Uses of Interface
se.swedenconnect.security.credential.PkiCredential
Packages that use PkiCredential
Package
Description
Generic support for X.509 credentials.
Support for credential "bundles".
Support for credential containers.
Spring factory beans for creating credential objects.
Nimbus add-ons for credentials support.
Credentials defined for use with OpenSAML/Shibboleth.
Interfaces and classes for handling PKCS#11 providers.
Spring support for configuring credentials.
Spring factory classes for credentials.
-
Uses of PkiCredential in se.swedenconnect.security.credential
Subinterfaces of PkiCredential in se.swedenconnect.security.credentialModifier and TypeInterfaceDescriptioninterfaceAn interface for credentials are "testable" and "reloadable".Classes in se.swedenconnect.security.credential that implement PkiCredentialModifier and TypeClassDescriptionclassAbstract base class for classes implementing thePkiCredentialinterface.classAbstract base class for reloadable credentials.classA basic implementation of thePkiCredentialinterface.classFields in se.swedenconnect.security.credential with type parameters of type PkiCredentialModifier and TypeFieldDescriptionstatic Predicate<PkiCredential> PkiCredentialCollection.encryptionUsagePredicatethat checks if the credential has thePkiCredential.Metadata.USAGE_ENCRYPTIONusage.static Predicate<PkiCredential> PkiCredentialCollection.forFutureSigningPredicatethat tells if a credential is intended to be the signing credential in the future.static Predicate<PkiCredential> PkiCredentialCollection.isActivePredicatethat checks if the credential is "active", meaning that the current time is within thePkiCredential.Metadata.ACTIVE_FROM_PROPERTYandPkiCredential.Metadata.ACTIVE_TO_PROPERTYproperties.static Predicate<PkiCredential> PkiCredentialCollection.isEcPredicatethat tells whether a credential holds an EC key.static Predicate<PkiCredential> PkiCredentialCollection.isHardwareCredentialPredicatethat tells whether a credential is a hardware credential, i.e., stored on an HSM.static Predicate<PkiCredential> PkiCredentialCollection.isNotYetActivePredicatethat tells whether the credential is "not yet active", meaning that thePkiCredential.Metadata.ACTIVE_FROM_PROPERTYsetting is after the current time.static Predicate<PkiCredential> PkiCredentialCollection.isRsaPredicatethat tells whether a credential holds an RSA key.static Predicate<PkiCredential> PkiCredentialCollection.noLongerActivePredicatethat checks if the credential is no longer active, meaning that aPkiCredential.Metadata.ACTIVE_TO_PROPERTYsetting is before the current time.static Predicate<PkiCredential> PkiCredentialCollection.signatureUsagePredicatethat checks if the credential has thePkiCredential.Metadata.USAGE_SIGNINGusage.static Predicate<PkiCredential> PkiCredentialCollection.unspecifiedUsagePredicatethat checks if the credential does not have a specified usage.Methods in se.swedenconnect.security.credential that return PkiCredentialModifier and TypeMethodDescriptionPkiCredentialCollection.getCredential(Predicate<PkiCredential> predicate) Returns the first credential of the collection whose properties meet the suppliedPredicate.PkiCredentialCollection.getCredentialForSigning()Method that finds a credential suitable for signing.Methods in se.swedenconnect.security.credential that return types with arguments of type PkiCredentialModifier and TypeMethodDescriptionPkiCredentialCollection.getCredentials()Gets an unmodifiable list of all credentials held in the collection.PkiCredentialCollection.getCredentials(Predicate<PkiCredential> predicate) Returns all credentials whose properties meet the suppliedPredicate.PkiCredentialCollection.getCredentialsForEncryption()Method that finds credentials suitable for encryption (and decryption).static Predicate<PkiCredential> Method that returns aPredicatethat checks if a credential has a given key ID.PkiCredentialCollection.removeCredentials(Predicate<PkiCredential> predicate) Removes all credentials matching the suppliedPredicate.static Predicate<PkiCredential> Method that returns aPredicatethat checks if a credential has a given usage.Methods in se.swedenconnect.security.credential with parameters of type PkiCredentialModifier and TypeMethodDescriptionvoidPkiCredentialCollection.addCredential(PkiCredential credential) Adds a credential to the collection.Method parameters in se.swedenconnect.security.credential with type arguments of type PkiCredentialModifier and TypeMethodDescriptionPkiCredentialCollection.getCredential(Predicate<PkiCredential> predicate) Returns the first credential of the collection whose properties meet the suppliedPredicate.PkiCredentialCollection.getCredentials(Predicate<PkiCredential> predicate) Returns all credentials whose properties meet the suppliedPredicate.PkiCredentialCollection.removeCredentials(Predicate<PkiCredential> predicate) Removes all credentials matching the suppliedPredicate.default <T> TPkiCredential.transform(Function<PkiCredential, T> transformFunction) Transforms the credential to another format, for example an JWK or aKeyPair.Constructor parameters in se.swedenconnect.security.credential with type arguments of type PkiCredentialModifierConstructorDescriptionPkiCredentialCollection(List<PkiCredential> credentials) Constructor. -
Uses of PkiCredential in se.swedenconnect.security.credential.bundle
Methods in se.swedenconnect.security.credential.bundle that return PkiCredentialModifier and TypeMethodDescriptionCredentialBundles.getCredential(String id) Gets thePkiCredentialregistered under the given ID.DefaultCredentialBundleRegistry.getCredential(String id) Gets thePkiCredentialregistered under the given ID.Methods in se.swedenconnect.security.credential.bundle that return types with arguments of type PkiCredentialModifier and TypeMethodDescriptiondefault Function<String, PkiCredential> CredentialBundles.getCredentialProvider()Gets a function that provides a credential based on an identifier.Methods in se.swedenconnect.security.credential.bundle with parameters of type PkiCredentialModifier and TypeMethodDescriptionvoidCredentialBundleRegistry.registerCredential(String id, PkiCredential credential) Registers a credential.voidDefaultCredentialBundleRegistry.registerCredential(String id, PkiCredential credential) Registers a credential. -
Uses of PkiCredential in se.swedenconnect.security.credential.container
Classes in se.swedenconnect.security.credential.container that implement PkiCredentialModifier and TypeClassDescriptionclassA managedPkiCredentialis used when aPkiCredentialContainerreturns credentials.Methods in se.swedenconnect.security.credential.container that return PkiCredentialModifier and TypeMethodDescriptionprotected abstract PkiCredentialAbstractKeyStorePkiCredentialContainer.getCredentialFromAlias(String alias) Gets the credential for a specific alias from the credential container.HsmPkiCredentialContainer.getCredentialFromAlias(String alias) Gets the credential for a specific alias from the credential container.SoftPkiCredentialContainer.getCredentialFromAlias(String alias) Gets the credential for a specific alias from the credential container.Constructors in se.swedenconnect.security.credential.container with parameters of type PkiCredentialModifierConstructorDescriptionManagedPkiCredential(PkiCredential managedCredential, Consumer<PkiCredential> destroyCallback, Consumer<X509Certificate[]> updateCertificateCallback) Constructor setting the credential to be managed and callbacks to be used by the underlying container.Constructor parameters in se.swedenconnect.security.credential.container with type arguments of type PkiCredentialModifierConstructorDescriptionManagedPkiCredential(PkiCredential managedCredential, Consumer<PkiCredential> destroyCallback, Consumer<X509Certificate[]> updateCertificateCallback) Constructor setting the credential to be managed and callbacks to be used by the underlying container. -
Uses of PkiCredential in se.swedenconnect.security.credential.factory
Methods in se.swedenconnect.security.credential.factory that return PkiCredentialModifier and TypeMethodDescriptionPkiCredentialFactory.createCredential(PemCredentialConfiguration configuration) Creates aPkiCredentialbased on aPemCredentialConfiguration.static PkiCredentialPkiCredentialFactory.createCredential(PemCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader) Creates aPkiCredentialbased on aPemCredentialConfiguration.PkiCredentialFactory.createCredential(PkiCredentialConfiguration configuration) Creates aPkiCredentialbased on the suppliedPkiCredentialConfiguration.static PkiCredentialPkiCredentialFactory.createCredential(PkiCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredentialbased on the suppliedPkiCredentialConfiguration.PkiCredentialFactory.createCredential(StoreCredentialConfiguration configuration) Creates aPkiCredentialbased on aStoreCredentialConfiguration.static PkiCredentialPkiCredentialFactory.createCredential(StoreCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredentialbased on aStoreCredentialConfiguration.protected PkiCredentialPkiCredentialFactoryBean.createInstance()Deprecated, for removal: This API element is subject to removal in a future version.Method parameters in se.swedenconnect.security.credential.factory with type arguments of type PkiCredentialModifier and TypeMethodDescriptionstatic PkiCredentialPkiCredentialFactory.createCredential(PkiCredentialConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredentialbased on the suppliedPkiCredentialConfiguration.static PkiCredentialCollectionPkiCredentialFactory.createCredentialCollection(PkiCredentialCollectionConfiguration configuration, ConfigurationResourceLoader resourceLoader, Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, Function<String, KeyStoreReloader> keyStoreReloaderProvider) Creates aPkiCredentialCollectionbased on the suppliedPkiCredentialCollectionConfiguration.Constructor parameters in se.swedenconnect.security.credential.factory with type arguments of type PkiCredentialModifierConstructorDescriptionPkiCredentialFactory(Function<String, PkiCredential> credentialProvider, Function<String, KeyStore> keyStoreProvider, ConfigurationResourceLoader resourceLoader, boolean useCache) Constructor assigning theCredentialBundles, credential and keystore providers. -
Uses of PkiCredential in se.swedenconnect.security.credential.nimbus
Fields in se.swedenconnect.security.credential.nimbus with type parameters of type PkiCredentialModifier and TypeFieldDescriptionstatic final Function<PkiCredential, Algorithm> JwkTransformerFunction.defaultAlgorithmFunctionDefault algorithm for getting the JOSE algorithm.static final Function<PkiCredential, Set<KeyOperation>> JwkTransformerFunction.defaultKeyOpsFunctionDefault function for getting the key operation property.static final Function<PkiCredential, KeyUse> JwkTransformerFunction.defaultKeyUseFunctionDefault function for getting the key use.Methods in se.swedenconnect.security.credential.nimbus with parameters of type PkiCredentialModifier and TypeMethodDescriptionJwkTransformerFunction.apply(PkiCredential credential) Transforms the suppliedPkiCredentialinto anJWK.JwkTransformerFunction.DefaultKeyIdFunction.apply(PkiCredential credential) If the credential metadata contains akey-id, this is used, otherwise the function attempts to calculate the RFC 7638 thumbprint, and finally the serial number of the certificate is used for key id-calculation.Method parameters in se.swedenconnect.security.credential.nimbus with type arguments of type PkiCredentialModifier and TypeMethodDescriptionvoidJwkTransformerFunction.setAlgorithmFunction(Function<PkiCredential, Algorithm> algorithmFunction) Deprecated, for removal: This API element is subject to removal in a future version.voidJwkTransformerFunction.setKeyIdFunction(Function<PkiCredential, String> keyIdFunction) Deprecated, for removal: This API element is subject to removal in a future version.voidJwkTransformerFunction.setKeyOpsFunction(Function<PkiCredential, Set<KeyOperation>> keyOpsFunction) Deprecated, for removal: This API element is subject to removal in a future version.voidJwkTransformerFunction.setKeyUseFunction(Function<PkiCredential, KeyUse> keyUseFunction) Deprecated, for removal: This API element is subject to removal in a future version.JwkTransformerFunction.withAlgorithmFunction(Function<PkiCredential, Algorithm> algorithmFunction) Customizes this function with a function that returns the JOSE algorithm.JwkTransformerFunction.withKeyIdFunction(Function<PkiCredential, String> keyIdFunction) Customizes the function with a custom function for calculating the key ID property (JWKkidproperty).JwkTransformerFunction.withKeyOpsFunction(Function<PkiCredential, Set<KeyOperation>> keyOpsFunction) Customizes this function with a function that returns a set ofKeyOperations.JwkTransformerFunction.withKeyUseFunction(Function<PkiCredential, KeyUse> keyUseFunction) Customizes this function with a function for getting the key use property (JWKuseproperty). -
Uses of PkiCredential in se.swedenconnect.security.credential.opensaml
Fields in se.swedenconnect.security.credential.opensaml with type parameters of type PkiCredentialModifier and TypeFieldDescriptionstatic final BiFunction<PkiCredential, UsageType, List<EncryptionMethod>> KeyDescriptorTransformerFunction.defaultEncryptionMethodsFunctionThe default function for gettingmd:EncryptionMethodobjects to be added to themd:KeyDescriptor.static final Function<PkiCredential, String> OpenSamlCredentialTransformerFunction.defaultEntityIdFunctionAccesses theentity-idmetadata property from the supplied credential.static final Function<PkiCredential, String> KeyDescriptorTransformerFunction.defaultKeyNameFunctionThe default function for calculating theds:keyName.static final Function<PkiCredential, UsageType> KeyDescriptorTransformerFunction.defaultUsageTypeFunctionThe default function for getting the usage type (useattribute).static final Function<PkiCredential, UsageType> OpenSamlCredentialTransformerFunction.defaultUsageTypeFunctionDetermines the credential usage.Methods in se.swedenconnect.security.credential.opensaml with parameters of type PkiCredentialModifier and TypeMethodDescriptionKeyDescriptorTransformerFunction.apply(PkiCredential credential) Given the suppliedPkiCredential, the method creates an OpenSAMLKeyDescriptorfor inclusion in anEntityDescriptor.OpenSamlCredentialTransformerFunction.apply(PkiCredential credential) Transforms the suppliedPkiCredentialinto anX509Credential.Method parameters in se.swedenconnect.security.credential.opensaml with type arguments of type PkiCredentialModifier and TypeMethodDescriptionvoidOpenSamlCredentialTransformerFunction.setEntityIdFunction(Function<PkiCredential, String> entityIdFunction) Deprecated, for removal: This API element is subject to removal in a future version.KeyDescriptorTransformerFunction.withEncryptionMethodsFunction(BiFunction<PkiCredential, UsageType, List<EncryptionMethod>> encryptionMethodsFunction) Customizes this function with a function that returns a list ofmd:EncryptionMethodelements for inclusion in themd:KeyDescriptor.OpenSamlCredentialTransformerFunction.withEntityIdFunction(Function<PkiCredential, String> entityIdFunction) Customizes this function with a function that gets the entityID for the credential.KeyDescriptorTransformerFunction.withKeyNameFunction(Function<PkiCredential, String> keyNameFunction) Customizes this function with a function that calculates theds:KeyName.KeyDescriptorTransformerFunction.withUsageTypeFunction(Function<PkiCredential, UsageType> usageTypeFunction) Customizes this function with a function that gets theuseattribute.OpenSamlCredentialTransformerFunction.withUsageTypeFunction(Function<PkiCredential, UsageType> usageTypeFunction) Customizes this function with a function the gets the credential usage type.Constructors in se.swedenconnect.security.credential.opensaml with parameters of type PkiCredentialModifierConstructorDescriptionOpenSamlCredential(PkiCredential credential) Constructor setting up the OpenSAML credential by assigning aPkiCredentialinstance. -
Uses of PkiCredential in se.swedenconnect.security.credential.pkcs11
Classes in se.swedenconnect.security.credential.pkcs11 that implement PkiCredentialModifier and TypeClassDescriptionclassA PKCS#11 credential implementation of thePkiCredentialandReloadablePkiCredentialinterfaces. -
Uses of PkiCredential in se.swedenconnect.security.credential.spring.config
Methods in se.swedenconnect.security.credential.spring.config that return PkiCredentialModifier and TypeMethodDescriptionPkiCredentialReference.get()Resolves a reference to aPkiCredentialusing theCredentialBundlesbean. -
Uses of PkiCredential in se.swedenconnect.security.credential.spring.factory
Methods in se.swedenconnect.security.credential.spring.factory that return PkiCredentialModifier and TypeMethodDescriptionprotected PkiCredentialPkiCredentialFactoryBean.createInstance()Method parameters in se.swedenconnect.security.credential.spring.factory with type arguments of type PkiCredentialModifier and TypeMethodDescriptionvoidPkiCredentialFactoryBean.setCredentialProvider(Function<String, PkiCredential> credentialProvider) If a configuration is used that has a credential reference, a credential provider is needed.
JwkTransformerFunction.withAlgorithmFunction(Function)instead