eidprofile.java

JAVA做的J2EE下CA认证系统 基于EJB开发

/*************************************************************************
 *                                                                       *
 *  EJBCA: The OpenSource Certificate Authority                          *
 *                                                                       *
 *  This software is free software; you can redistribute it and/or       *
 *  modify it under the terms of the GNU Lesser General Public           *
 *  License as published by the Free Software Foundation; either         *
 *  version 2.1 of the License, or any later version.                    *
 *                                                                       *
 *  See terms of license at gnu.org.                                     *
 *                                                                       *
 *************************************************************************/
 
package se.anatom.ejbca.hardtoken.hardtokenprofiles;

import java.io.ObjectInputStream;
import java.io.ObjectOutputStream;
import java.util.ArrayList;
import java.util.Collection;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;

import javax.ejb.EJBException;

import se.anatom.ejbca.SecConst;
import se.anatom.ejbca.ca.caadmin.CAInfo;



/**
 * EIDProfile is a basic class that should be inherited by all types
 * of eidprofiles in the system.
 *  
 *
 * @version $Id: EIDProfile.java,v 1.6.2.2 2005/11/17 20:41:41 herrvendil Exp $
 */
public abstract class EIDProfile extends HardTokenProfileWithAdressLabel {
	
	public static final String KEYTYPE_RSA = "RSA";
	
	public static final int CAID_USEUSERDEFINED = SecConst.CAID_USEUSERDEFINED;
	
	// Protected Constants
	protected static final String CERTIFICATEPROFILEID           = "certificateprofileid";
	protected static final String CAID                           = "caid";	
	protected static final String ISKEYRECOVERABLE               = "iskeyrecoverable";
	protected static final String REUSEOLDCERTIFICATE            = "reuseoldcertificate";
	protected static final String MINIMUMKEYLENGTH               = "minimunkeylength";
	protected static final String KEYTYPES                       = "keytypes";

  
			
    // Default Values
    public EIDProfile() {
      super();
            
    }

    // Public Methods mostly used by PrimeCard
    /**
     * Indicates which certificate profileid that should be requested when
     * generating certificate of given certusage.
     * 
     * @param certusage should be one of the CERTUSAGE_ constants.
     * @return The certificate profile id that should be used.
     */
    public int getCertificateProfileId(int certusage){return ((Integer) ((List) data.get(CERTIFICATEPROFILEID)).get(certusage)).intValue();}


	/**
	 * Indicates which ca id that should be requested when
	 * generating certificate of given certusage.
	 * 
	 * RESERVED FOR FUTURE USE
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The caid that should be used.
	 */
	public int getCAId (int certusage){return ((Integer) ((List) data.get(CAID)).get(certusage)).intValue();}


	/**
	 * Indicates if a keys used for the given certusage should be saved to database.
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return true if the keys used for the certusage should be saved to database.
	 */
	public boolean getIsKeyRecoverable (int certusage){return ((Boolean) ((List) data.get(ISKEYRECOVERABLE)).get(certusage)).booleanValue();}

	/**
	 * Indicates if the certificate should be reused when recovering a token. This
	 * since some application requires the same certificate when decrypting data.
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return true if the certificate should bereused
	 */
	public boolean getReuseOldCertificate (int certusage){return ((Boolean) ((List) data.get(REUSEOLDCERTIFICATE)).get(certusage)).booleanValue();}
	
	/**
	 * Gives the minimum key length allowed. 
	 * Generally will the tokens maximum kapacity of key be generated
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The caid that should be used.
	 */
	public int getMinimumKeyLength (int certusage){return ((Integer) ((List) data.get(MINIMUMKEYLENGTH)).get(certusage)).intValue(); }

	/**
	 * Indicates which type of key that should be generated for the certusage.
	 * 
	 * RESERVED FOR FUTURE USE
	 * 
	 * @param certusage should be one of the CERTUSAGE_ constants.
	 * @return The keytype that should be generated, one of the KEYTYPE_ Constants
	 */
	public String getKeyType (int certusage){return ((String) ((List) data.get(KEYTYPES)).get(certusage)); }

	// Public Methods used By EJBCA

	/**
	 * See above
	 */
	public void setCertificateProfileId(int certusage, int certprofileid){
	  List list = (List) data.get(CERTIFICATEPROFILEID);	  
	  list.set(certusage, new Integer(certprofileid));
	  data.put(CERTIFICATEPROFILEID, list);
	}

	/**
	 * See above
	 */
	public void setCAId (int certusage, int caid){
      List list = (List) data.get(CAID);	  
	  list.set(certusage, new Integer(caid));
	  data.put(CAID, list);		
	}

	/**
	 * See above
	 */
	public void setIsKeyRecoverable (int certusage, boolean iskeyrecoverable){		
		List list = (List) data.get(ISKEYRECOVERABLE);	  
		list.set(certusage, Boolean.valueOf(iskeyrecoverable));
		data.put(ISKEYRECOVERABLE, list);		
	}
	
	/**
	 * See above
	 */
	public void setReuseOldCertificate (int certusage, boolean reuseoldcertificate){
		List list = (List) data.get(REUSEOLDCERTIFICATE);	  
		list.set(certusage, Boolean.valueOf(reuseoldcertificate));
		data.put(REUSEOLDCERTIFICATE, list);				
	}

	/**
	 * See above
	 */
	public void setMinimumKeyLength (int certusage, int minimumkeylength){		
		List list = (List) data.get(MINIMUMKEYLENGTH);	  
		list.set(certusage, new Integer(minimumkeylength));
		data.put(MINIMUMKEYLENGTH, list);				 
	}

	/**
	 * See above
	 */
	public void setKeyType (int certusage, String keytype){
	  List list = (List) data.get(KEYTYPES);	  
	  list.set(certusage, keytype);
	  data.put(KEYTYPES, list);				 
	}
	
	/**
	 * Returns a collection of all defined certificate profiles.
	 *
	 */
	public Collection getAllCertificateProfileIds(){
	  return (Collection) data.get(CERTIFICATEPROFILEID);	
	}
	
	/**
	 * Returns all valid CAids, if a certusage have CAID_USEUSERDEFINED defined then
	 * it will not be among available valus in returned collection.
	 * 
	 * @return
	 */
	public Collection getAllCAIds(){
      Collection caids = (Collection) data.get(CAID);	
      ArrayList retval = new ArrayList();
      Iterator iter = caids.iterator();
      while(iter.hasNext()){
      	Integer value = (Integer) iter.next();
      	if(value.intValue() > CAInfo.SPECIALCAIDBORDER || value.intValue() < 0){
      	  retval.add(value);
      	}      	
      }
      
      return retval;
	}	
	
	public abstract int[] getAvailableMinimumKeyLengths();
	  		      
    public void upgrade(){
      // Perform upgrade functionality 
      super.upgrade(); 
    }
    
    // Protected methods
    public boolean isTokenSupported(String[][] supportedcards, String tokenidentificationstring){
      boolean returnval = true;	
      Iterator iter = ((List) data.get(MINIMUMKEYLENGTH)).iterator();
	  int[] availablekeylengths = getAvailableMinimumKeyLengths();
	  
      while(iter.hasNext()){
      	int index = -1;
      	int keylength = ((Integer) iter.next()).intValue();
        for(int i=0;i<availablekeylengths.length;i++){
		  if(availablekeylengths[i] == keylength){
		  	index=i;
		  	break;   		 	
		  }
        }        
        returnval = returnval && super.isTokenSupported(supportedcards[index], tokenidentificationstring);        
      }
    	    	
      return returnval;	 
    }
    
    /**
     * Help Method that should be used 
     * @param emptyclone
     */
    
    protected void clone(EIDProfile emptyclone){
		java.io.ByteArrayOutputStream baos = new java.io.ByteArrayOutputStream();

		try{
			ObjectOutputStream oos = new ObjectOutputStream(baos);	
			oos.writeObject(this.saveData());
			oos.close();
			ObjectInputStream ois = new ObjectInputStream(new java.io.ByteArrayInputStream(baos.toByteArray()));
			HashMap cloneddata = (HashMap) ois.readObject();		
			ois.close();
			emptyclone.loadData(cloneddata);
		}catch(Exception e){
			throw new EJBException(e);
		}   	    
    }


}