⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 createpkcs10.java

📁 一个java开发的非常全面的关于证书发放
💻 JAVA
字号:
🔍 
/*
  Name:         CreatePKCS10.java
  Licensing:    LGPL

  API:          Sun (http://java.sun.com) JCE 1.2.2 API (cleanroom implementation by Bouncy Castle)
  Provider:     Bouncy Castle (http://www.bouncycastle.org)

  Disclaimer:

  COVERED CODE IS PROVIDED UNDER THIS LICENSE ON AN "AS IS" BASIS, WITHOUT WARRANTY OF ANY KIND,
  EITHER EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, WARRANTIES THAT THE COVERED CODE
  IS FREE OF DEFECTS, MERCHANTABLE, FIT FOR A PARTICULAR PURPOSE OR NON-INFRINGING. THE ENTIRE
  RISK AS TO THE QUALITY AND PERFORMANCE OF THE COVERED CODE IS WITH YOU. SHOULD ANY COVERED CODE
  PROVE DEFECTIVE IN ANY RESPECT, YOU (NOT THE INITIAL DEVELOPER OR ANY OTHER CONTRIBUTOR)
  ASSUME THE COST OF ANY NECESSARY SERVICING, REPAIR OR CORRECTION. THIS DISCLAIMER OF WARRANTY
  CONSTITUTES AN ESSENTIAL PART OF THIS LICENSE. NO USE OF ANY COVERED CODE IS AUTHORIZED
  HEREUNDER EXCEPT UNDER THIS DISCLAIMER.
*/

package net.sourceforge.jcetaglib.taglib.x509;

import net.sourceforge.jcetaglib.lib.Clean;
import org.bouncycastle.jce.PKCS10CertificationRequest;
import org.bouncycastle.jce.X509Principal;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.util.encoders.Base64;

import javax.servlet.jsp.JspException;
import javax.servlet.jsp.PageContext;
import javax.servlet.jsp.tagext.TagSupport;
import java.security.*;

/**
 * JSP tag for creating a PKCS#10 certificate request
 *
 * @jsp.tag
 * name="createpkcs10"
 * display-name="CreatePKCS10"
 * body-content="empty"
 * example="<jce:createpkcs10

 *		subjectdn=\"C=BE, O=NET, OU=Home, CN=Bob, EmailAddress=bob@somewhere.org\"

 *		request=\"req\"

 *		privatekey=\"privkey\"/>"
 *
 * description="JSP tag for creating a PKCS#10 certificate request"
 *
 * @author Gert Van Ham
 * @author hamgert@users.sourceforge.net
 * @author http://jcetaglib.sourceforge.net
 * @version $Id: CreatePKCS10.java,v 1.6 2004/04/15 07:28:36 hamgert Exp $
 */

public class CreatePKCS10 extends TagSupport {
    private static final String PAGE = "page";
    private static final String REQUEST = "request";
    private static final String SESSION = "session";
    private static final String APPLICATION = "application";

    private String subjectdn;

    private String keypairalgorithm = "RSA";                     // tag attribute
    private int keylength = 1024;                             // tag attribute
    private String signaturealgorithm = "MD5WithRSAEncryption";  // tag attribute

    private int scope = PageContext.PAGE_SCOPE;

    // return certificates...
    // variables
    private String request;
    private String privatekey;

    private StringBuffer pkey;

    public static int getScope(String scope) {
        int ret = PageContext.PAGE_SCOPE; // default

        if (REQUEST.equalsIgnoreCase(scope))
            ret = PageContext.REQUEST_SCOPE;
        else if (SESSION.equalsIgnoreCase(scope))
            ret = PageContext.SESSION_SCOPE;
        else if (APPLICATION.equalsIgnoreCase(scope))
            ret = PageContext.APPLICATION_SCOPE;
        else if (PAGE.equalsIgnoreCase(scope))
            ret = PageContext.PAGE_SCOPE;

        return ret;
    } //getScope()

    public int doEndTag() throws JspException {
        Security.addProvider(new BouncyCastleProvider());

        //
        // set up the keys
        //
        PrivateKey privKey;
        PublicKey pubKey;

        try {
            KeyPairGenerator g = KeyPairGenerator.getInstance(keypairalgorithm, "BC");

            g.initialize(keylength, new SecureRandom());
            KeyPair p = g.generateKeyPair();

            privKey = p.getPrivate();
            pubKey = p.getPublic();

            PKCS10CertificationRequest req = new PKCS10CertificationRequest(signaturealgorithm,
                    new X509Principal(subjectdn),
                    pubKey,
                    null,
                    privKey);

            // Return certificate as string
            byte output[] = req.getEncoded();
            byte reqB64[] = Base64.encode(output);

            pageContext.setAttribute(request, "-----BEGIN CERTIFICATE REQUEST-----\n" + new String(reqB64) + "\n-----END CERTIFICATE REQUEST-----", scope);

            // Return private key as string
            byte keyoutput[] = privKey.getEncoded();
            byte keyB64[] = Base64.encode(keyoutput);

            pkey = new StringBuffer("-----BEGIN PRIVATE KEY-----\n");
            pkey.append(new String(keyB64));
            pkey.append("\n-----END PRIVATE KEY-----");

            pageContext.setAttribute(privatekey, pkey, scope);

            Clean.blank(keyoutput);
            Clean.blank(keyB64);
            privKey = null;

        } catch (Exception e) {
            throw new JspException("JCE Exception: Unable to generate PKCS#10 request: "
                    + e.getMessage(), e);
        }

        return EVAL_PAGE;
    } // doEndTag()

    public void release() {
        // Cleanup all sensitive information
        Clean.blank(pkey);

        super.release();
    } //release()

    /**
     * @jsp.attribute
     *     description="Keypair algorithm. 'RSA', 'DSA' or 'EC-DSA'. Default is 'RSA'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setKeypairalgorithm(String keypairalgorithm) {
        this.keypairalgorithm = keypairalgorithm;
    }

    /**
     * @jsp.attribute
     *     description="Key length. 512, 1024 or 2048. Default is 1024. Please note that not all products support key lengths greater than 1024"
     *     type="java.lang.Integer"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setKeylength(int keylength) {
        this.keylength = keylength;
    }

    /**
     * @jsp.attribute
     *     description="Signature algorithm. Default is 'MD5WithRSAEncryption'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="true"
     */
    public void setSignaturealgorithm(String signaturealgorithm) {
        this.signaturealgorithm = signaturealgorithm;
    }

    /**
     * @jsp.attribute
     *     description="The subject DN string. e.g. 'C=BE, O=NET, OU=Sourceforge, CN=CertAuthority, E=info@certauthority.org' Important: if you want to use the certificate for SSL server purposes you must specify the full server & domain name as the 'CN' entry (e.g. '... CN=www.oracle.com ...')"
     *     type="java.lang.String"
     *     required="true"
     *     rtexprvalue="true"
     */
    public void setSubjectdn(String subjectdn) {
        this.subjectdn = subjectdn;
    }

    /**
     * @jsp.attribute
     *     description="Scope of the return variables. Can be 'page', 'session', 'request' or 'application'. Default is 'page'"
     *     type="java.lang.String"
     *     required="false"
     *     rtexprvalue="false"
     */
    public void setScope(String scope) {
        this.scope = getScope(scope);
    }

    /**
     * @jsp.attribute
     *     description="Return variable. Contains the generated certificate as a PEM formatted string"
     *     type="java.lang.String"
     *     required="true"
     *     rtexprvalue="false"
     */
    public void setRequest(String request) {
        this.request = request;
    }

    public String getRequest() {
        return request;
    }

    /**
     * @jsp.attribute
     *     description="Return variable. Contains the generated private key as a PEM formatted StringBuffer"
     *     type="java.lang.String"
     *     required="true"
     *     rtexprvalue="false"
     */
    public void setPrivatekey(String privatekey) {
        this.privatekey = privatekey;
    }

    public String getPrivatekey() {
        return privatekey;
    }
}

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -