectsTimeStamppublic abstract IndividualDataObjectsTimeStamp newIndividualDataObjectsTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
IndividualDataObjectsTimeStamp property with the
specified list of Includes, canonicalization method,
id-attribute value and id-attribute value of the
time-stamp token.
The application MUST compose the Include elements to
refer to those ds:Reference elements that are to be
time-stamped. Their corresponding referencedData attribute
MUST be present and set to true.
includes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenIndividualDataObjectsTimeStampNullPointerException - if includes is nullIllegalArgumentException - if includes is emtpyClassCastException - if includes contains elements that are not of type
Includepublic abstract CounterSignature newCounterSignature(XMLSignature counterSignature)
newCounterSignature(XMLSignature, KeySelector, String) or newCounterSignature(XMLSignature, KeySelector, String)
instead.CounterSignature property with the specified
signature.counterSignature - the counter signatureCounterSignatureNullPointerException - if counterSignature is nullpublic abstract CounterSignature newCounterSignature(XMLSignature counterSignature, KeySelector keySelector)
CounterSignature property with the specified
signature.counterSignature - the counter signaturekeySelector - a KeySelector for countersigning the signatureCounterSignatureNullPointerException - if counterSignature is nullpublic abstract CounterSignature newCounterSignature(XMLSignature counterSignature, KeySelector keySelector, String id)
CounterSignature property with the specified
signature.counterSignature - the counter signaturekeySelector - a KeySelector for countersigning the signatureid - the value of the Id attribute. Maybe nullCounterSignatureNullPointerException - if counterSignature is nullpublic abstract SignatureTimeStamp newSignatureTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newSignatureTimeStamp(CanonicalizationMethod, String, String)
.SignatureTimeStamp property with the specified list
of Includes, canonicalization method, id-attribute
value and id-attribute value of the time-stamp token.includes - the list of Includes. Must be null or an
empty list, because this type of timestamp uses the implicit
mechanism only.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSignatureTimeStampClassCastException - if includes contains elements that are not of type
Includepublic abstract SignatureTimeStamp newSignatureTimeStamp(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
SignatureTimeStamp property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSignatureTimeStamppublic abstract CompleteCertificateRefs newCompleteCertificateRefs(List certRefs, String id)
ETSI EN 319 132-1.
Use newCompleteCertificateRefsV2(List, String) instead.CompleteCertificateRefs property with the specified
list of CertIDs and the id-attribute value.certRefs - a list of CertIDsid - the id-attribute value (may be null)CeompleteCertificateRefs propertyNullPointerException - if certRefs is nullIllegalArgumentException - if certRefs is emptyClassCastException - if any element of certRefs is not of type
CertIDpublic abstract CompleteCertificateRefsV2 newCompleteCertificateRefsV2(List certRefs, String id)
CompleteCertificateRefsV2 with the given list of
CertIDV2s.certRefs - a list of CertIDV2s (may not be null or empty)id - the id-attribute value (may be null)CompleteCertificateRefsV2NullPointerException - if certIDs is nullIllegalArgumentException - if certIDs is emptyClassCastException - if certIDs contains any entries that are not of type
CertIDV2public abstract CompleteRevocationRefs newCompleteRevocationRefs(List crlRefs, List ocspRefs, List otherRefs, String id)
CompleteRevocationRefs property with the specified
list of CRLRefs, list of OCSPRefs, list of OtherRef
s and the id-attribute value.crlRefs - a list of CRLRefs (may be null or empty)ocspRefs - a list of OCSPRefs (may be null or empty}otherRefs - a list of OtherRefs (may be null or empty}id - the id-attribute valueCompleteRevocationRefs propertyNullPointerException - if certRefs, ocspRefs and
otherRefs are nullIllegalArgumentException - if certRefs, ocspRefs and
otherRefs are null or emptyClassCastException - if any of the certRefs elements is not of type
CRLRefClassCastException - if any of the ocspRefs elements is not of type
OCSPRefClassCastException - if any of the otherRefs elements is not of type
OtherRefpublic abstract CRLRef newCRLRef(X509CRL x509CRL, DigestMethod digestMethod, String uri)
CRLRef element for the given CRL with the specified
digest algorithm and URI.x509CRL - the X509 CRLdigestMethod - the digest methoduri - the URI of a copy of the CRLCRLRefNullPointerException - if x509CRL or digestMethod is nullpublic abstract CRLRef newCRLRef(CRLIdentifier crlIdentifier, DigestAlgAndValue digestAlgAndValue)
CRLRef with the given CRL identifier and digest
value.crlIdentifier - the CRL identifierdigestAlgAndValue - the digest valueCRLRefNullPointerException - if crlIdentifier or digestAlgAndValue is
nullpublic abstract CRLRef newCRLRef(CRLIdentifier crlIdentifier, DigestMethod digestMethod, InputStream digestInputStream)
CRLRef with the given CRL identifier, digest method,
and input for the digest computation.crlIdentifier - the CRL identifierdigestMethod - the digest methoddigestInputStream - the input for the digest computationCRLRefNullPointerException - if crlIdentifier, digestMethod or
digestInputStream is nullpublic abstract CRLIdentifier newCRLIdentifier(String issuer, Date issuerTime, BigInteger number, String uri)
CRLIdentifier with the given issuer name, issuer
time, CRL number and URI.issuer - the issuer distinguished nameissuerTime - the issuer timenumber - the CRL numberuri - the URI of a copy of the CRL (may be null)CRLIdentifierNullPointerException - if issuer or issuerTime is
nullpublic abstract OCSPRef newOCSPRef(byte[] ocspResponse, DigestMethod digestMethod, String uri)
OCSPRef with the given OCSP response, digest method
and URI.ocspResponse - the OCSP responsedigestMethod - the digest methoduri - the URI-attribute valueOCSPRefNullPointerException - if ocspResponse or digestMethod is
nullIllegalArgumentException - if ocspResponse is not a valid
OCSPResponse according to RFC 2560.public abstract OCSPRef newOCSPRef(OCSPIdentifier ocspIdentifer, DigestAlgAndValue digestAlgAndValue)
OCSPRef with the given OCSP identifier and digest
value.ocspIdentifer - the OCSP identifierdigestAlgAndValue - the digest valueOCSPRefNullPointerException - if ocspIdentifier or digestAlgAndValue is
nullpublic abstract OCSPRef newOCSPRef(OCSPIdentifier ocspIdentifier, DigestMethod digestMethod, InputStream digestInputStream)
OCSPRef with the given OCSP identifier, digest
method and input for the digest computation.ocspIdentifier - the OCSP identifierdigestMethod - the digest methoddigestInputStream - the input for the digest computationOCSPRefNullPointerException - if ocspIdentifier, digestMethod or
degestInputStream is nullpublic abstract OCSPIdentifier newOCSPIdentifier(String responderId, Date producedAt, String uri)
OCSPIdentifier with the given responder ID,
producedAt date and URI.responderId - the OCSP responder IDproducedAt - the producedAt dateuri - the value of the URI-attributeOCSPIdentifierNullPointerException - if responderId or producedAt is
nullpublic abstract OCSPIdentifier newOCSPIdentifier(byte[] publicKeyHash, Date producedAt, String uri)
OCSPIdentifier with the given hash of a Public Key,
producedAt date and URI. An OCSP Response may also be identified by the
digest of the server's public key computed as mandated in RFC 2560, using
the ByKey element. The content of the ByKey element is the DER value of the
byKey field as defined in RFC 2560, base64 encoded. The contents of the
ByName element MUST follow the rules established by XMLDSIG section 4.4.4
for strings representing Distinguished Names. The generation time
indication appears in the ProducedAt element and corresponds to the
"ProducedAt" field of the referenced response.publicKeyHash - the OCSP responder pubilcKeyHashproducedAt - the producedAt dateuri - the value of the URI-attributeOCSPIdentifierNullPointerException - if publicKeyHash or producedAt is
nullpublic abstract OtherRef newOtherRef(List content)
OtherRef element with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)OtherRefClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract AttributeCertificateRefs newAttributeCertificateRefs(List certRefs, String id)
ETSI EN 319 132-1.
Use newAttributeCertificateRefsV2(List, String) instead.AttributeCertificateRefs property with the specified
list of CertIDs and the id-attribute value.certRefs - a list of CertIDsid - the id-attribute value (may be null)AttributeCertificateRefs propertyNullPointerException - if certRefs is nullIllegalArgumentException - if certRefs is emptyClassCastException - if any element of certRefs is not of type
CertIDpublic abstract AttributeCertificateRefsV2 newAttributeCertificateRefsV2(List certRefs, String id)
AttributeCertificateRefsV2 with the given list of
CertIDV2s.certRefs - a list of CertIDV2s (may not be null or empty)id - the id-attribute value (may be null)AttributeCertificateRefsV2NullPointerException - if certIDs is nullIllegalArgumentException - if certIDs is emptyClassCastException - if certIDs contains any entries that are not of type
CertIDV2public abstract AttributeRevocationRefs newAttributeRevocationRefs(List crlRefs, List ocspRefs, List otherRefs, String id)
AttributeRevocationRefs property with the specified
list of CRLRefs, list of OCSPRefs, list of OtherRef
s and the id-attribute value.crlRefs - a list of CRLRefs (may be null or empty)ocspRefs - a list of OCSPRefs (may be null or empty}otherRefs - a list of OtherRefs (may be null or empty}id - the id-attribute valueAttributeRevocationRefs propertyNullPointerException - if certRefs, ocspRefs and
otherRefs are nullIllegalArgumentException - if certRefs, ocspRefs and
otherRefs are null or emptyClassCastException - if any of the certRefs elements is not of type
CRLRefClassCastException - if any of the ocspRefs elements is not of type
OCSPRefClassCastException - if any of the otherRefs elements is not of type
OtherRefpublic abstract SigAndRefsTimeStamp newSigAndRefsTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newSigAndRefsTimeStamp(CanonicalizationMethod, String, String)SigAndRefsTimeStamp property with the specified list
of Includes, canonicalization method, id-attribute
value and id-attribute value of the time-stamp token.
SigAndRefsTimeStamp is built on the following data:
SigAndRefsTimeStamp and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
ds:SignatureValueSignatureTimeStamp elementsCompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs? element, if presentAttributeRevocationRefs? element, if presentUnsignedProperties element.SigAndRefsTimeStamp and some of the
unsigned properties covered by its time-stamp token DO NOT have the same
parent): The explicit mechanism is used and the following data
objects are time-stamped:
ds:SignatureValue element contributes implicitly to
the digest input.Include must be added for the following
UnsignedProperties in the order they are listed below:
SignatureTimeStamp elementsCompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs element, if presentAttributeRevocationRefs element, if presentincludes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSigAndRefsTimeStampClassCastException - if includes contains elements that are not of type
Includepublic abstract SigAndRefsTimeStamp newSigAndRefsTimeStamp(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
ETSI EN 319 132-1.
Use newSigAndRefsTimeStampV2(CanonicalizationMethod, String, String) instead.SigAndRefsTimeStamp property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.
SigAndRefsTimeStamp is built on the following data:
SigAndRefsTimeStamp and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
ds:SignatureValueSignatureTimeStamp elementsCompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs? element, if presentAttributeRevocationRefs? element, if presentUnsignedProperties element.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSigAndRefsTimeStamppublic abstract SigAndRefsTimeStampV2 newSigAndRefsTimeStampV2(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newSigAndRefsTimeStampV2(CanonicalizationMethod, String, String)
.SigAndRefsTimeStampV2 property with the specified list
of Includes, canonicalization method, id-attribute
value and id-attribute value of the time-stamp token.
SigAndRefsTimeStampV2 is built on the following data:
SigAndRefsTimeStampV2 and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
ds:SignatureValueSignatureTimeStamp elementsCompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2? element, if presentAttributeRevocationRefs? element, if presentUnsignedProperties element.SigAndRefsTimeStampV2 and some of the
unsigned properties covered by its time-stamp token DO NOT have the same
parent): The explicit mechanism is used and the following data
objects are time-stamped:
ds:SignatureValue element contributes implicitly to
the digest input.Include must be added for the following
UnsignedProperties in the order they are listed below:
SignatureTimeStamp elementsCompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2 element, if presentAttributeRevocationRefs element, if presentincludes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSigAndRefsTimeStampV2ClassCastException - if includes contains elements that are not of type
Includepublic abstract SigAndRefsTimeStampV2 newSigAndRefsTimeStampV2(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
SigAndRefsTimeStampV2 property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.
SigAndRefsTimeStampV2 is built on the following data:
SigAndRefsTimeStampV2 and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
ds:SignatureValueSignatureTimeStamp elementsCompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2? element, if presentAttributeRevocationRefs? element, if presentUnsignedProperties element.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenSigAndRefsTimeStampV2public abstract RefsOnlyTimeStamp newRefsOnlyTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newRefsOnlyTimeStamp(CanonicalizationMethod, String, String)
.RefsOnlyTimeStamp property with the specified list
of Includes, canonicalization method, id-attribute
value and id-attribute value of the time-stamp token.
RefsOnlyTimeStamp is built on the following data:
RefsOnlyTimeStamp and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
CompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs element, if presentAttributeRevocationRefs element, if presentUnsignedProperties element.RefsOnlyTimeStamp and some of the
unsigned properties covered by its time-stamp token DO NOT have the same
parent): The explicit mechanism is used and one
Include must be added for the following
UnsignedProperties in the order they are listed below:
CompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs element, if presentAttributeRevocationRefs element, if presentincludes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenRefsOnlyTimeStampClassCastException - if includes contains elements that are not of type
Includepublic abstract RefsOnlyTimeStamp newRefsOnlyTimeStamp(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
ETSI EN 319 132-1.
Use newRefsOnlyTimeStampV2(CanonicalizationMethod, String, String) instead.RefsOnlyTimeStamp property with the specified list
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.
RefsOnlyTimeStamp is built on the following data:
RefsOnlyTimeStamp and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
CompleteCertificateRefs elementCompleteRevocationRefs elementAttributeCertificateRefs element, if presentAttributeRevocationRefs element, if presentUnsignedProperties element.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenRefsOnlyTimeStamppublic abstract RefsOnlyTimeStampV2 newRefsOnlyTimeStampV2(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newRefsOnlyTimeStampV2(CanonicalizationMethod, String, String)
.RefsOnlyTimeStampV2 property with the specified list
of Includes, canonicalization method, id-attribute
value and id-attribute value of the time-stamp token.
RefsOnlyTimeStampV2 is built on the following data:
RefsOnlyTimeStampV2 and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
CompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2 element, if presentAttributeRevocationRefs element, if presentUnsignedProperties element.RefsOnlyTimeStampV2 and some of the
unsigned properties covered by its time-stamp token DO NOT have the same
parent): The explicit mechanism is used and one
Include must be added for the following
UnsignedProperties in the order they are listed below:
CompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2 element, if presentAttributeRevocationRefs element, if presentincludes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenRefsOnlyTimeStampV2ClassCastException - if includes contains elements that are not of type
Includepublic abstract RefsOnlyTimeStampV2 newRefsOnlyTimeStampV2(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
RefsOnlyTimeStampV2 property with the specified list
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.
RefsOnlyTimeStampV2 is built on the following data:
RefsOnlyTimeStampV2 and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
CompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefsV2 element, if presentAttributeRevocationRefs element, if presentUnsignedProperties element.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenRefsOnlyTimeStampV2public abstract TimeStampValidationData newTimeStampValidationData(List certificates, List crlValues, List ocspValues, List otherValues, String uri, String id)
TimeStampValidationData property with the given list
of EncapsulatedX509Certificates, OtherCertificate list of
EncapsulatedCRLValues, list of EncapsulatedOCSPValues, list
of OtherValues and the specified id-attribute value.certificates - a list of EncapsulatedX509Certificates and
OtherCertificatescrlValues - a list of EncapsulatedCRLValuesocspValues - a list of EncapsulatedOCSPValuesotherValues - a list of OtherValuesuri - URI attribute valueid - the Id attribute valueTimeStampValidationData propertyNullPointerException - if certificates is nullIllegalArgumentException - if certificates is emptyClassCastException - if any certificates are not of type
EncapsulatedX509Certificate or OtherCertificatepublic abstract TimeStampValidationData newTimeStampValidationData(CertificateValues certificateValues, RevocationValues revocationValues, String uri, String id)
TimeStampValidationData property with the givencertificateValues - revocationValues - uri - URI attribute valueid - the Id attribute valueTimeStampValidationData propertypublic abstract CertificateValues newCertificateValues(List certificates, String id)
CertificateValues property with the given list of
EncapsulatedX509Certificates and OtherCertificate and the
specified id-attribute value.certificates - a list of EncapsulatedX509Certificates and
OtherCertificatesid - the id-attribute valueCertificateValues propertyNullPointerException - if certificates is nullIllegalArgumentException - if certificates is emptyClassCastException - if any certificates are not of type
EncapsulatedX509Certificate or OtherCertificatepublic abstract AttrAuthoritiesCertValues newAttrAuthoritiesCertValues(List certificates, String id)
AttrAuthoritiesCertValues property with the given
list of EncapsulatedX509Certificates and OtherCertificate
and the specified id-attribute value.certificates - a list of EncapsulatedX509Certificates and
OtherCertificatesid - the id-attribute valueAttrAuthoritiesCertValues propertyNullPointerException - if certificates is nullIllegalArgumentException - if certificates is emptyClassCastException - if any certificates are not of type
EncapsulatedX509Certificate or OtherCertificatepublic abstract EncapsulatedX509Certificate newEncapsulatedX509Certificate(X509Certificate x509Certificate, String id, String encoding)
EncapsulatedX509Certificate with the given X509
certificate, id-attribute value and encoding.x509Certificate - the X509 certificateid - the id-attribute valueencoding - the encodingEncapsulatedX509CertificateNullPointerException - if x509Certificate is nullpublic abstract OtherCertificate newOtherCerificate(List content)
OtherCertificate element with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)OtherCertificateClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract RevocationValues newRevocationValues(List crlValues, List ocspValues, List otherValues, String id)
RevocationValues property with the specified list of
EncapsulatedCRLValues, list of EncapsulatedOCSPValues, list
of OtherValues and id-attribute value.crlValues - a list of EncapsulatedCRLValuesocspValues - a list of EncapsulatedOCSPValuesotherValues - a list of OtherValuesid - the id-attribute valueRevocationValues propertyIllegalArgumentException - if crlValues, ocspValues and
otherValues are null or emptyClassCastException - if crlValues contains any elements not of type
EncapsulatedCRLValueClassCastException - if ocspValues contains any elements not of type
EncapsulatedOCSPValueClassCastException - if otherValues contains any elements not of type
OtherValuepublic abstract AttributeRevocationValues newAttributeRevocationValues(List crlValues, List ocspValues, List otherValues, String id)
AttributeRevocationValues property with the
specified list of EncapsulatedCRLValues, list of
EncapsulatedOCSPValues, list of OtherValues and
id-attribute value.crlValues - a list of EncapsulatedCRLValuesocspValues - a list of EncapsulatedOCSPValuesotherValues - a list of OtherValuesid - the id-attribute valueAttributeRevocationValues propertyIllegalArgumentException - if crlValues, ocspValues and
otherValues are null or emptyClassCastException - if crlValues contains any elements not of type
EncapsulatedCRLValueClassCastException - if ocspValues contains any elements not of type
EncapsulatedOCSPValueClassCastException - if otherValues contains any elements not of type
OtherValuenewRevocationValues(List, List, List, String)public abstract EncapsulatedCRLValue newEncapsulatedCRLValue(X509CRL x509crl, String id, String encoding)
EncapsulatedCRLValue with the given X509 CRL,
id-attribute value and encoding.x509crl - the X509 CRLid - the id-attribute valueencoding - the encodingEncapsulatedCRLValueNullPointerException - if x509crl is nullpublic abstract EncapsulatedOCSPValue newEncapsulatedOCSPValue(byte[] ocspResponse, String id, String encoding)
EncapsulatedOCSPValue with the given OCSP response,
id-attribute value and encoding.ocspResponse - the DER encoded OCSP responseid - the id-attribute valueencoding - the encodingEncapsulatedOCSPValueNullPointerException - if ocspResponse is nullIllegalArgumentException - if ocspResponse is not a valid DER encoded OCSP
response according to RFC 2560public abstract OtherValue newOtherValue(List content)
OtherValue element with the specified list of
XMLStructures.content - a list of XMLStructures (may be
null or empty)OtherValueClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract ArchiveTimeStamp newArchiveTimeStamp(List includes, CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
newArchiveTimeStamp(CanonicalizationMethod, String, String)
.ArchiveTimeStamp property with the specified list of
Includes, canonicalization method, id-attribute value
and id-attribute value of the time-stamp token.
Include elements:
Include element per each
ds:Reference present within the ds:SignedInfo
element. The URI attribute in each Include
element will reference one of these ds:Reference elements.
Their corresponding referencedData attribute MUST be present
and set to "true"; Include element whose URI attribute
references the ds:SignedInfo element; URI attribute references the
ds:SignatureValue element; URI attribute references the
ds:KeyInfo element if this property is present. URI attribute references the
SignatureTimeStamp element if this property is present.
Include element per each
CounterSignature property, when present. The URI
attribute of each Include element references one
CounterSignature element;URI attribute references the
CompleteCertificateRefs element if this property is present.
URI attribute references the
CompleteRevocationRefs element if this property is present.
URI attribute references the
AttributeCertificateRefs element if this property is present.
URI attribute references the
AttributeRevocationRefs element if this property is present.
URI attribute references the
CertificateValues element. This property MUST be added if it
is not already present;URI attribute references the
RevocationValues element. This property MUST be added if it is
not already present;Include element per each
SigAndRefsTimeStamp element if these elements are present. The
URI attribute in each Include element will
reference one SigAndRefsTimeStamp element;Include element per each
RefsOnlyTimeStamp element if these elements are present. The
URI attribute in each Include element will
reference one RefsOnlyTimeStamp element;Include element per each
ArchiveTimestamp element if these elements are present. The
URI attribute in each Include element will
reference one ArchiveTimestamp element;Include element per each present
ds:Object element in the signature that is not referenced by
any ds:Reference within ds:SignedInfo. The URI
attribute in each Include element will reference one
ds:Object element.includes - the list of Includes. If null, the implicit
mechanism is used.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenArchiveTimeStampClassCastException - if includes contains elements that are not of type
Includepublic abstract ArchiveTimeStamp newArchiveTimeStamp(CanonicalizationMethod canonicalizationMethod, String id, String tokenId)
ArchiveTimeStamp property with the specified
canonicalization method, id-attribute value and
id-attribute value of the time-stamp token.
ArchiveTimeStamp is built on the following data:
SigAndRefsTimeStamp and all the
unsigned properties covered by its time-stamp token have the same parent):
The implicit mechanism is used and the following data objects
are time-stamped:
ds:Reference elementsds:SignedInfo elementds:SignatureValue elementds:KeyInfo elementSignatureTimeStamp elementsCounterSignature elementsCompleteCertificateRefs or CompleteCertificateRefsV2 elementCompleteRevocationRefs elementAttributeCertificateRefs? element, if present or AttributeCertificateRefsV2? element, if presentAttributeRevocationRefs? element, if presentSigAndRefsTimeStamp elements or SigAndRefsTimeStampV2 elementsRefsOnlyTimeStamp elements or RefsOnlyTimeStampV2 elementsCertificateValues elementsRevocationValues elementsUnsignedProperties element.canonicalizationMethod - the canonicalization methodid - the id-attribute valuetokenId - the id-attribute value of the time-stamp tokenArchiveTimeStamppublic abstract DigestAlgAndValue newDigestAlgAndValue(DigestMethod digestMethod, byte[] digestValue)
DigestAlgAndValue element with the given digest
method and digest value.digestMethod - the digest methoddigestValue - the digest valueDigestAlgAndValue elementNullPointerException - if digestMethod or digestValue is
nullpublic abstract RecomputedDigestValue newRecomputedDigestValue(int order, byte[] digestValue)
RecomputedDigestValue with te given order and digest value.
order - The order number of the RecomputedDigestValue, i.e. the number of
the corresponding manifest reference in the signature.digestValue - The (recomputed) digest value. Must not be null.NullPointerException - if digestValue is nullpublic abstract RenewedDigests newRenewedDigests(DigestMethod digestMethod, List recomputedDigestValues, String id)
RenewedDigests with te given digest method, list of RecomputedDigestValues and id.
This method creates RenewedDigests that should be appended to the signature as they are.
Hence all the digest values must have already been recomputed (by the application). If the calculation of the
digest values should be performed internally use method newRenewedDigests(DigestMethod, String).
digestMethod - The DigestMethod that has been used for recomputing the (manifest) digest values.
Must not be null.recomputedDigestValues - A list of recomputed digest values.
Must not be null or empty.id - The name of the id attribute for the lt;xades:RenewedDigests> element.
Maybe null.NullPointerException - if digestMethod is nullpublic abstract RenewedDigests newRenewedDigests(DigestMethod digestMethod, String id)
RenewedDigests with te given digest method and id.
The digest values of all references to detatched data objects of all manifests
included in the signature will be recomputed when the RenewedDigests
will be appended
to the signature.
If you prefer to recompute the digest values yourself, use method newRenewedDigests(DigestMethod, List, String).
digestMethod - The DigestMethod to be used for recomputing the (manifest) digest values.
Must not be null.id - The name of the id attribute for the lt;xades:RenewedDigests> element.
Maybe null.NullPointerException - if digestMethod is nullpublic abstract UnsignedDataObjectProperty newUnsignedDataObjectProperty(List content)
UnsignedDataObjectProperty with the specified list
of XMLStructures.content - a list of XMLStructures (may be
null or empty)UnsignedDataObjectPropertyClassCastException - if content contains any entries that are not of type
XMLStructurepublic abstract QualifyingProperties newQualifyingProperties(SignedProperties signedProperties, String target, String id) throws NullPointerException
QualifyingProperties with the specified signed
properties, target-attribute value and id
-attribute value.signedProperties - the signed propertiestarget - the URI reference referencing the ds:Signature
qualified by this QualifyingPropertiesid - the id-attribute value (may be null)QualifyingPropertiesNullPointerException - if singedProperties or target is
nullpublic abstract QualifyingProperties newQualifyingProperties(SignedProperties signedProperties, UnsignedProperties unsignedProperties, String target, String id) throws NullPointerException
QualifyingProperties with the specified signed
properties, unsigned properties, target-attribute value and
id-attribute value.signedProperties - the signed propertiesunsignedProperties - the unsigned propertiestarget - the URI reference referencing the ds:Signature
qualified by this QualifyingPropertiesid - the id-attribute value (may be null)QualifyingPropertiesNullPointerException - if singedProperties, unsignedProperties
or target is nullpublic abstract SignedProperties newSignedProperties(SignedSignatureProperties signedSignatureProperties, SignedDataObjectProperties signedDataObjectProperties, String id)
SignedProperties with the specified signed signature
properties, signed data object properties and id-attribute
value.signedSignatureProperties - the signed signature properties (may be null)signedDataObjectProperties - the signed data object properties (may be null)id - the id-attribute (may be null)SignedProperties elementNullPointerException - if signedSignatureProperties and
signedDataObjectProperties are nullpublic abstract UnsignedProperties newUnsignedProperties(UnsignedSignatureProperties unsignedSignatureProperties, UnsignedDataObjectProperties unsignedDataObjectProperties, String id)
UnsignedProperties with the specified unsigned
signature properties, unsigned data object properties and id
-attribute value.unsignedSignatureProperties - the unsigned signature properties (may be null)unsignedDataObjectProperties - the unsigned data object properties (may be null)id - the id-attribute value (may be null)UnsignedDataObjectProperties element if
unsignedSignaturePorperties and
unsignedDataObjectProperties are nullpublic abstract SignedSignatureProperties newSignedSignatureProperties(SigningTime signingTime, SigningCertificate signingCertificate, SignaturePolicyIdentifier signaturePolicyIdentifier, SignatureProductionPlace signatureProductionPlace, SignerRole signerRole, String id)
ETSI EN 319 132-1.
Use newSignedSignatureProperties(
SigningTime, SigningCertificateV2, SignaturePolicyIdentifier, SignatureProductionPlaceV2, SignerRoleV2, String) instead.SignedSignatureProperties with the specified signing
time, signing certificate, signature policy identifier, signature
production place, signer role and id-attribute value.signingTime - the signing time (may be null)signingCertificate - the signing certificate (may be null)signaturePolicyIdentifier - the signature policy identifier (may be null)signatureProductionPlace - the signature production place (may be null)signerRole - the signer role (may be null)id - the id-attribute value (may be null)SignedSignaturePropertiesNullPointerException - if all of the given properties (SigningTime,
SigningCertificate,
SignaturePolicyIdentifier,
SignatureProductionPlace,SignerRole) are
nullpublic abstract SignedSignatureProperties newSignedSignatureProperties(SigningTime signingTime, SigningCertificateV2 signingCertificate, SignaturePolicyIdentifier signaturePolicyIdentifier, SignatureProductionPlaceV2 signatureProductionPlace, SignerRoleV2 signerRole, String id)
SignedSignatureProperties with the specified signing
time, signing certificate, signature policy identifier, signature
production place, signer role and id-attribute value.signingTime - the signing time (may be null)signingCertificate - the signing certificate (may be null)signaturePolicyIdentifier - the signature policy identifier (may be null)signatureProductionPlace - the signature production place (may be null)signerRole - the signer role (may be null)id - the id-attribute value (may be null)SignedSignaturePropertiesNullPointerException - if all of the given properties (SigningTime,
SigningCertificate,
SignaturePolicyIdentifier,
SignatureProductionPlace,SignerRole) are
nullpublic abstract SignedDataObjectProperties newSignedDataObjectProperties(List dataObjectFormats, List commitmentTypeIndications, List allDataObjectsTimeStamps, List individualDataObjectsTimeStamps, String id)
SignedDataObjectProperties containing the specified
list of DataObjectFormats, list of CommitmentTypeIndication
s, list of AllDataObjectsTimeStamps, list of
IndividualDataObjectsTimeStamps and id-attribute
value.dataObjectFormats - a list of DataObjectFormats. The list defensively copied to
protect against subsequent modification. May be null or
empty.commitmentTypeIndications - a list of CommitmentTypeIndications. The list defensively
copied to protect against subsequent modification. May be
null or empty.allDataObjectsTimeStamps - a list of AllDataObjectsTimeStamps. The list defensively
copied to protect against subsequent modification. May be
null or empty.individualDataObjectsTimeStamps - a list of IndividualDataObjectsTimeStamps. The list
defensively copied to protect against subsequent modification. May
be null or empty.id - the id-attribute value (may be null)SignedDataObjectPropertiesIllegalArgumentException - if all the given properties (dataObjectFormats,
commitmentTypeIndications,
allDataObjectsTimeStamps and
individualDataObjectsTimeStamps) are null
or empty.ClassCastException - if dataObjectFormats contains any elements not of type
DataObjectFormatClassCastException - if commitmentTypeIndications contains any elements not
of type CommitmentTypeIndicationClassCastException - if allDataObjectsTimeStamps contains any elements not
of type AllDataObjectsTimeStampClassCastException - if individualDataObjectsTimeStamps contains any
elements not of type IndividualDataObjectsTimeStamppublic abstract UnsignedSignatureProperties newUnsignedSignatureProperties(List counterSignatures, List signatureTimeStamps, CompleteCertificateRefs certificateRefs, CompleteRevocationRefs completeRevocationRefs, AttributeCertificateRefs attributeCertificateRefs, AttributeRevocationRefs attributeRevocationRefs, List refsTimeStamps, CertificateValues certificateValues, RevocationValues revocationValues, AttrAuthoritiesCertValues attrCertificateValues, AttributeRevocationValues attributeRevocationValues, List archiveTimeStamps, String id)
ETSI EN 319 132-1.
Use newUnsignedSignatureProperties(
List, List, CompleteCertificateRefsV2, CompleteRevocationRefs, AttributeCertificateRefsV2,
AttributeRevocationRefs, List, CertificateValues, RevocationValues, AttrAuthoritiesCertValues,
AttributeRevocationValues, List, SignaturePolicyStore, String) instead.UnsignedSignatureProperties element with the given
list of CounterSignatures, list of SignatureTimeStamps,
complete certificate references, complete revocation references, attribute
certificate references, attribute revocation references, list of
SigAndRefsTimeStamps and RefsOnlyTimeStamps, certificate
values, revocation values and id-attribute value.counterSignatures - a list of CounterSignatures (may be null but
never empty)signatureTimeStamps - a list of SignatureTimeStamps (may be null but
never empty)certificateRefs - the complete certificate references (may be null)completeRevocationRefs - the complete revocation references (may be null)attributeCertificateRefs - the attribute certificate references (may be null)attributeRevocationRefs - the attribute revocation references (may be null)refsTimeStamps - a list of SigAndRefsTimeStamps and RefsOnlyTimeStamp
s (may be null but never empty)certificateValues - the certificate values (may be null)revocationValues - the revocation values (may be null)attrCertificateValues - the attrCertificateValues values (may be null)attributeRevocationValues - the attributeRevocationValues values (may be null)archiveTimeStamps - a list of ArchiveTimeStamps (may be null but
never empty)id - the id-attribute value (may be null)UnsignedSignaturePorperties elementNullPointerException - if all parameters are nullIllegalArgumentException - if one of the lists is emptyClassCastException - if any of the counterSignatures elements is not of
type CounterSignatureClassCastException - if any of the signatureTimeStamps elements is not of
type SignatureTimeStampClassCastException - if any of the refsTimeStamps elements is not of type
SigAndRefsTimeStamp or RefsOnlyTimeStampClassCastException - if any of the archiveTimeStamps elements is not of
type ArchiveTimeStamppublic abstract UnsignedSignatureProperties newUnsignedSignatureProperties(List counterSignatures, List signatureTimeStamps, CompleteCertificateRefsV2 certificateRefs, CompleteRevocationRefs completeRevocationRefs, AttributeCertificateRefsV2 attributeCertificateRefs, AttributeRevocationRefs attributeRevocationRefs, List refsTimeStamps, CertificateValues certificateValues, RevocationValues revocationValues, AttrAuthoritiesCertValues attrCertificateValues, AttributeRevocationValues attributeRevocationValues, List archiveTimeStamps, SignaturePolicyStore signaturePolicyStore, String id)
UnsignedSignatureProperties element with the given
list of CounterSignatures, list of SignatureTimeStamps,
complete certificate references, complete revocation references, attribute
certificate references, attribute revocation references, list of
SigAndRefsTimeStamps and RefsOnlyTimeStamps, certificate
values, revocation values and id-attribute value.counterSignatures - a list of CounterSignatures (may be null but
never empty)signatureTimeStamps - a list of SignatureTimeStamps (may be null but
never empty)certificateRefs - the complete certificate references (may be null)completeRevocationRefs - the complete revocation references (may be null)attributeCertificateRefs - the attribute certificate references (may be null)attributeRevocationRefs - the attribute revocation references (may be null)refsTimeStamps - a list of SigAndRefsTimeStamps and RefsOnlyTimeStamp
s (may be null but never empty)certificateValues - the certificate values (may be null)revocationValues - the revocation values (may be null)attrCertificateValues - the attrCertificateValues values (may be null)attributeRevocationValues - the attributeRevocationValues values (may be null)archiveTimeStamps - a list of ArchiveTimeStamps (may be null but
never empty)signaturePolicyStore - a SignaturePolicyStore (may be null)id - the id-attribute value (may be null)UnsignedSignaturePorperties elementNullPointerException - if all parameters are nullIllegalArgumentException - if one of the lists is emptyClassCastException - if any of the counterSignatures elements is not of
type CounterSignatureClassCastException - if any of the signatureTimeStamps elements is not of
type SignatureTimeStampClassCastException - if any of the refsTimeStamps elements is not of type
SigAndRefsTimeStamp or RefsOnlyTimeStampClassCastException - if any of the archiveTimeStamps elements is not of
type ArchiveTimeStamppublic abstract UnsignedSignatureProperties newUnsignedSignatureProperties(List counterSignatures, String id)
UnsignedSignatureProperties element with the given
list of CounterSignatures and id-attribute value.counterSignatures - a list of CounterSignatures (may be null but
never empty)id - the id-attribute value (may be null)UnsignedSignaturePorperties elementNullPointerException - if counterSignatures is nullIllegalArgumentException - if counterSignatures is emptyClassCastException - if any of the counterSignatures elements is not of
type CounterSignaturepublic abstract UnsignedDataObjectProperties newUnsignedDataObjectProperties(List unsignedDataObjectProperties, String id)
UnsignedDataObjectProperties element with the given
list of UnsignedDataObjectProperty elements.unsignedDataObjectProperties - a list of UnsignedDataObjectPropertysid - the id-attribute valueUnsignedDataObjectProperties elementNullPointerException - if unsignedDataObjectProperties is nullIllegalArgumentException - if unsignedDataObjectProperties is emptyClassCastException - if unsignedDataObjectProperties contains any elements
not of type UnsignedDataObjectPropertypublic abstract QualifyingPropertiesReference newQualifyingPropertiesReference(String uri, List transforms, String id)
QualifyingPropertiesReference element with the given
URI, list of Transforms and id
-attribute value.uri - the URI referencetransforms - a list of Transforms (may be
null)id - the id-attribute valueQualifyingPropertiesReference© 2002-2005 IAIK, © 2004, 2006 - 2017 Stiftung SIC