eidprofile.java

一套JAVA的CA证书签发系统.

/*************************************************************************
 *                                                                       *
 *  EJBCA: The OpenSource Certificate Authority                          *
 *                                                                       *
 *  This software is free software; you can redistribute it and/or       *
 *  modify it under the terms of the GNU Lesser General Public           *
 *  License as published by the Free Software Foundation; either         *
 *  version 2.1 of the License, or any later version.                    *
 *                                                                       *
 *  See terms of license at gnu.org.                                     *
 *                                                                       *
 *************************************************************************/
 
package se.anatom.ejbca.hardtoken.hardtokenprofiles;

import java.util.Collection;
import java.util.Iterator;
import java.util.List;



/**
 * EIDProfile is a basic class that should be inherited by all types
 * of eidprofiles in the system.
 *  
 *
 * @version $Id: EIDProfile.java,v 1.2 2004/04/16 07:39:00 anatom Exp $
 */
public abstract class EIDProfile extends HardTokenProfileWithVisualLayout {
	
	public static final String KEYTYPE_RSA = "RSA";
	
	// Protected Constants
	protected static final String CERTIFICATEPROFILEID           = "certificateprofileid";
	protected static final String CAID                           = "caid";	
	protected static final String ISKEYRECOVERABLE               = "iskeyrecoverable";
	protected static final String MINIMUMKEYLENGTH               = "minimunkeylength";
	protected static final String KEYTYPES                       = "keytypes";


			
    // Default Values
    public EIDProfile() {
      super();
            
    }

    // Public Methods mostly used by PrimeCard
    /**
     * Indicates which certificate profileid that should be requested when
     * generating certificate of given certusage.
     * 
     * @param certusage should be one of the CERTUSAGE_ constants.
     * @return The certificate profile id that should be used.
     */
    public int getCertificateProfileId(int certusage){return ((Integer) ((List) data.get(CERTIFICATEPROFILEID)).get(certusage)).intValue();}


	/**
	 * Indicates which ca id that should be requested when
	 * generating certificate of given certusage.
	 * 
	 * RESERVED FOR FUTURE USE
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The caid that should be used.
	 */
	public int getCAId (int certusage){return ((Integer) ((List) data.get(CAID)).get(certusage)).intValue();}


	/**
	 * Indicates if a keys used for the given certusage should be saved to database.
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return true if the keys used for the certusage should be saved to database.
	 */
	public boolean getIsKeyRecoverable (int certusage){return ((Boolean) ((List) data.get(ISKEYRECOVERABLE)).get(certusage)).booleanValue();}

	/**
	 * Gives the minimum key length allowed. 
	 * Generally will the tokens maximum kapacity of key be generated
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The caid that should be used.
	 */
	public int getMinimumKeyLength (int certusage){return ((Integer) ((List) data.get(MINIMUMKEYLENGTH)).get(certusage)).intValue(); }

	/**
	 * Indicates which type of key that should be generated for the certusage.
	 * 
	 * RESERVED FOR FUTURE USE
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The keytype that should be generated, one of the KEYTYPE_ Constants
	 */
	public String getKeyType (int certusage){return ((String) ((List) data.get(KEYTYPES)).get(certusage)); }

	// Public Methods used By EJBCA

	/**
	 * See above
	 */
	public void setCertificateProfileId(int certusage, int certprofileid){
	  List list = (List) data.get(CERTIFICATEPROFILEID);	  
	  list.set(certusage, new Integer(certprofileid));
	  data.put(CERTIFICATEPROFILEID, list);
	}

	/**
	 * See above
	 */
	public void setCAId (int certusage, int caid){
      List list = (List) data.get(CAID);	  
	  list.set(certusage, new Integer(caid));
	  data.put(CAID, list);		
	}

	/**
	 * See above
	 */
	public void setIsKeyRecoverable (int certusage, boolean iskeyrecoverable){		
		List list = (List) data.get(ISKEYRECOVERABLE);	  
		list.set(certusage, new Boolean(iskeyrecoverable));
		data.put(ISKEYRECOVERABLE, list);		
	}

	/**
	 * See above
	 */
	public void setMinimumKeyLength (int certusage, int minimumkeylength){		
		List list = (List) data.get(MINIMUMKEYLENGTH);	  
		list.set(certusage, new Integer(minimumkeylength));
		data.put(MINIMUMKEYLENGTH, list);				 
	}

	/**
	 * See above
	 */
	public void setKeyType (int certusage, String keytype){
	  List list = (List) data.get(KEYTYPES);	  
	  list.set(certusage, keytype);
	  data.put(KEYTYPES, list);				 
	}
	
	public Collection getAllCertificateProfileIds(){
	  return (Collection) data.get(CERTIFICATEPROFILEID);	
	}
	
	public abstract int[] getAvailableMinimumKeyLengths();
	  		      
    public void upgrade(){
      // Perform upgrade functionality 
      super.upgrade(); 
    }
    
    // Protected methods
    public boolean isTokenSupported(String[][] supportedcards, String tokenidentificationstring){
      boolean returnval = true;	
      Iterator iter = ((List) data.get(MINIMUMKEYLENGTH)).iterator();
	  int[] availablekeylengths = getAvailableMinimumKeyLengths();
	  
      while(iter.hasNext()){
      	int index = -1;
      	int keylength = ((Integer) iter.next()).intValue();
        for(int i=0;i<availablekeylengths.length;i++){
		  if(availablekeylengths[i] == keylength){
		  	index=i;
		  	break;   		 	
		  }
        }        
        returnval = returnval && super.isTokenSupported(supportedcards[index], tokenidentificationstring);        
      }
    	    	
      return returnval;	 
    }


}