Index (canl 2.8.2 API)

A B C D E F G H I J K L M N O P Q R S T U V W X
All Classes All Packages

A

AbstractCRLStoreSPI - Class in eu.emi.security.authn.x509.helpers.crl: Common code for LazyOpensslCRLStoreSpi and PlainCRLStoreSpi.
AbstractCRLStoreSPI(CRLParameters, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
AbstractDelegatingX509Credential - Class in eu.emi.security.authn.x509.helpers: Abstract base for credential implementations which delegate to another one.
AbstractDelegatingX509Credential() - Constructor for class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential
AbstractEuGridPmaNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: EuGridPMA policy store common code.
AbstractEuGridPmaNamespacesStore(ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
AbstractGlobusNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: Globus EACL policy store common code.
AbstractGlobusNamespacesStore(ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
AbstractHostnameToCertificateChecker - Class in eu.emi.security.authn.x509.impl: Deprecated.
Use SocketFactoryCreator.connectWithHostnameChecking(SSLSocket, HostnameMismatchCallback) instead. This class is not perfect as the HandshakeCompletedListener is invoked (at least in reference JDK) in a separate thread, what can easily lead to a situation when the connection is opened and made available, before this implementation finishes checking.
AbstractHostnameToCertificateChecker() - Constructor for class eu.emi.security.authn.x509.impl.AbstractHostnameToCertificateChecker: Deprecated.
AbstractNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: Policy store common code.
AbstractNamespacesStore(ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
AbstractTrustAnchorStore - Class in eu.emi.security.authn.x509.helpers.trust: Base implementation of Trust Anchor stores.
AbstractTrustAnchorStore(long, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.trust.AbstractTrustAnchorStore
AbstractValidator - Class in eu.emi.security.authn.x509.helpers.pkipath: Base implementation of X509CertChainValidator.
AbstractValidator(Collection<? extends StoreUpdateListener>) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Default constructor is available, the subclass must initialize the parent with the init() method.
AbstractX509Credential - Class in eu.emi.security.authn.x509.helpers: Base class with a shared code for X509Credential implementations.
AbstractX509Credential() - Constructor for class eu.emi.security.authn.x509.helpers.AbstractX509Credential
AC_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension: The OID for the AC assertion.
ACCESS_ID_CA - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
addChild(PKIXPolicyNode) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
addCRL(X509CRL, URL) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
addError(SimpleValidationErrorException, int) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
addError(ValidationError) - Method in exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
addErrors(List<ValidationError>) - Method in exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
addErrors(List<ValidationError>) - Method in class eu.emi.security.authn.x509.ValidationResult: Adds specified errors to this result (may change valid flag).
addExcludedIPAddressWithNetmask(String) - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Adds a new excluded IP addressSpace to the data structure.
addExtension(CertificateExtension) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Add an extension to the proxy certificate to be generated.
addExtension(ASN1ObjectIdentifier, boolean, ASN1Object) - Method in class eu.emi.security.authn.x509.helpers.proxy.X509v3CertificateBuilder: Add a given extension field for the standard extensions tag (tag 3)
addObserver(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.ObserversHandler: Registers a listener which can react to errors found during refreshing of the trust material: trusted CAs or CRLs.
addPermittedIPAddressWithNetmask(String) - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Adds a new permitted IP addressSpace to the data structure.
addPolicy(NamespacePolicy, Map<String, Map<String, List<NamespacePolicy>>>) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore: Adds a given policy to a given map.
addPolicyToMap(NamespacePolicy, Map<String, List<NamespacePolicy>>) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore: Adds policy to a map indexed by a policy issuer.
addToCache(String, OCSPResponseStructure, SingleResp) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponsesCache
addToCache(String, IOException) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPRespondersCache
addUpdateListener(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Registers a listener which can react to errors found during refreshing of the trust material: trusted CAs or CRLs.
addUpdateListener(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Registers a listener which can react to errors found during refreshing of the trust material: trusted CAs or CRLs.
addUpdateListener(StoreUpdateListener) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Registers a listener which can react to errors found during refreshing of the trust material: trusted CAs or CRLs.
addValidationListener(ValidationErrorListener) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Registers a listener which can react to errors found during certificate validation.
addValidationListener(ValidationErrorListener) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Registers a listener which can react to errors found during certificate validation.
addValidationListener(ValidationErrorListener) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Registers a listener which can react to errors found during certificate validation.
ALIAS - Static variable in class eu.emi.security.authn.x509.helpers.AbstractX509Credential
ALLOW - eu.emi.security.authn.x509.ProxySupport: All kinds of proxies are allowed
allowProxy - Variable in class eu.emi.security.authn.x509.impl.ValidatorParams
anchors - Variable in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
anchors - Variable in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
ASCII - Static variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
ASCII - Static variable in class eu.emi.security.authn.x509.impl.CertificateUtils
asn2StringAll - Static variable in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle: All mappings which are supported by the JDK impl (see sun.security.x509.AVA class).
attrNameToOID(String) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
autodetectType(String, char[]) - Static method in class eu.emi.security.authn.x509.impl.KeystoreCredential: Tries to autodetect keystore type.

B

base - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
baseExt - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
baseOfBase - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
BaseProxyCertificateOptions - Class in eu.emi.security.authn.x509.proxy: Generic proxy creation parameters useful for all scenarios.
BaseProxyCertificateOptions(X509Certificate[]) - Constructor for class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Create a new proxy cert based on the parent cert chain.
BCCertPathValidator - Class in eu.emi.security.authn.x509.helpers.pkipath: Low-level certificate validator based on the BC PKIXCertPathReviewer with additional support for proxy certificates.
BCCertPathValidator() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
BCErrorMapper - Class in eu.emi.security.authn.x509.helpers.pkipath: Maps PKIXCertPathReviewer errors to ValidationError.
BCErrorMapper() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.BCErrorMapper
BinaryCertChainValidator - Class in eu.emi.security.authn.x509.helpers: A simplistic X509CertChainValidator implementation which always fails or accepts certificates, basing on the constructor argument.
BinaryCertChainValidator(boolean) - Constructor for class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator
BoundedSizeLruMap<S,T> - Class in eu.emi.security.authn.x509.helpers.ocsp
BoundedSizeLruMap(int) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.BoundedSizeLruMap
build() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2.Builder
build(X509Certificate, PKIXExtendedBuilderParameters, List<X509Certificate>, X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.NonValidatingCertPathBuilder
build(PrivateKey, AlgorithmIdentifier, String, String, SecureRandom) - Method in class eu.emi.security.authn.x509.helpers.proxy.X509v3CertificateBuilder: Generate the certificate, signing it with the provided private key and using the specified algorithm.
Builder(PKIXExtendedParameters.Builder, PKIXParameters, Set<TrustAnchor>, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2.Builder
buildPath(PKIXExtendedBuilderParameters, X509Certificate, X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.NonValidatingCertPathBuilder: Build a CertPath using the given parameter.

C

ca - Variable in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
CA_CERT - Static variable in interface eu.emi.security.authn.x509.StoreUpdateListener
cachedAnchors - Variable in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
cachedAnchorsPerIssuer - Variable in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
CachedElement<T> - Class in eu.emi.security.authn.x509.helpers: Cached element is a container of an arbitrary object, enriched with a creation timestamp.
CachedElement(T) - Constructor for class eu.emi.security.authn.x509.helpers.CachedElement
CachedPEMReader - Class in eu.emi.security.authn.x509.helpers: This class extends the PEMParser class from the BC library.
CachedPEMReader(PemObject) - Constructor for class eu.emi.security.authn.x509.helpers.CachedPEMReader
cacheTtl - Variable in class eu.emi.security.authn.x509.OCSPParametes
CERT_REGEXP - Static variable in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
CERT_WILDCARD - Static variable in interface eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStore
CERT_WILDCARD - Static variable in class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl
CERTIFICATE - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType
certificateExpired - eu.emi.security.authn.x509.ValidationErrorCode
CertificateExtension - Class in eu.emi.security.authn.x509.proxy: Stores DER form of a certificate extension along with its OID and flag if the extension is critical.
CertificateExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.proxy.CertificateExtension
CertificateExtension(String, ASN1Object, boolean) - Constructor for class eu.emi.security.authn.x509.proxy.CertificateExtension
CertificateHelpers - Class in eu.emi.security.authn.x509.helpers: Utility methods for certificates handling and reading/writing PEM files.
CertificateHelpers() - Constructor for class eu.emi.security.authn.x509.helpers.CertificateHelpers
CertificateHelpers.PEMContentsType - Enum in eu.emi.security.authn.x509.helpers
certificateNotYetValid - eu.emi.security.authn.x509.ValidationErrorCode
CertificateUtils - Class in eu.emi.security.authn.x509.impl: Utility class with methods simplifying typical certificate related operations.
CertificateUtils() - Constructor for class eu.emi.security.authn.x509.impl.CertificateUtils
CertificateUtils.Encoding - Enum in eu.emi.security.authn.x509.impl: Definition of the encoding that can be used for reading or writing certificates or keys.
CertificateUtils.MissingPasswordForEncryptedKeyException - Exception in eu.emi.security.authn.x509.impl
certPathCheckerError - eu.emi.security.authn.x509.ValidationErrorCode
CertPathValidatorUtilitiesCanl - Class in eu.emi.security.authn.x509.helpers.pkipath.bc: Exposes otherwise hidden methods from CertPathValidatorUtilitiesCanl plus in some cases fixes bugs plus produces errors in the desired format.
CertPathValidatorUtilitiesCanl() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
certRevoked - eu.emi.security.authn.x509.ValidationErrorCode
CERTS_REGEXP - Static variable in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
certWrongIssuer - eu.emi.security.authn.x509.ValidationErrorCode
CharArrayPasswordFinder - Class in eu.emi.security.authn.x509.helpers: Trivial implementation of PasswordSupplier which uses a password provided to the constructor.
CharArrayPasswordFinder(char[]) - Constructor for class eu.emi.security.authn.x509.helpers.CharArrayPasswordFinder
check(Certificate, Collection<String>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PKIXProxyCertificateChecker
check(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.ns.NamespaceChecker: Checks all certificates in the chain whether they are correct w.r.t.
checkAltNameMatching(HostnameToCertificateChecker.ResultWrapper, String, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
checkCachedError(String) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPRespondersCache: Checks if there is a cached and not outdated cache entry for a given responder key.
checkClientTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.CommonX509TrustManager
checkClientTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
checkClientTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkClientTrusted(X509Certificate[], String, Socket) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkClientTrusted(X509Certificate[], String, SSLEngine) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkCNMatching(String, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
checkCRLs2(ExtPKIXParameters2, X509Certificate, Date, X509Certificate, PublicKey, List<?>, JcaJceHelper) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.RFC3280CertPathUtilitiesCanl: Checks a certificate if it is revoked.
checkEndOfLine(char[], int) - Static method in class eu.emi.security.authn.x509.helpers.ns.ParserUtils
checkIfTrusted(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
checkIfTrusted(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkingMode - Variable in class eu.emi.security.authn.x509.OCSPParametes
checkKeysMatching(PrivateKey, PublicKey) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Throws an exception if the private key is not matching the public key.
checkKeystore(KeyStore, char[], String) - Method in class eu.emi.security.authn.x509.impl.KeystoreCredential
checkLastCNNameRule(X500Principal, X500Principal, List<ValidationError>, int, X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
checkMatching(String, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
checkNonProxyChain(X509Certificate[], ExtPKIXParameters2, List<ValidationError>, Set<String>, int, X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator: Performs checking of the chain which has no proxies (or at least should not have proxies), using FixedBCPKIXCertPathReviewer.
checkPairWithProxy(X509Certificate, X509Certificate, List<ValidationError>, int, X509Certificate[], Date) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator: Checks if the certificate passed as the 2nd argument is a correct proxy certificate including checks w.r.t.
checkProxyChainMain(X509Certificate[], List<ValidationError>, Set<String>, Date) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator: Performs a validation loop of the proxy chain checking each pair in chain for the rules not otherwise verified by the base check.
checkProxyChainWithBC(X509Certificate[], Set<TrustAnchor>, List<ValidationError>, Set<String>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator: Checks chain with proxies, starting with the EEC using X.509 path validation.
checkProxyTime(X509Certificate, Date, X509Certificate[], List<ValidationError>, int) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
checkRevocation(ExtPKIXParameters2, X509Certificate, Date, X509Certificate, PublicKey) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
checkRevocation(X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPRevocationChecker
checkRevocation(X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.revocation.CRLRevocationChecker
checkRevocation(X509Certificate, X509Certificate) - Method in interface eu.emi.security.authn.x509.helpers.revocation.RevocationChecker: Checks revocation.
checkServerTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.CommonX509TrustManager
checkServerTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
checkServerTrusted(X509Certificate[], String) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkServerTrusted(X509Certificate[], String, Socket) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkServerTrusted(X509Certificate[], String, SSLEngine) - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
checkToken(String, char[], int, boolean) - Static method in class eu.emi.security.authn.x509.helpers.ns.ParserUtils
checkTokenSoft(String, char[], int, boolean) - Static method in class eu.emi.security.authn.x509.helpers.ns.ParserUtils
checkValidity(String, X509Certificate, boolean) - Method in class eu.emi.security.authn.x509.helpers.trust.AbstractTrustAnchorStore
children - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
chooseClientAlias(String[], Principal[], Socket) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
chooseEngineClientAlias(String[], Principal[], SSLEngine) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
chooseEngineServerAlias(String, Principal[], SSLEngine) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
chooseServerAlias(String, Principal[], Socket) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
clearMemoryCache() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCachingClient
clearMemoryCache() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPRespondersCache
clearMemoryCache() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponsesCache
clone() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
clone() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
clone() - Method in class eu.emi.security.authn.x509.impl.CRLParameters
clone() - Method in class eu.emi.security.authn.x509.impl.RevocationParametersExt
clone() - Method in class eu.emi.security.authn.x509.proxy.OidAndValue
clone() - Method in class eu.emi.security.authn.x509.proxy.ProxyPolicy
clone() - Method in class eu.emi.security.authn.x509.RevocationParameters: Clone the instance
close() - Method in class eu.emi.security.authn.x509.helpers.ReaderInputStream: Close the stream.
CommonX509TrustManager - Class in eu.emi.security.authn.x509: This class wraps X509CertChainValidator so it can be easily used in the standard Java SSL API.
CommonX509TrustManager(X509CertChainValidator) - Constructor for class eu.emi.security.authn.x509.CommonX509TrustManager: The constructor.
COMPACT - eu.emi.security.authn.x509.impl.FormatMode: Short form: only subject and issuer are printed, in multiple lines
COMPACT_ONE_LINE - eu.emi.security.authn.x509.impl.FormatMode: Short form: only subject and issuer are printed, in one line
concatArrays(byte[][], byte[][]) - Static method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Concatenates two arrays of arrays bytes.
CONDITION_SUBJECT - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
configureSecProvider() - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Configures security providers which are used by the library.
conflictingTrustAnchors - eu.emi.security.authn.x509.ValidationErrorCode
connectWithHostnameChecking(SSLSocket, HostnameMismatchCallback) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

This method, invoked on an initialized SSL socket will perform the initial handshake (if necessary) and then check if the peer's hostname is matching its certificate.
conntectTimeout - Variable in class eu.emi.security.authn.x509.OCSPParametes
consumeQuoted(char[], int, StringBuilder) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
convert2sr(byte[]) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
convert2strings(byte[][]) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
convertErrors(List<?>[], boolean, int, X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
convertFromRfc2253(String, boolean) - Static method in class eu.emi.security.authn.x509.impl.OpensslNameUtils: Returns an OpenSSL legacy (and as of now the default in OpenSSL) encoding of the provided RFC 2253 DN.
convertToX509Chain(Certificate[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Performs a trivial conversion by use of casting of a Certificate array into X509Certificate array
copy() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
createCRLStore(CRLParameters, Timer) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: This method can be overridden if a different implementation of the PlainCRLStoreSpi (its subclass) should be used.
createPKIXParameters(X509Certificate[], boolean, Set<TrustAnchor>, CertStore, RevocationParameters, ObserversHandler) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
createRequest(X509Certificate, X509Certificate, X509Credential, boolean) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl
createResponderKey(X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPRespondersCache
createResponseKey(X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponsesCache
createSingleKeyView(KeyStore, String, char[]) - Method in class eu.emi.security.authn.x509.impl.KeystoreCredential
CredentialX509KeyManager - Class in eu.emi.security.authn.x509.helpers.ssl: Simple KeyManager implementation which always returns the only key and certificate which is available in the configured X509Credential object.
CredentialX509KeyManager(X509Credential) - Constructor for class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
critical - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
criticalExtensionError - eu.emi.security.authn.x509.ValidationErrorCode
CRL - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType
CRL - eu.emi.security.authn.x509.ValidationErrorCategory
CRL - Static variable in interface eu.emi.security.authn.x509.StoreUpdateListener
CRL_OCSP - eu.emi.security.authn.x509.RevocationParameters.RevocationCheckingOrder
CRL_WILDCARD - Static variable in class eu.emi.security.authn.x509.helpers.crl.OpensslCRLStoreSpi
crlAKIExtError - eu.emi.security.authn.x509.ValidationErrorCode
crlAuthInfoAccError - eu.emi.security.authn.x509.ValidationErrorCode
crlBCExtError - eu.emi.security.authn.x509.ValidationErrorCode
crlCheckingMode - Variable in class eu.emi.security.authn.x509.RevocationParameters
CrlCheckingMode - Enum in eu.emi.security.authn.x509: Defines Certificate Revocation List verification mode.
crlDeltaProblem - eu.emi.security.authn.x509.ValidationErrorCode
crlDistPtExtError - eu.emi.security.authn.x509.ValidationErrorCode
crlExtractionError - eu.emi.security.authn.x509.ValidationErrorCode
crlIDPAndDPMismatch - eu.emi.security.authn.x509.ValidationErrorCode
crlIssuerException - eu.emi.security.authn.x509.ValidationErrorCode
crlNoIssuerAndDP - eu.emi.security.authn.x509.ValidationErrorCode
crlNoIssuerForDP - eu.emi.security.authn.x509.ValidationErrorCode
crlNoIssuerPublicKey - eu.emi.security.authn.x509.ValidationErrorCode
crlOnlyAttrCert - eu.emi.security.authn.x509.ValidationErrorCode
crlOnlyCaCert - eu.emi.security.authn.x509.ValidationErrorCode
crlOnlyUserCert - eu.emi.security.authn.x509.ValidationErrorCode
crlParameters - Variable in class eu.emi.security.authn.x509.impl.RevocationParametersExt
CRLParameters - Class in eu.emi.security.authn.x509.impl: Manages configuration of CRL sources, used in non-openssl truststores.
CRLParameters() - Constructor for class eu.emi.security.authn.x509.impl.CRLParameters: Default constructor uses standard CRL parameters: no CRLs are defined, no disk cache, no CRLs updates.
CRLParameters(List<String>, long, int, String) - Constructor for class eu.emi.security.authn.x509.impl.CRLParameters
crlReasonExtError - eu.emi.security.authn.x509.ValidationErrorCode
CRLRevocationChecker - Class in eu.emi.security.authn.x509.helpers.revocation: Implementation of RevocationChecker using CRLs, the RFC3280CertPathUtilitiesCanl.
CRLRevocationChecker(ExtPKIXParameters2, Date, PublicKey, List<?>, CrlCheckingMode) - Constructor for class eu.emi.security.authn.x509.helpers.revocation.CRLRevocationChecker
crlStoreImpl - Variable in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator
crlUnknownCritExt - eu.emi.security.authn.x509.ValidationErrorCode
crlVerifyFailed - eu.emi.security.authn.x509.ValidationErrorCode
CSR - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType

D

DEF_AUTH_GLOBUS - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
DEF_AUTH_X509 - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
DEFAULT_CACHE - Static variable in class eu.emi.security.authn.x509.OCSPParametes
DEFAULT_KEY_LENGTH - Static variable in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions
DEFAULT_KEY_USAGE - Static variable in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Key usage value which is used when
DEFAULT_KEYSTORE_ALIAS - Static variable in class eu.emi.security.authn.x509.impl.CertificateUtils
DEFAULT_LIFETIME - Static variable in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
DEFAULT_LONG_KEY_LENGTH - Static variable in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions
DEFAULT_PROXY_SUPPORT - Static variable in class eu.emi.security.authn.x509.impl.ValidatorParams
DEFAULT_TIMEOUT - Static variable in class eu.emi.security.authn.x509.OCSPParametes
delegate - Variable in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential
DENY - eu.emi.security.authn.x509.ProxySupport: All kinds of proxies are denied
depth - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
DER - eu.emi.security.authn.x509.impl.CertificateUtils.Encoding
DERCredential - Class in eu.emi.security.authn.x509.impl: Wraps certificate and private key stored in DER format.
DERCredential(InputStream, InputStream, char[]) - Constructor for class eu.emi.security.authn.x509.impl.DERCredential: Constructs the object from two InputStreams which can be used to read a private key and certificate in DER PKCS8 format.
DERCredential(String, String, char[]) - Constructor for class eu.emi.security.authn.x509.impl.DERCredential: Constructs the object from two files containing private key and certificate in DER PKCS8 format.
directory - Variable in class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
directory - Variable in class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore
DirectoryCertChainValidator - Class in eu.emi.security.authn.x509.impl: The certificate validator which uses a flexible set of certificates and CRL locations.
DirectoryCertChainValidator(String, String, String) - Constructor for class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Constructs a new validator instance with simplified parameters: only one location for certificates, truststore and CRLs are refreshed every hour, connection timeout is 15s, proxies are supported, encoding is PEM and no initial update listener is registered.
DirectoryCertChainValidator(List<String>, CertificateUtils.Encoding, long, int, String) - Constructor for class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Constructs a new validator instance with default additional settings (see ValidatorParamsExt()).
DirectoryCertChainValidator(List<String>, CertificateUtils.Encoding, long, int, String, ValidatorParamsExt) - Constructor for class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Constructs a new validator instance.
DirectoryTrustAnchorStore - Class in eu.emi.security.authn.x509.helpers.trust: Retrieves CA certificates from locations given as local paths with wildcards or URLs.
DirectoryTrustAnchorStore(List<String>, String, int, Timer, long, CertificateUtils.Encoding, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
DirectoryTrustAnchorStore(List<String>, String, int, Timer, long, CertificateUtils.Encoding, ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
DisabledNameMismatchCallback - Class in eu.emi.security.authn.x509.helpers.ssl
DisabledNameMismatchCallback() - Constructor for class eu.emi.security.authn.x509.helpers.ssl.DisabledNameMismatchCallback
diskCachePath - Variable in class eu.emi.security.authn.x509.OCSPParametes
diskPath - Variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
dispose() - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator
dispose() - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
dispose() - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
dispose() - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi: After calling this method no notification will be produced and subsequent updates won't be scheduled.
dispose() - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Disposes resources used by this Validator, like threads.
dispose() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator
dispose() - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
dispose() - Method in class eu.emi.security.authn.x509.helpers.trust.TimedTrustAnchorStoreBase: After calling this method no notification will be produced and subsequent updates won't be scheduled.
dispose() - Method in interface eu.emi.security.authn.x509.helpers.trust.TrustAnchorStore
dispose() - Method in class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Disposes resources used by this Validator, like threads.
dispose() - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator
dispose() - Method in interface eu.emi.security.authn.x509.X509CertChainValidatorExt: Disposes resources used by this Validator, like threads.
disposed - Variable in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
distrPtExtError - eu.emi.security.authn.x509.ValidationErrorCode
DNComparator - Class in eu.emi.security.authn.x509.helpers: Helpers for checking text representations of DNs for equality.
DNComparator() - Constructor for class eu.emi.security.authn.x509.helpers.DNComparator
doChecks() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
DRAFT_EXTENSION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension: The oid of the rfc draft proxy cert extension.
DRAFT_RFC - eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: Draft RFC proxy
DRAFT_RFC - eu.emi.security.authn.x509.proxy.ProxyChainType: A chain contains only draft RFC proxies.
DRAFT_RFC - eu.emi.security.authn.x509.proxy.ProxyType: Draft RFC proxy
DraftRFCProxyCertInfoExtension - Class in eu.emi.security.authn.x509.helpers.proxy: Proxy cert info extension class.
DraftRFCProxyCertInfoExtension() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension: Generate a proxy that inherits all rights and that has no cert path length limitations.
DraftRFCProxyCertInfoExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension: Constructor that generates instance out of byte array.
DraftRFCProxyCertInfoExtension(int, ProxyPolicy) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension: Generate new proxy certificate info extension with length limit len and policy policy.
DraftRFCProxyCertInfoExtension(ASN1Sequence) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension: Read a proxyCertInfoExtension from the ASN1 sequence.

E

EACL_NAMESPACE - Static variable in interface eu.emi.security.authn.x509.StoreUpdateListener
emptyCertPath - eu.emi.security.authn.x509.ValidationErrorCode
encodeDigest(MessageDigest) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
encoding - Variable in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
encrypted - Variable in class eu.emi.security.authn.x509.helpers.PKCS8DERReader
EnforcingNameMismatchCallback - Class in eu.emi.security.authn.x509.helpers.ssl
EnforcingNameMismatchCallback() - Constructor for class eu.emi.security.authn.x509.helpers.ssl.EnforcingNameMismatchCallback
engineGetCertificates(CertSelector) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
engineGetCRLs(CRLSelector) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
equal(String, String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Convenience method, based on the standard JDK algorithm for DNs comparison.
equal(X500Principal, String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Convenience method for DN comparison.
equals(Object) - Method in class eu.emi.security.authn.x509.helpers.trust.TrustAnchorExt
ERROR - eu.emi.security.authn.x509.StoreUpdateListener.Severity: Signifies that the problem was critical, i.e.
errorProcesingBC - eu.emi.security.authn.x509.ValidationErrorCode
establishSerial(BaseProxyCertificateOptions) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper: For LEGACY proxies returns the serial from the issuing certificate.
establishWildcardsLocations() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils: resolves all wildcards
eu.emi.security.authn.x509 - package eu.emi.security.authn.x509: Contains API of the library.
eu.emi.security.authn.x509.helpers - package eu.emi.security.authn.x509.helpers: Consists of general purpose classes, helping to implement generic functionality of the library.
eu.emi.security.authn.x509.helpers.crl - package eu.emi.security.authn.x509.helpers.crl: Helper classes implementing Certificate Revocation List access, which is used by the validators together with trust stores.
eu.emi.security.authn.x509.helpers.ns - package eu.emi.security.authn.x509.helpers.ns: Contains implementation of local namespace policy rules for trusted certificate authorities (using Globus and EuGridPMA syntax), which are exclusively used by the OpensslCertChainValidator
eu.emi.security.authn.x509.helpers.ocsp - package eu.emi.security.authn.x509.helpers.ocsp: Contains implementation of On-line Certificate Status Protocol (OCSP), RFC 2560.
eu.emi.security.authn.x509.helpers.pkipath - package eu.emi.security.authn.x509.helpers.pkipath: Helper classes for internal, low level, logic of certificate path validation.
eu.emi.security.authn.x509.helpers.pkipath.bc - package eu.emi.security.authn.x509.helpers.pkipath.bc: Helper classes included (mostly copied) from the BouncyCastle 1.52 library and further updated.
eu.emi.security.authn.x509.helpers.proxy - package eu.emi.security.authn.x509.helpers.proxy: Helper classes, implementing functionality offered by the Proxy Certificate API from the eu.emi.security.authn.x509.proxy package.
eu.emi.security.authn.x509.helpers.revocation - package eu.emi.security.authn.x509.helpers.revocation: Helper classes, implementing general revocation checking functionality.
eu.emi.security.authn.x509.helpers.ssl - package eu.emi.security.authn.x509.helpers.ssl: Helper classes, implementing SSL/TLS/network related functions.
eu.emi.security.authn.x509.helpers.trust - package eu.emi.security.authn.x509.helpers.trust: Contains implementations of trust stores, which provide access to trusted root certificates.
eu.emi.security.authn.x509.impl - package eu.emi.security.authn.x509.impl: Contains implementation classes of the library.
eu.emi.security.authn.x509.proxy - package eu.emi.security.authn.x509.proxy: Contains classes which allow to generate proxy certificates and to extract information from them.
EUGRIDPMA - eu.emi.security.authn.x509.NamespaceCheckingMode: An EuGridPMA namespaces definition is checked only.
EUGRIDPMA_AND_GLOBUS - eu.emi.security.authn.x509.NamespaceCheckingMode: Both EuGridPMA namespaces definition and Globus EACL are enforced for the issuer.
EUGRIDPMA_AND_GLOBUS_REQUIRE - eu.emi.security.authn.x509.NamespaceCheckingMode: Both EuGridPMA namespaces definition and Globus EACL are enforced for the issuer.
EUGRIDPMA_GLOBUS - eu.emi.security.authn.x509.NamespaceCheckingMode: An EuGridPMA namespaces definition is checked first.
EUGRIDPMA_GLOBUS_REQUIRE - eu.emi.security.authn.x509.NamespaceCheckingMode: An EuGridPMA namespaces definition is checked first.
EUGRIDPMA_NAMESPACE - Static variable in interface eu.emi.security.authn.x509.StoreUpdateListener
EUGRIDPMA_REQUIRE - eu.emi.security.authn.x509.NamespaceCheckingMode: An EuGridPMA namespaces definition is checked only.
euGridPmaEnabled() - Method in enum eu.emi.security.authn.x509.NamespaceCheckingMode
EuGridPmaNamespacesParser - Class in eu.emi.security.authn.x509.helpers.ns: Parses a single EUGridPMA namespaces file and returns NamespacePolicy object.
EuGridPmaNamespacesParser(String, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
EuGridPmaNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: Provides an in-memory store of NamespacePolicy objects.
EuGridPmaNamespacesStore(ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesStore
excludedDN - eu.emi.security.authn.x509.ValidationErrorCode
excludedEmail - eu.emi.security.authn.x509.ValidationErrorCode
excludedIP - eu.emi.security.authn.x509.ValidationErrorCode
expectedPolicies - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
explicitPolicy - eu.emi.security.authn.x509.ValidationErrorCode
ExtendedProxyType - Enum in eu.emi.security.authn.x509.helpers.proxy
ExtPKIXParameters2 - Class in eu.emi.security.authn.x509.helpers.pkipath: Extended PKIX parameters with additional settings related to the library features: different CRL modes and proxy support.
ExtPKIXParameters2(PKIXExtendedParameters, PKIXExtendedBuilderParameters, ExtPKIXParameters2.Builder) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
ExtPKIXParameters2.Builder - Class in eu.emi.security.authn.x509.helpers.pkipath
extractAlgorithmId(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.X509v3CertificateBuilder: Extracts the full algorithm identifier from the given certificate.
extractNonce(OCSPReq) - Static method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl

F

factory - Variable in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
findIssuerCerts(X509Certificate, PKIXExtendedBuilderParameters) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
findTrustAnchorPublic(X509Certificate, Set<?>, String) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
FixedBCPKIXCertPathReviewer - Class in eu.emi.security.authn.x509.helpers.pkipath.bc: PKIXCertPathReviewer
Validation of X.509 Certificate Paths.
FixedBCPKIXCertPathReviewer(CertPath, ExtPKIXParameters2) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer: Creates a PKIXCertPathReviewer and initializes it with the given CertPath and PKIXParameters params
FlexiblePEMReader - Class in eu.emi.security.authn.x509.helpers: Extends BC's PEMParser class so it can read correctly also PEM files with a garbage at the beginning and minor syntax violations which occur more then often in the wild.
FlexiblePEMReader(Reader) - Constructor for class eu.emi.security.authn.x509.helpers.FlexiblePEMReader: Creates a new FlexiblePEMReader object.
format(X509Certificate) - Method in class eu.emi.security.authn.x509.impl.X509Formatter: Produces a human readable text representation of the provided certificate.
format(X509Certificate[]) - Method in class eu.emi.security.authn.x509.impl.X509Formatter: Produces a human readable text representation of the provided certificate chain.
format(X509Certificate[], boolean) - Method in class eu.emi.security.authn.x509.impl.X509Formatter: Produces a human readable text representation of the provided certificate chain.
format(X509Certificate[], FormatMode) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Produces a human readable text representation of the provided certificate chain.
format(X509Certificate, FormatMode) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Produces a human readable text representation of the provided certificate.
FormatMode - Enum in eu.emi.security.authn.x509.impl: String output mode.
fromString(String) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
FULL - eu.emi.security.authn.x509.impl.FormatMode: Most (but not all) of the information that can be read from the certificate is included: subject, issuer, validity, fingerprints, usage.

G

GENERAL_INPUT - eu.emi.security.authn.x509.ValidationErrorCategory
generate(ProxyCertificateOptions) - Static method in class eu.emi.security.authn.x509.proxy.ProxyCSRGenerator: Generate the proxy certificate object.
generate(ProxyCertificateOptions, PrivateKey) - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper: Generate the proxy certificate object from the local certificate.
generate(ProxyCertificateOptions, PrivateKey) - Static method in class eu.emi.security.authn.x509.proxy.ProxyCSRGenerator: Generate the proxy certificate object.
generate(ProxyCertificateOptions, PrivateKey) - Static method in class eu.emi.security.authn.x509.proxy.ProxyGenerator: Generate the proxy certificate object from the local certificate.
generate(ProxyRequestOptions, PrivateKey) - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper: Generate the proxy certificate object from the received Certificate Signing Request.
generate(ProxyRequestOptions, PrivateKey) - Static method in class eu.emi.security.authn.x509.proxy.ProxyGenerator: Generate the proxy certificate object from the received Certificate Signing Request.
generateDN(X500Principal, ProxyType, boolean, BigInteger) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper: Generate a correct DN for the proxy, depending on its type.
generateKeyPair(int) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper
getAcceptedIssuers() - Method in class eu.emi.security.authn.x509.CommonX509TrustManager
getAcceptedIssuers() - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
getAcceptedIssuers() - Method in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
getAdditionalStoresFromCRLDistributionPoint(CRLDistPoint, PKIXExtendedBuilderParameters) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
getAddress() - Method in class eu.emi.security.authn.x509.OCSPResponder
getArguments() - Method in exception eu.emi.security.authn.x509.helpers.pkipath.SimpleValidationErrorException
getAttributeCertificateExtensions() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Returns the Attribute Certificate extensions from the certificate chain.
getAttributeCertificates() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension: Used to get the AC extension object.
getAttributeCertificates() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getAttributeNames(String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a set with all attribute identifiers which are present in the passed DN.
getAttributeNames(X500Principal) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a set with all attribute identifiers which are present in the passed DN.
getAttributeValues(String, ASN1ObjectIdentifier) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns an array of values of a provided attribute from the DN.
getAttributeValues(X500Principal, ASN1ObjectIdentifier) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns an array of values of a provided attribute from the DN.
getBaseBuildParameters() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
getBaseOfBase() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
getBaseParameters() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
getCacheDir() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getCachedPolicies(Map<String, CachedElement<Map<String, List<NamespacePolicy>>>>, String, String, String, long) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore: Utility method useful for lazy stores.
getCachedResp(String, OCSPClientImpl, X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponsesCache
getCacheFile(URL) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
getCacheTtl() - Method in class eu.emi.security.authn.x509.OCSPParametes
getCertificate() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Helper method to get certificate from the underlying keystore
getCertificate() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Helper method to get certificate from the underlying keystore
getCertificate() - Method in class eu.emi.security.authn.x509.OCSPResponder
getCertificate() - Method in interface eu.emi.security.authn.x509.X509Credential: Helper method to get certificate from the underlying keystore
getCertificateChain() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Helper method to get certificate chain from the underlying keystore
getCertificateChain() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Helper method to get certificate chain from the underlying keystore
getCertificateChain() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
getCertificateChain() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCertificate: Returns the certificate chain of the proxy.
getCertificateChain() - Method in interface eu.emi.security.authn.x509.X509Credential: Helper method to get certificate chain from the underlying keystore
getCertificateChain(String) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
getCertStatus(Date, X509CRL, Object, CertStatus) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.RFC3280CertPathUtilitiesCanl
getChain() - Method in class eu.emi.security.authn.x509.ValidationError
getChainKeyUsage(X509Certificate[]) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper: If the input chain has no KeyUsage extension null is returned.
getCheckingMode() - Method in class eu.emi.security.authn.x509.OCSPParametes
getChildren() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getClientAliases(String, Principal[]) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
getCode() - Method in exception eu.emi.security.authn.x509.helpers.pkipath.SimpleValidationErrorException
getComparableForm(String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a form of the source DN in RFC 2253 form (or similar - some minor format violations are properly handled) which is suitable for string comparison.
getCompleteCRLs(DistributionPoint, Object, Date, PKIXExtendedParameters) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl: As CertPathValidatorUtilities.getCompleteCRLs(DistributionPoint, Object, Date, PKIXExtendedParameters) but it returns also expired CRLs.
getCompleteCRLs2(DistributionPoint, X509Certificate, Date, PKIXExtendedParameters) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
getConntectTimeout() - Method in class eu.emi.security.authn.x509.OCSPParametes
getConnTimeout() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getCreationTs() - Method in class eu.emi.security.authn.x509.helpers.CachedElement
getCredential() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
getCredential() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCertificate: Returns the X509Credential wrapping the generated private key and proxy certificate.
getCrlCheckingMode() - Method in class eu.emi.security.authn.x509.RevocationParameters: Returns the current CRL settings.
getCRLDistUrls(CRLDistPoint) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
getCRLForIssuer(X500Principal) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
getCRLForIssuer(X500Principal) - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
getCRLForIssuer(X500Principal) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
getCrlParameters() - Method in class eu.emi.security.authn.x509.impl.RevocationParametersExt: Returns CRL parameters
getCrls() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Returns the current list of additional CRL locations.
getCrls() - Method in class eu.emi.security.authn.x509.impl.CRLParameters
getCrlUpdateInterval() - Method in class eu.emi.security.authn.x509.impl.CRLParameters
getCRLUpdateInterval() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Returns the interval between subsequent reloads of CRLs.
getCRLWithMatcher(CRLSelector) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
getCRLWithMatcher(CRLSelector) - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
getCRLWithMatcher(CRLSelector) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
getCSR() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCSRImpl: Returns the CSR
getCSR() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCSR: Returns the CSR
getDefaultKeyAlias(KeyStore) - Method in class eu.emi.security.authn.x509.impl.KeystoreCredential
getDefinedFor() - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacePolicy
getDefinedFor() - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
getDeltaCRLs2(Date, PKIXExtendedParameters, X509CRL) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl: Fetches delta CRLs according to RFC 3280 section 5.2.4.
getDepth() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getDiskCachePath() - Method in class eu.emi.security.authn.x509.impl.CRLParameters
getDiskCachePath() - Method in class eu.emi.security.authn.x509.OCSPParametes
getElement() - Method in class eu.emi.security.authn.x509.helpers.CachedElement
getEncoding() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getEndUserCertificate(X509Certificate[]) - Static method in class eu.emi.security.authn.x509.proxy.ProxyUtils: Extracts the first EEC from the chain.
getErrorCategory() - Method in class eu.emi.security.authn.x509.ValidationError: Returns a coarse grained error category.
getErrorCategory(ValidationErrorCode) - Static method in enum eu.emi.security.authn.x509.ValidationErrorCategory
getErrorCode() - Method in class eu.emi.security.authn.x509.ValidationError: Gets the unique error code.
getErrors() - Method in exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
getErrors() - Method in class eu.emi.security.authn.x509.ValidationResult: Returns list of problems found.
getExcludedAddresses() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
getExpectedPolicies() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getExtensionBytes(X509Certificate, String) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Gets the certificate extension identified by the oid and returns the value bytes unwrapped by the ASN1OctetString.
getExtensions() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getExtensionValue(X509Extension, String) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
getFileHash(String, String) - Static method in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
getFileSuffix() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getFileSuffix() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
getFileSuffix() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
getFilesWithRegexp(String, File) - Static method in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
getFirstProxy(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
getFirstProxyPosition() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo
getGlobusNsStore() - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
getGlobusNsStore() - Method in interface eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStore
getGlobusNsStore() - Method in class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl
getHashCode(String) - Static method in class eu.emi.security.authn.x509.helpers.DNComparator
getIdentification() - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacePolicy
getIdentification() - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
getInitialListeners() - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
getInstance(String) - Static method in class eu.emi.security.authn.x509.helpers.KeyStoreHelper: Deprecated.
use other methods from this class.
getInstance(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension: Returns the AC extension form the certificate.
getInstance(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension: Tries to generate ProxyCertInfoExtension object from the provided certificate.
getInstance(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: Returns the SAML extension from the certificate.
getInstance(X509Certificate, boolean) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Creates an instance of the extension of the given type from a certificate.
getInstance(X509Certificate, boolean) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: Returns the URL of the proxy tracing issuer if present.
getInstanceForCredential(String) - Static method in class eu.emi.security.authn.x509.helpers.KeyStoreHelper: Creates an instance of KeyStore which should be used for loading/storing credentials.
getInstanceForTrust(String) - Static method in class eu.emi.security.authn.x509.helpers.KeyStoreHelper: Creates an instance of KeyStore which should be used as a truststore, using our custom logic for choosing a provider: BC for PKCS12 and default for others.
getIPSpaces() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Returns a Vector of Vectors of IP address spaces as defined in rfc 4632.
getIssuer() - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacePolicy
getIssuer() - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
getKey() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Helper method to get private key from the underlying keystore
getKey() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Helper method to get private key from the underlying keystore
getKey() - Method in interface eu.emi.security.authn.x509.X509Credential: Helper method to get private key from the underlying keystore
getKeyAlias() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Returns an alias which can be used to obtain the PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method.
getKeyAlias() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Returns an alias which can be used to obtain the PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method.
getKeyAlias() - Method in interface eu.emi.security.authn.x509.X509Credential: Returns an alias which can be used to obtain the PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method.
getKeyLength() - Method in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions: Gets the length of the keys to be generated.
getKeyManager() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Returns a KeyManager which accompanies the KeyStore.
getKeyManager() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Returns a KeyManager which accompanies the KeyStore.
getKeyManager() - Method in interface eu.emi.security.authn.x509.X509Credential: Returns a KeyManager which accompanies the KeyStore.
getKeyPassword() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Returns a password which can be used to obtain PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method, with the alias returned by the X509Credential.getKeyAlias() method.
getKeyPassword() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Returns a password which can be used to obtain PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method, with the alias returned by the X509Credential.getKeyAlias() method.
getKeyPassword() - Method in interface eu.emi.security.authn.x509.X509Credential: Returns a password which can be used to obtain PrivateKey entry from the KeyStore returned by the X509Credential.getKeyStore() method, with the alias returned by the X509Credential.getKeyAlias() method.
getKeyStore() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential: Returns the credential in a keystore.
getKeyStore() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential: Returns the credential in a keystore.
getKeyStore() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
getKeyStore() - Method in interface eu.emi.security.authn.x509.X509Credential: Returns the credential in a keystore.
getLabelForOid(ASN1ObjectIdentifier) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
getLabelForOidFull(ASN1ObjectIdentifier) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
getLastCN(X500Principal) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper
getLastCN(X500Name) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper
getLifetime() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getLocalResponders() - Method in class eu.emi.security.authn.x509.OCSPParametes
getLocations() - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
getLocations() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
getLocations() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getMaxCache() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponseStructure
getMessage() - Method in class eu.emi.security.authn.x509.ValidationError: Returns human readable message describing this error.
getMostSpecificCN(X500Principal) - Method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
getNames() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: Returns the general names structure that holds the trace information.
getNamespaceCheckingMode() - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Returns the namespace checking mode.
getNextUpdateFromCacheHeader(String) - Static method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl
getNormalizedRDNs(X500Principal) - Static method in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
getNotBefore() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getNotificationType() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getNotificationType() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
getNotificationType() - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
getNsFile(String, String) - Static method in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
getObservers() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
getOcspParameters() - Method in class eu.emi.security.authn.x509.RevocationParameters: Returns the current OCSP settings.
getOCSPUrls(X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPVerifier
getOid() - Method in class eu.emi.security.authn.x509.proxy.OidAndValue
getOpenSSLCAHash(X500Principal, boolean) - Static method in class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
getOrder() - Method in class eu.emi.security.authn.x509.RevocationParameters
getOriginalUserDN(X509Certificate[]) - Static method in class eu.emi.security.authn.x509.proxy.ProxyUtils: Tries to establish the DN of the user who issued the first proxy which is found in the provided chain.
getParameters() - Method in class eu.emi.security.authn.x509.ValidationError: Gets the error parameters.
getParent() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getParentCertChain() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Returns the certificate parent chain of the proxy.
getParser(String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getParser(String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
getParser(String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
getPassword() - Method in class eu.emi.security.authn.x509.helpers.CharArrayPasswordFinder
getPassword() - Method in interface eu.emi.security.authn.x509.helpers.PasswordSupplier
getPEMType(String) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Assumes that the input is the contents of the PEM identification line, after '-----BEGIN ' prefix.
getPermittedAddresses() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
getPF(char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils
getPmaNsStore() - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
getPmaNsStore() - Method in interface eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStore
getPmaNsStore() - Method in class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl
getPolicies(X509Certificate[], int) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
getPolicies(X509Certificate[], int) - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacesStore: Gets namespace policies applicable for the CA.
getPolicies(X500Principal[], int) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getPolicies(X500Principal[], int) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
getPolicies(X500Principal[], int) - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacesStore: As NamespacesStore.getPolicies(X509Certificate[], int) but with principals of certificates only
getPoliciesByIssuerDn(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getPoliciesByIssuerDn(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesStore
getPoliciesByIssuerDn(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
getPoliciesByIssuerHash(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
getPoliciesByIssuerHash(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesStore
getPoliciesByIssuerHash(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
getPoliciesFor(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore
getPoliciesFor(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesStore
getPoliciesFor(String, String) - Method in class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore
getPolicy() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension: Get the policy object of this extension.
getPolicy() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getPolicy() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Gets the array of RFC proxy extension policy OID and octets of the policy.
getPolicy() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Gets the requested RFC proxy extension policy OID and octets of the policy.
getPolicyASN1() - Method in class eu.emi.security.authn.x509.proxy.ProxyPolicy: The optional policy information in this structure
getPolicyOID() - Method in class eu.emi.security.authn.x509.proxy.ProxyPolicy: Use to get the policy OID as a String.
getPolicyQualifiers() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getPortableRFC2253Form(String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a form of the source DN in RFC 2253 form (or similar - some minor format violations are properly handled) which is strictly RFC2253 and is guaranteed to be correctly parsed by the JDK methods.
getPosition() - Method in class eu.emi.security.authn.x509.ValidationError: Returns position in chain of the certificate causing the error.
getPrivateKey() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
getPrivateKey() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCSRImpl: Returns the generated private key of this CSR.
getPrivateKey() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCertificate: Returns the generated private key of this proxy.
getPrivateKey() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCSR: Returns the generated private key of this CSR.
getPrivateKey(String) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
getProxyKeyUsageMask() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getProxyPathLimit() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension: Get the proxy certificate path length limit of this extension, if set.
getProxyPathLimit() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets the proxy path length limit of this certificate.
getProxyPathLimit() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Returns the proxy path length limit set in the Certificate Signing Request.
getProxyPathLimit(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper: Returns the proxy path limit of the proxy.
getProxyRequest() - Method in class eu.emi.security.authn.x509.proxy.ProxyRequestOptions
getProxySourceRestrictions() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Gets the proxy source restriction data from the chain.
getProxySourceRestrictions() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Gets the proxy source restriction data from the Certificate Signing Request.
getProxySupport() - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator
getProxySupport() - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Returns whether this validator supports proxy certificates.
getProxySupport() - Method in interface eu.emi.security.authn.x509.X509CertChainValidatorExt: Returns whether this validator supports proxy certificates.
getProxyTargetRestrictions() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Gets the proxy target restriction data from the chain.
getProxyTargetRestrictions() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Gets the proxy target restriction data from the Certificate Signing Request.
getProxyTracingIssuer() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getProxyTracingIssuer() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Returns an requested URL of the proxy tracing issuer.
getProxyTracingIssuers() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Returns an array of URLs of the proxy tracing issuers in the chain.
getProxyTracingSubject() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getProxyTracingSubject() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Returns a requested URL of the proxy tracing subject.
getProxyTracingSubjects() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Returns an array of URLs of the proxy tracing subjects in the chain.
getProxyType() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: The type of the proxy chain chain is returned.
getProxyType() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: The type of the proxy certificate requested is returned or null if can not be determined.
getProxyType(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper: Checks if the certificate is a proxy and if so return its type.
getPublicKey() - Method in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions: Returns the manually set public key for the proxy.
getReadableForm(String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a human-readable representation of this DN.
getReadableForm(X500Principal) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Returns a human-readable representation of this DN.
getRemainingPathLimit() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Returns the remaining path length of this chain.
getRemoteConnectionTimeout() - Method in class eu.emi.security.authn.x509.impl.CRLParameters
getResolvedWildcards() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
getResponse() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponseStructure
getRevocationCheckingMode() - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator
getRevocationCheckingMode() - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Gets the current revocation checking mode.
getRevocationCheckingMode() - Method in interface eu.emi.security.authn.x509.X509CertChainValidatorExt: Gets the current revocation checking mode.
getRevocationParameters() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Returns a copy (so modifications won't change this validator internal state) of revocation parameters.
getRevocationParams() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
getRevocationReason() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
getRevocationSettings() - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
getRevocationSettings() - Method in class eu.emi.security.authn.x509.impl.ValidatorParamsExt
getRevocationTime() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
getSAML() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: Used to get the SAML assertion in String format.
getSAMLAssertion() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets SAML assertions in a string format.
getSAMLExtension() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Returns the SAML extension from the certificate chain.
getSAMLExtensions() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Returns the SAML extensions from the certificate chain.
getSerialNumber() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets the proxy serial number.
getSerialNumber(Object) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.CertPathValidatorUtilitiesCanl
getSerialNumbers() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo
getServerAliases(String, Principal[]) - Method in class eu.emi.security.authn.x509.helpers.ssl.CredentialX509KeyManager
getServerSocketFactory() - Method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator2: Returns an SSLServerSocketFactory configured to check client certificates with a provided validator.
getServerSocketFactory(X509Credential, X509CertChainValidator) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Same as SocketFactoryCreator.getServerSocketFactory(X509Credential, X509CertChainValidator, SecureRandom) using SecureRandom implementation as the last argument.
getServerSocketFactory(X509Credential, X509CertChainValidator, SecureRandom) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Returns an SSLServerSocketFactory configured to check client certificates with a provided validator.
getSocketFactory() - Method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator2: Returns an SSLSocketFactory configured to check servers' certificates with a provided validator.
getSocketFactory(X509Credential, X509CertChainValidator) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Same as SocketFactoryCreator.getSocketFactory(X509Credential, X509CertChainValidator, SecureRandom) using SecureRandom implementation as the last argument.
getSocketFactory(X509Credential, X509CertChainValidator, SecureRandom) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Returns an SSLSocketFactory configured to check servers' certificates with a provided validator.
getSourceRestrictionExcludedAddresses() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets an excluded from source restriction IP addressSpace from the data structure.
getSourceRestrictionPermittedAddresses() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets the permitted source IP addressSpace of the Proxy.
getSSLContext() - Method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator2: Low level interface.
getSSLContext(X509Credential, X509CertChainValidator, SecureRandom) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Low level interface.
getSSLTrustManager() - Method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator2: Creates a SSL trustmanager which uses the provided validator.
getSSLTrustManager(X509CertChainValidator) - Static method in class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.

Creates a SSL trustmanager which uses the provided validator.
getStatus() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
getSubjectName() - Method in class eu.emi.security.authn.x509.helpers.AbstractDelegatingX509Credential
getSubjectName() - Method in class eu.emi.security.authn.x509.helpers.AbstractX509Credential
getSubjectName() - Method in interface eu.emi.security.authn.x509.X509Credential
getSuject() - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
getSupportedExtensions() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PKIXProxyCertificateChecker
getTargetRestrictionExcludedAddresses() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Gets an excluded target IP addressSpace from the data structure.
getTargetRestrictionPermittedAddresses() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Returns a permitted target IP address space of the Proxy.
getTrustAnchors() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getTrustAnchors() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
getTrustAnchors() - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
getTrustAnchors() - Method in interface eu.emi.security.authn.x509.helpers.trust.TrustAnchorStore
getTrustAnchorsFor(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl: Algorithm is as follows: for each certificate subject in chain, and for the issuer of the last certificate in chain, it is tried to load a trust anchor defined for such subject.
getTrustedCertificates() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
getTrustedCertificates() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
getTrustedCertificates() - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
getTrustedCertificates() - Method in interface eu.emi.security.authn.x509.helpers.trust.TrustAnchorStore
getTrustedIssuers() - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Returns a list of trusted issuers of certificates.
getTrustedIssuers() - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Returns a list of trusted issuers of certificates.
getTrustedIssuers() - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Returns a list of trusted issuers of certificates.
getTruststore() - Method in class eu.emi.security.authn.x509.impl.InMemoryKeystoreCertChainValidator: Returns the current trust store.
getTruststorePath() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKFSTrustAnchorStore
getTruststorePath() - Method in class eu.emi.security.authn.x509.impl.KeystoreCertChainValidator: Returns the current truststore path
getTruststorePath() - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Returns the trusted certificates directory path
getTruststorePaths() - Method in class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Returns the current truststore locations
getTruststoreUpdateInterval() - Method in class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Returns the interval between subsequent checks of the truststore files.
getTruststoreUpdateInterval() - Method in class eu.emi.security.authn.x509.impl.KeystoreCertChainValidator: Returns the interval between subsequent checks of the truststore file.
getType() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
getUnresolvedCriticalExtensions() - Method in class eu.emi.security.authn.x509.ValidationResult: Returns a set of unresolved critical certificate extensions.
getUnresolvedExtensionons(List<?>[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
getUpdateInterval() - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
getUpdateInterval() - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
getUpdateInterval() - Method in class eu.emi.security.authn.x509.helpers.trust.AbstractTrustAnchorStore
getUpdateInterval() - Method in interface eu.emi.security.authn.x509.helpers.trust.TrustAnchorStore
getUpdateInterval() - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Returns the interval between subsequent checks of the trusted certificates directory.
getURL() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: Returns the URL inside the proxy tracing data structure.
getURLLocations() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
getValidChain() - Method in class eu.emi.security.authn.x509.ValidationResult: Returns the resolved, valid certificate chain which was validated.
getValidityDate(PKIXParameters, Date) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
getValidPolicy() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
getValue() - Method in class eu.emi.security.authn.x509.proxy.OidAndValue
getX500Principal(String) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Constructs a X500Principal object from a RFC 2253 string.
GLOBUS - eu.emi.security.authn.x509.NamespaceCheckingMode: A Globus EACL is checked only.
GLOBUS_EUGRIDPMA - eu.emi.security.authn.x509.NamespaceCheckingMode: A Globus EACL is checked first.
GLOBUS_EUGRIDPMA_REQUIRE - eu.emi.security.authn.x509.NamespaceCheckingMode: A Globus EACL is checked first.
GLOBUS_REQUIRE - eu.emi.security.authn.x509.NamespaceCheckingMode: A Globus EACL is checked only.
globusEnabled() - Method in enum eu.emi.security.authn.x509.NamespaceCheckingMode
GlobusNamespacesParser - Class in eu.emi.security.authn.x509.helpers.ns: Parses a single .signing_policy file and returns NamespacePolicy object.
GlobusNamespacesParser(String) - Constructor for class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
GlobusNamespacesParser.InvalidPolicyFilenameException - Exception in eu.emi.security.authn.x509.helpers.ns
GlobusNamespacesParser.PolicySyntaxException - Exception in eu.emi.security.authn.x509.helpers.ns
GlobusNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: Provides an in-memory store of NamespacePolicy objects.
GlobusNamespacesStore(ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesStore
good - eu.emi.security.authn.x509.helpers.ocsp.OCSPResult.Status

H

handleEntry(String) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
handshakeCompleted(HandshakeCompletedEvent) - Method in class eu.emi.security.authn.x509.impl.AbstractHostnameToCertificateChecker: Deprecated.
hasChildren() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
hashCode() - Method in class eu.emi.security.authn.x509.helpers.trust.TrustAnchorExt
hasPrivateKey() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
hasPrivateKey() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyCSRImpl
hasPrivateKey() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCertificate
hasPrivateKey() - Method in interface eu.emi.security.authn.x509.proxy.ProxyCSR
HostnameMismatchCallback - Interface in eu.emi.security.authn.x509.impl: Deprecated.
use HostnameMismatchCallback2 and the related classes
HostnameMismatchCallback2 - Interface in eu.emi.security.authn.x509.impl: Implementation should react to the event when remote SSL peer's certificate is not matching its hostname.
HostnameToCertificateChecker - Class in eu.emi.security.authn.x509.helpers.ssl: Verifies if a peer's host name matches a DN of its certificate.
HostnameToCertificateChecker() - Constructor for class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
HostnameToCertificateChecker.ResultWrapper - Class in eu.emi.security.authn.x509.helpers.ssl

I

IF_AVAILABLE - eu.emi.security.authn.x509.OCSPCheckingMode: Use OCSP for each certificate if a responder is available.
IF_VALID - eu.emi.security.authn.x509.CrlCheckingMode: If a CRL for CA which issued a certificate being validated is present and valid then the certificate must not be listed on the CRL.
IGNORE - eu.emi.security.authn.x509.CrlCheckingMode: CRL is not checked even if it exists.
IGNORE - eu.emi.security.authn.x509.NamespaceCheckingMode: CA namespaces are fully ignored, even if present.
IGNORE - eu.emi.security.authn.x509.OCSPCheckingMode: Do not use OCSP.
IGNORE - Static variable in class eu.emi.security.authn.x509.impl.RevocationParametersExt: Constant which can be used to simply turn off any revocation checking.
IGNORE - Static variable in class eu.emi.security.authn.x509.RevocationParameters: Constant which can be used to simply turn off any revocation checking.
INCONSISTENT_PROXY_CHAIN - eu.emi.security.authn.x509.ValidationErrorCategory
INDEPENDENT_POLICY_OID - Static variable in class eu.emi.security.authn.x509.proxy.ProxyPolicy: The rarely used policy where the proxy is independent of the parent and does not inherit rights from it.
INHERITALL_POLICY_OID - Static variable in class eu.emi.security.authn.x509.proxy.ProxyPolicy: The normal, default policy, the proxy inherits the rights of the parent.
init(boolean) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PKIXProxyCertificateChecker
init(TrustAnchorStore, AbstractCRLStoreSPI, ProxySupport, RevocationParameters) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Use this method to initialize the parent from the extension class, if not using the non-default constructor.
init(CertPath, ExtPKIXParameters2) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer: Initializes the PKIXCertPathReviewer with the given CertPath and PKIXParameters params
initialListeners - Variable in class eu.emi.security.authn.x509.impl.ValidatorParams
InMemoryKeystoreCertChainValidator - Class in eu.emi.security.authn.x509.impl: The certificate validator which uses Java KeyStore as a truststore.
InMemoryKeystoreCertChainValidator(KeyStore) - Constructor for class eu.emi.security.authn.x509.impl.InMemoryKeystoreCertChainValidator: Constructs a new validator instance with default additional settings (see ValidatorParamsExt()).
InMemoryKeystoreCertChainValidator(KeyStore, ValidatorParamsExt) - Constructor for class eu.emi.security.authn.x509.impl.InMemoryKeystoreCertChainValidator: Constructs a new validator instance.
inputError - eu.emi.security.authn.x509.ValidationErrorCode
INSTANCE - Static variable in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
INVALID_PROXY_CERT - eu.emi.security.authn.x509.ValidationErrorCategory
invalidCertificatePath - eu.emi.security.authn.x509.ValidationErrorCode
invalidPolicy - eu.emi.security.authn.x509.ValidationErrorCode
invalidPolicyMapping - eu.emi.security.authn.x509.ValidationErrorCode
IP - Static variable in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
IPAddressHelper - Class in eu.emi.security.authn.x509.helpers.proxy: Helpers for IP addresses comparison.
IPAddressHelper() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.IPAddressHelper
is - Variable in class eu.emi.security.authn.x509.helpers.PKCS8DERReader
isAllowProxy() - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
isCritical() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
isCritical() - Method in class eu.emi.security.authn.x509.proxy.CertificateExtension
isDisposed() - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
isExpired(long) - Method in class eu.emi.security.authn.x509.helpers.CachedElement
isForwardCheckingSupported() - Method in class eu.emi.security.authn.x509.helpers.pkipath.PKIXProxyCertificateChecker
isGlobusFirst() - Method in enum eu.emi.security.authn.x509.NamespaceCheckingMode
isHostAllowedAsSource(byte[]) - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Checks if the given IP address is allowed as this proxy chain source.
isHostAllowedAsTarget(byte[]) - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Checks if the given IP address is allowed as this proxy chain target.
isLimited() - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Checks if the proxy shall be limited.
isLimited() - Method in class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Used to check whether the proxy chain is limited or not.
isLimited() - Method in class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Used to check whether the Certificate Signing Request is for a limited proxy or not.
isLimited(X509Certificate) - Static method in class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper: Checks if the certificate is a limited proxy in Globus sense, i.e.
isPermit() - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacePolicy
isPermit() - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
isPreferLocalResponders() - Method in class eu.emi.security.authn.x509.OCSPParametes
isPresent(URL) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
isProxy(X509Certificate) - Static method in class eu.emi.security.authn.x509.proxy.ProxyUtils: Checks whether the certificate is a proxy.
isProxy(X509Certificate[]) - Static method in class eu.emi.security.authn.x509.proxy.ProxyUtils: Checks whether the chain contains at least one proxy.
isProxySupport() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
isRequired() - Method in enum eu.emi.security.authn.x509.NamespaceCheckingMode
isSubjectMatching(X500Principal) - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacePolicy: Checks whether the given subject name is matching this policy.
isSubjectMatching(X500Principal) - Method in class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl: Checks whether the given subject name is matching this policy.
ISSUER_EXTENSION - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: The OID to identify issuer proxy tracing type.
isUseAllEnabled() - Method in class eu.emi.security.authn.x509.RevocationParameters
isUseNonce() - Method in class eu.emi.security.authn.x509.OCSPParametes
isValid() - Method in class eu.emi.security.authn.x509.ValidationResult: Returns whether validation was successful or not.
isWithinAddressSpace(byte[], byte[]) - Static method in class eu.emi.security.authn.x509.helpers.proxy.IPAddressHelper: Tests whether the ipAddress is within the address space defined by the ipAddressWithNetmask.

J

JavaAndBCStyle - Class in eu.emi.security.authn.x509.helpers: Extends BCStyle with additional recognized attribute names, to make it fully compatible with what the internal OpenJDK implementation supports when parsing string RFC 2253 DNs.
JavaAndBCStyle() - Constructor for class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
JDKFSTrustAnchorStore - Class in eu.emi.security.authn.x509.helpers.trust: Implementation of the TrustAnchorStore which load JDK's KeyStore from a file.
JDKFSTrustAnchorStore(String, char[], String, Timer, long, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.trust.JDKFSTrustAnchorStore
JDKInMemoryTrustAnchorStore - Class in eu.emi.security.authn.x509.helpers.trust: Implementation of the TrustAnchorStore which uses JDK's KeyStore as a in-memory storage.
JDKInMemoryTrustAnchorStore(KeyStore) - Constructor for class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
JDKInMemoryTrustAnchorStore(KeyStore, Timer, long, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore

K

KEY_PASSWD - Static variable in class eu.emi.security.authn.x509.helpers.AbstractX509Credential
KeyAndCertCredential - Class in eu.emi.security.authn.x509.impl: Wraps a PrivateKey and X509Certificate chain as a X509Credential.
KeyAndCertCredential(PrivateKey, X509Certificate[]) - Constructor for class eu.emi.security.authn.x509.impl.KeyAndCertCredential: Creates a new instance from the provided key and certificates.
keystore - Variable in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
KeystoreCertChainValidator - Class in eu.emi.security.authn.x509.impl: The certificate validator which uses Java KeyStore as a truststore.
KeystoreCertChainValidator(String, char[], String, long) - Constructor for class eu.emi.security.authn.x509.impl.KeystoreCertChainValidator: Constructs a new validator instance with default additional settings (see ValidatorParamsExt()).
KeystoreCertChainValidator(String, char[], String, long, ValidatorParamsExt) - Constructor for class eu.emi.security.authn.x509.impl.KeystoreCertChainValidator: Constructs a new validator instance.
KeystoreCredential - Class in eu.emi.security.authn.x509.impl: Wraps a Java KeyStore in form suitable for use in JSSE.
KeystoreCredential(String, char[], char[], String, String) - Constructor for class eu.emi.security.authn.x509.impl.KeystoreCredential: Reads a Java KeyStore to provide an interface suitable to use it in JSSE.
KeyStoreHelper - Class in eu.emi.security.authn.x509.helpers: KeyStore class utility helpers
KeyStoreHelper() - Constructor for class eu.emi.security.authn.x509.helpers.KeyStoreHelper
ks - Variable in class eu.emi.security.authn.x509.helpers.AbstractX509Credential

L

LazyEuGridPmaNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: EuGridPMA namespace policies are loaded on demand by this store and are cached in memory.
LazyEuGridPmaNamespacesStore(ObserversHandler, boolean, String, long) - Constructor for class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
LazyGlobusNamespacesStore - Class in eu.emi.security.authn.x509.helpers.ns: Globus EACL policies are loaded on demand by this store and are cached in memory.
LazyGlobusNamespacesStore(ObserversHandler, boolean, String, long) - Constructor for class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore
LazyOpensslCRLStoreSpi - Class in eu.emi.security.authn.x509.helpers.crl: Handles an Openssl-like CRL store.
LazyOpensslCRLStoreSpi(String, long, ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi: Creates a new CRL store.
LazyOpensslTrustAnchorStoreImpl - Class in eu.emi.security.authn.x509.helpers.trust: Implementation of the truststore which uses CA certificates from a single directory in OpenSSL format.
LazyOpensslTrustAnchorStoreImpl(String, long, ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
LEGACY - eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: Legacy Globus 2 proxy
LEGACY - eu.emi.security.authn.x509.proxy.ProxyChainType: A chain contains only legacy Globus 2 proxies.
LEGACY - eu.emi.security.authn.x509.proxy.ProxyType: Legacy Globus 2 proxy
LEGACY_OPENSSL_PRIVATE_KEY - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType
LEGACY_SAML_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: The legacy OID for the SAML assertion.
LIMITED_PROXY_OID - Static variable in class eu.emi.security.authn.x509.proxy.ProxyPolicy: The limited proxy, which should prevent the proxy from being used for job submission.
listeners - Variable in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
load() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
loadCertificate(InputStream, CertificateUtils.Encoding) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads a single certificate from the provided input stream.
loadCertificateChain(InputStream, CertificateUtils.Encoding) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads a chain of certificates from the provided input stream.
loadCertificates(InputStream, CertificateUtils.Encoding) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads a set of (possibly unrelated to each other) certificates from the provided input stream.
loadCerts(URL) - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore
loadCRL(File) - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
loadCRL(URL) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
loadCrlDistPointError - eu.emi.security.authn.x509.ValidationErrorCode
loadingNotification(String, String, StoreUpdateListener.Severity, Exception) - Method in interface eu.emi.security.authn.x509.StoreUpdateListener: Informs about an update related to loading of trust related material, like loading or downloading a CA certificate, CRL or others.
loadKeystore(String, char[], String) - Method in class eu.emi.security.authn.x509.impl.KeystoreCredential
loadPEMKeystore(InputStream, char[], char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads certificates and private keys from the PEM input stream (usually from file).
loadPEMKeystore(InputStream, PasswordSupplier, char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: As CertificateUtils.loadPEMKeystore(InputStream, char[], char[]) but this version allows for providing input key's encryption password only when needed.
loadPEMPrivateKey(InputStream, PasswordSupplier) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads a private key from the provided input stream.
loadPrivateKey(InputStream, CertificateUtils.Encoding, char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Loads a private key from the provided input stream.
localInvalidCRL - eu.emi.security.authn.x509.ValidationErrorCode
localResponders - Variable in class eu.emi.security.authn.x509.OCSPParametes
LONG_PROXY - Static variable in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions

M

makeReason(Throwable) - Static method in class eu.emi.security.authn.x509.ValidationError
makeReasonFromStack(Throwable) - Static method in class eu.emi.security.authn.x509.ValidationError
makeRegexpClassicWildcard(String) - Static method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser: Converts wildcard string to Java regexp, ensuring that literal sequences are correctly escaped.
makeRegexpHostWildcard(String) - Static method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker: Converts hostname wildcard string to Java regexp, ensuring that literal sequences are correctly escaped.
map(ErrorBundle, int, X509Certificate[]) - Static method in class eu.emi.security.authn.x509.helpers.pkipath.BCErrorMapper
matchesDNS(String, String) - Static method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
matchesIP(String, String) - Method in class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker
maxTtl - Variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
MEDIUM - eu.emi.security.authn.x509.impl.FormatMode: Medium form: subject, issuer and validity is printed in multiple lines
MEDIUM_ONE_LINE - eu.emi.security.authn.x509.impl.FormatMode: Medium form: subject, issuer and validity is printed, in one line
MissingPasswordForEncryptedKeyException() - Constructor for exception eu.emi.security.authn.x509.impl.CertificateUtils.MissingPasswordForEncryptedKeyException
MIXED - eu.emi.security.authn.x509.proxy.ProxyChainType: A chain contains proxies of different types (legacy, draft RFC or RFC).

N

NAME_CONSTRAINT - eu.emi.security.authn.x509.ValidationErrorCategory
nameMismatch(X509Certificate, String) - Method in class eu.emi.security.authn.x509.helpers.ssl.DisabledNameMismatchCallback
nameMismatch(X509Certificate, String) - Method in class eu.emi.security.authn.x509.helpers.ssl.EnforcingNameMismatchCallback
nameMismatch(X509Certificate, String) - Method in interface eu.emi.security.authn.x509.impl.HostnameMismatchCallback2: This method is called whenever peer's host name is not matching the peer's certificate DN.
nameMismatch(HandshakeCompletedEvent, X509Certificate, String) - Method in class eu.emi.security.authn.x509.impl.AbstractHostnameToCertificateChecker: Deprecated.

This method is called whenever peer's host name is not matching the peer's certificate DN.
nameMismatch(SSLSocket, X509Certificate, String) - Method in interface eu.emi.security.authn.x509.impl.HostnameMismatchCallback: Deprecated.

This method is called whenever peer's host name is not matching the peer's certificate DN.
NAMESPACE - eu.emi.security.authn.x509.ValidationErrorCategory
NamespaceChecker - Class in eu.emi.security.authn.x509.helpers.ns: Implements namespace policy checking.
NamespaceChecker(NamespaceCheckingMode, NamespacesStore, NamespacesStore) - Constructor for class eu.emi.security.authn.x509.helpers.ns.NamespaceChecker
NamespaceCheckingMode - Enum in eu.emi.security.authn.x509: Used to define the CA namespace checking mode.
NamespacePolicy - Interface in eu.emi.security.authn.x509.helpers.ns: Represents a namespace policy, i.e.
NamespacesParser - Interface in eu.emi.security.authn.x509.helpers.ns: Implemented by namespace parsers.
NamespacesStore - Interface in eu.emi.security.authn.x509.helpers.ns: Store of NamespacePolicy objects.
ncExtError - eu.emi.security.authn.x509.ValidationErrorCode
ncSubjectNameError - eu.emi.security.authn.x509.ValidationErrorCode
noBaseCRL - eu.emi.security.authn.x509.ValidationErrorCode
noBasicConstraints - eu.emi.security.authn.x509.ValidationErrorCode
noCACert - eu.emi.security.authn.x509.ValidationErrorCode
noCertSign - eu.emi.security.authn.x509.ValidationErrorCode
noCrlForExpiredCert - eu.emi.security.authn.x509.ValidationErrorCode
noCrlInCertstore - eu.emi.security.authn.x509.ValidationErrorCode
noCrlSigningPermited - eu.emi.security.authn.x509.ValidationErrorCode
noIssuerPublicKey - eu.emi.security.authn.x509.ValidationErrorCode
NonValidatingCertPathBuilder - Class in eu.emi.security.authn.x509.helpers.pkipath: This class is a modified copy of BC's PKIXCertPathBuilderSpi.
NonValidatingCertPathBuilder() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.NonValidatingCertPathBuilder
normalize(String) - Static method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
normalize(String) - Static method in class eu.emi.security.authn.x509.impl.OpensslNameUtils: Performs cleaning of the provided openssl legacy DN.
NORMALIZED_LABELS - Static variable in class eu.emi.security.authn.x509.impl.OpensslNameUtils: Holds mappings of labels which occur in the wild but are output differently by OpenSSL.
NOT_A_PROXY - eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: not a proxy
NOTIFICATION - eu.emi.security.authn.x509.StoreUpdateListener.Severity: Plain notification about successful update of the store.
notifyListeners(ValidationError) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Notifies all registered listeners.
notifyObservers(String, StoreUpdateListener.Severity, Exception) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
notifyObservers(String, String, StoreUpdateListener.Severity, Exception) - Method in class eu.emi.security.authn.x509.helpers.ObserversHandler
notPermittedDN - eu.emi.security.authn.x509.ValidationErrorCode
notPermittedEmail - eu.emi.security.authn.x509.ValidationErrorCode
notPermittedIP - eu.emi.security.authn.x509.ValidationErrorCode
noTrustAnchorFound - eu.emi.security.authn.x509.ValidationErrorCode
noValidCrlFound - eu.emi.security.authn.x509.ValidationErrorCode
noValidPolicyTree - eu.emi.security.authn.x509.ValidationErrorCode
NS_REGEXP - Static variable in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
NS_REGEXP - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
nsDeny - eu.emi.security.authn.x509.ValidationErrorCode
nsNotAccepted - eu.emi.security.authn.x509.ValidationErrorCode
nsUndefinedAndRequired - eu.emi.security.authn.x509.ValidationErrorCode

O

observers - Variable in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
observers - Variable in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
observers - Variable in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
observers - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
observers - Variable in class eu.emi.security.authn.x509.helpers.trust.AbstractTrustAnchorStore
ObserversHandler - Class in eu.emi.security.authn.x509.helpers: Thread safe class maintaining a collection of StoreUpdateListeners.
ObserversHandler() - Constructor for class eu.emi.security.authn.x509.helpers.ObserversHandler
ObserversHandler(Collection<? extends StoreUpdateListener>) - Constructor for class eu.emi.security.authn.x509.helpers.ObserversHandler
OCSP - eu.emi.security.authn.x509.ValidationErrorCategory
OCSP - Static variable in interface eu.emi.security.authn.x509.StoreUpdateListener
OCSP_CACHE_PFX - Static variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPVerifier
OCSP_CRL - eu.emi.security.authn.x509.RevocationParameters.RevocationCheckingOrder
OCSPCacheBase - Class in eu.emi.security.authn.x509.helpers.ocsp: Common base class for responses and responders caches.
OCSPCacheBase(long, File, String) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
OCSPCachingClient - Class in eu.emi.security.authn.x509.helpers.ocsp: OCSP client which adds a cache layer on top of OCSPClientImpl.
OCSPCachingClient(long, File, String) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPCachingClient
ocspCertRevoked - eu.emi.security.authn.x509.ValidationErrorCode
OCSPCheckingMode - Enum in eu.emi.security.authn.x509: Defines On-line Certificate Status Protocol usage mode.
OCSPClientImpl - Class in eu.emi.security.authn.x509.helpers.ocsp: OCSP client is responsible for the network related activity of the OCSP invocation pipeline.
OCSPClientImpl() - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl
ocspNoResponder - eu.emi.security.authn.x509.ValidationErrorCode
ocspOtherError - eu.emi.security.authn.x509.ValidationErrorCode
ocspParameters - Variable in class eu.emi.security.authn.x509.RevocationParameters
OCSPParametes - Class in eu.emi.security.authn.x509: Manages configuration of OCSP support for all truststores.
OCSPParametes() - Constructor for class eu.emi.security.authn.x509.OCSPParametes: Default constructor using OCSPCheckingMode.IF_AVAILABLE.
OCSPParametes(OCSPCheckingMode) - Constructor for class eu.emi.security.authn.x509.OCSPParametes: Constructor without any local responders and default settings.
OCSPParametes(OCSPCheckingMode, OCSPResponder) - Constructor for class eu.emi.security.authn.x509.OCSPParametes: Uses default settings for timeout (OCSPParametes.DEFAULT_TIMEOUT), and cache (OCSPParametes.DEFAULT_CACHE and no disk persistence of cached responses), prefers local responders, do not sign requests and do not use nonce.
OCSPParametes(OCSPCheckingMode, OCSPResponder[], int, boolean, boolean, int, String) - Constructor for class eu.emi.security.authn.x509.OCSPParametes: Full constructor
OCSPParametes(OCSPCheckingMode, OCSPResponder[], int, String) - Constructor for class eu.emi.security.authn.x509.OCSPParametes: Uses default settings for timeout (OCSPParametes.DEFAULT_TIMEOUT), prefers local responders, do not sign requests and do not use nonce.
OCSPResponder - Class in eu.emi.security.authn.x509: Configuration of a local responder.
OCSPResponder(URL, X509Certificate) - Constructor for class eu.emi.security.authn.x509.OCSPResponder: Creates a new instance
ocspResponderQueryError - eu.emi.security.authn.x509.ValidationErrorCode
OCSPRespondersCache - Class in eu.emi.security.authn.x509.helpers.ocsp: OCSP failing responses cache: in memory with disk persistence.
OCSPRespondersCache(long, File, String) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPRespondersCache
ocspResponseInvalid - eu.emi.security.authn.x509.ValidationErrorCode
OCSPResponsesCache - Class in eu.emi.security.authn.x509.helpers.ocsp: OCSP responses cache: in memory with disk persistence.
OCSPResponsesCache(long, File, String) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponsesCache
OCSPResponseStructure - Class in eu.emi.security.authn.x509.helpers.ocsp: Holds OCSP response (parsed) and some additional metadata, e.g.
OCSPResponseStructure(OCSPResp, Date) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponseStructure
OCSPResult - Class in eu.emi.security.authn.x509.helpers.ocsp
OCSPResult(OCSPResult.Status) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
OCSPResult(SingleResp) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
OCSPResult.Status - Enum in eu.emi.security.authn.x509.helpers.ocsp
OCSPRevocationChecker - Class in eu.emi.security.authn.x509.helpers.ocsp: Implementation of RevocationChecker using CRLs, the OCSPVerifier
OCSPRevocationChecker(OCSPVerifier, OCSPCheckingMode) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPRevocationChecker
OCSPVerifier - Class in eu.emi.security.authn.x509.helpers.ocsp: OCSP checker - uses provided OCSPParametes to perform OCSP calls using OCSPCachingClient and returns the final response.
OCSPVerifier(OCSPParametes, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.ocsp.OCSPVerifier
oid - Variable in class eu.emi.security.authn.x509.proxy.OidAndValue
OidAndValue<T extends org.bouncycastle.asn1.ASN1Encodable> - Class in eu.emi.security.authn.x509.proxy: Stores DER form of a certificate attribute value with its OID.
OidAndValue() - Constructor for class eu.emi.security.authn.x509.proxy.OidAndValue
OidAndValue(String, T) - Constructor for class eu.emi.security.authn.x509.proxy.OidAndValue
onlineCRLWrongCA - eu.emi.security.authn.x509.ValidationErrorCode
onlineInvalidCRL - eu.emi.security.authn.x509.ValidationErrorCode
onValidationError(ValidationError) - Method in interface eu.emi.security.authn.x509.ValidationErrorListener: Invoked upon validation error during chain processing.
openssl1Mode - Variable in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
OpensslCertChainValidator - Class in eu.emi.security.authn.x509.impl: The certificate validator which uses OpenSSL directory as a truststore.
OpensslCertChainValidator(String) - Constructor for class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Constructs a new validator instance using the default settings: CRLs are used if present, proxy certificates are supported and directory is rescanned every 10mins.
OpensslCertChainValidator(String, boolean, NamespaceCheckingMode, long, ValidatorParams) - Constructor for class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Constructs a new validator instance.
OpensslCertChainValidator(String, boolean, NamespaceCheckingMode, long, ValidatorParams, boolean) - Constructor for class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Constructs a new validator instance.
OpensslCertChainValidator(String, NamespaceCheckingMode, long) - Constructor for class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Constructs a new validator instance with default additional settings (see ValidatorParams()).
OpensslCertChainValidator(String, NamespaceCheckingMode, long, ValidatorParams) - Constructor for class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Constructs a new validator instance.
OpensslCRLStoreSpi - Class in eu.emi.security.authn.x509.helpers.crl: Implementation of the CRL store which uses CRLs from a single directory in OpenSSL format.
OpensslCRLStoreSpi(String, long, Timer, ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.crl.OpensslCRLStoreSpi
OpensslNamespacePolicyImpl - Class in eu.emi.security.authn.x509.helpers.ns: Represents a namespace policy, i.e.
OpensslNamespacePolicyImpl(String, String, String, boolean, String) - Constructor for class eu.emi.security.authn.x509.helpers.ns.OpensslNamespacePolicyImpl
OpensslNameUtils - Class in eu.emi.security.authn.x509.impl: This class provides support for the legacy Openssl format of DN encoding.
OpensslNameUtils() - Constructor for class eu.emi.security.authn.x509.impl.OpensslNameUtils
opensslToRfc2253(String) - Static method in class eu.emi.security.authn.x509.impl.OpensslNameUtils: Deprecated.
This method is not planned for removal but it is marked as deprecated as it is highly unreliable and you should update your code not to use openssl style DNs at all
opensslToRfc2253(String, boolean) - Static method in class eu.emi.security.authn.x509.impl.OpensslNameUtils: Deprecated.
This method is not planned for removal but it is marked as deprecated as it is highly unreliable and you should update your code not to use openssl style DNs at all
OpensslTrustAnchorStore - Interface in eu.emi.security.authn.x509.helpers.trust: Implementations of this interface are used by OpensslCertChainValidator to get access to the trust anchor store.
OpensslTrustAnchorStoreImpl - Class in eu.emi.security.authn.x509.helpers.trust: Implementation of the truststore which uses CA certificates from a single directory in OpenSSL format.
OpensslTrustAnchorStoreImpl(String, Timer, long, boolean, boolean, ObserversHandler, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl
OpensslTruststoreHelper - Class in eu.emi.security.authn.x509.helpers.trust: Several static methods helping to mangle truststore file paths in openssl style.
OpensslTruststoreHelper() - Constructor for class eu.emi.security.authn.x509.helpers.trust.OpensslTruststoreHelper
order - Variable in class eu.emi.security.authn.x509.RevocationParameters
OTHER - eu.emi.security.authn.x509.ValidationErrorCategory

P

params - Variable in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
parent - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
parse() - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
parse() - Method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
parse() - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacesParser
ParserUtils - Class in eu.emi.security.authn.x509.helpers.ns: Common helpers for namespace file parsers.
ParserUtils() - Constructor for class eu.emi.security.authn.x509.helpers.ns.ParserUtils
partnerRef - Variable in class eu.emi.security.authn.x509.helpers.WeakTimerTask
PasswordSupplier - Interface in eu.emi.security.authn.x509.helpers: Provides password on demand.
pathLen - Variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension: The sub proxy path length, default is not limited.
pathLenghtExtended - eu.emi.security.authn.x509.ValidationErrorCode
pem - Variable in class eu.emi.security.authn.x509.helpers.CachedPEMReader
PEM - eu.emi.security.authn.x509.impl.CertificateUtils.Encoding
PEMCredential - Class in eu.emi.security.authn.x509.impl: Wraps certificate and private key stored in PEM format.
PEMCredential(InputStream, char[]) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: Constructs the object from InputStream which can be used to read a private key and certificate in PEM keystore format, i.e.
PEMCredential(InputStream, PasswordSupplier) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: As PEMCredential(InputStream, char[]) but this version allows for providing decryption key only when needed.
PEMCredential(InputStream, InputStream, char[]) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: Constructs the object from two InputStreams which can be used to read a private key and certificate in PEM format.
PEMCredential(InputStream, InputStream, PasswordSupplier) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: As PEMCredential(InputStream, InputStream, char[]) but password is retrieved on demand.
PEMCredential(Reader, Reader, char[]) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: Constructs the object from two Readers which can be used to read a private key and certificate in PEM format.
PEMCredential(Reader, Reader, PasswordSupplier) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: As PEMCredential(Reader, Reader, char[]) but password is retrieved on demand.
PEMCredential(String, char[]) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: Constructs the object from InputStream which can be used to read a private key and certificate in PEM keystore format, i.e.
PEMCredential(String, PasswordSupplier) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: As PEMCredential(String, char[]) but this version allows for providing decryption key only when needed.
PEMCredential(String, String, char[]) - Constructor for class eu.emi.security.authn.x509.impl.PEMCredential: Constructs the object from two files containing private key and certificate in PEM format.
PKCS8DERReader - Class in eu.emi.security.authn.x509.helpers: This class extends the PEMParser class from the BC library.
PKCS8DERReader(InputStream, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.PKCS8DERReader
pkixParams - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
PKIXPolicyNode - Class in eu.emi.security.authn.x509.helpers.pkipath.bc
PKIXPolicyNode(List, int, Set, PolicyNode, Set, String, boolean) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
PKIXProxyCertificateChecker - Class in eu.emi.security.authn.x509.helpers.pkipath: Checker which handles proxy certificate extensions so BC won't report them as unknown.
PKIXProxyCertificateChecker() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.PKIXProxyCertificateChecker
PlainCRLStoreSpi - Class in eu.emi.security.authn.x509.helpers.crl: Handles an in-memory CRL store.
PlainCRLStoreSpi(CRLParameters, Timer, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi: Creates a new CRL store.
PlainCRLValidator - Class in eu.emi.security.authn.x509.helpers.pkipath: An abstract validator which provides a CRL support common for validators using PlainCRLStoreSpi.
PlainCRLValidator(RevocationParametersExt, Collection<? extends StoreUpdateListener>) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Constructs a new validator instance.
PlainStoreUtils - Class in eu.emi.security.authn.x509.helpers.pkipath: Class for CA or CRL stores with utility methods for handling list of locations as wildcards or URLs.
PlainStoreUtils(String, String, List<String>) - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
policiesByName - Variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesStore: This structure holds the complete namespaces information.
policiesByName - Variable in class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore: This structure holds the namespaces cache.
policy - Variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension: The underlying policy object.
POLICY - eu.emi.security.authn.x509.ValidationErrorCategory
policyConstExtError - eu.emi.security.authn.x509.ValidationErrorCode
policyExtError - eu.emi.security.authn.x509.ValidationErrorCode
policyInhibitExtError - eu.emi.security.authn.x509.ValidationErrorCode
policyMapExtError - eu.emi.security.authn.x509.ValidationErrorCode
policyQualifierError - eu.emi.security.authn.x509.ValidationErrorCode
policyQualifiers - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
POS_RIGHTS - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
preferLocalResponders - Variable in class eu.emi.security.authn.x509.OCSPParametes
prefix - Variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCacheBase
preNormalize(String) - Static method in class eu.emi.security.authn.x509.helpers.DNComparator: Returns a form of the original DN which will be properly parsed by JDK X500Principal class by replacing attribute names unknown by the X500Principal with OIDs.
PRIVATE_KEY - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType
processErrorList(List<ValidationError>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
processingError(HandshakeCompletedEvent, Exception) - Method in class eu.emi.security.authn.x509.impl.AbstractHostnameToCertificateChecker: Deprecated.

This method is called whenever there is an error when processing the peer's certificate and hostname.
processLengthConstError - eu.emi.security.authn.x509.ValidationErrorCode
PROXY_TRACING_ISSUER_EXTENSION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: The OID to identify issuer proxy tracing extension.
PROXY_TRACING_SUBJECT_EXTENSION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: The OID to identify subject proxy tracing extension.
PROXY_VALIDATION_GRACE_PERIOD - Static variable in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator
ProxyACExtension - Class in eu.emi.security.authn.x509.helpers.proxy: A class for handling the VOMS AC extension in certificates (OID: 1.3.6.1.4.1.8005.100.100.5)
ProxyACExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension: Generates a new ProxyACExtension object form the byte array
ProxyACExtension(AttributeCertificate[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension: Used to generate an instance from the AttributeCertificate object.
ProxyAddressRestrictionData - Class in eu.emi.security.authn.x509.helpers.proxy: An utility class for defining the allowed address space, used both to define the source and target restrictions.
ProxyAddressRestrictionData() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Constructor to generate an empty ProxyRestrictionData object for creating new restrictions.
ProxyAddressRestrictionData(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Parses the restriction data from byte array.
proxyCASet - eu.emi.security.authn.x509.ValidationErrorCode
ProxyCertificate - Interface in eu.emi.security.authn.x509.proxy: Wraps information about a new proxy which was generated by the ProxyGenerator.
ProxyCertificateImpl - Class in eu.emi.security.authn.x509.helpers.proxy: Default implementation of the ProxyCertificate interface.
ProxyCertificateImpl(X509Certificate[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
ProxyCertificateImpl(X509Certificate[], PrivateKey) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyCertificateImpl
ProxyCertificateOptions - Class in eu.emi.security.authn.x509.proxy: Holds parameters which are used to create a proxy certificate using only a certificate chain.
ProxyCertificateOptions(X509Certificate[]) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions: Create a new proxy cert based on the parent cert chain.
ProxyCertInfoExtension - Class in eu.emi.security.authn.x509.helpers.proxy: Proxy cert info extension class.
ProxyCertInfoExtension() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyCertInfoExtension
ProxyChainInfo - Class in eu.emi.security.authn.x509.proxy: A class to get an information from a proxy certificate chain.
ProxyChainInfo(X509Certificate[]) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyChainInfo: Generates new instance of this class using the certificate chain as the source of the data.
ProxyChainType - Enum in eu.emi.security.authn.x509.proxy: Specifies the type of the proxy chain.
ProxyCSR - Interface in eu.emi.security.authn.x509.proxy: Wraps information about a new proxy certificate signing request which was generated by the ProxyCSRGenerator.
ProxyCSRGenerator - Class in eu.emi.security.authn.x509.proxy: Generates a proxy certificate signing request.
ProxyCSRGenerator() - Constructor for class eu.emi.security.authn.x509.proxy.ProxyCSRGenerator
ProxyCSRImpl - Class in eu.emi.security.authn.x509.helpers.proxy: ProxyCSR implementation.
ProxyCSRImpl(PKCS10CertificationRequest, PrivateKey) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyCSRImpl
ProxyCSRInfo - Class in eu.emi.security.authn.x509.proxy: A class to get the information from the proxy certificate request.
ProxyCSRInfo(PKCS10CertificationRequest) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyCSRInfo: Generates new instance of this class using the Certificate Signing Request
proxyEECInChain - eu.emi.security.authn.x509.ValidationErrorCode
ProxyGenerator - Class in eu.emi.security.authn.x509.proxy: Utilities to create proxy certificates.
ProxyGenerator() - Constructor for class eu.emi.security.authn.x509.proxy.ProxyGenerator
ProxyGeneratorHelper - Class in eu.emi.security.authn.x509.helpers.proxy: Actual implementation of the Proxy generation.
ProxyGeneratorHelper() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyGeneratorHelper
ProxyHelper - Class in eu.emi.security.authn.x509.helpers.proxy: Various helpers for handling proxy certificates
ProxyHelper() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyHelper
proxyInconsistentlyLimited - eu.emi.security.authn.x509.ValidationErrorCode
proxyIssuedByCa - eu.emi.security.authn.x509.ValidationErrorCode
proxyIssuerAltNameSet - eu.emi.security.authn.x509.ValidationErrorCode
proxyIssuerNoDsig - eu.emi.security.authn.x509.ValidationErrorCode
proxyLength - eu.emi.security.authn.x509.ValidationErrorCode
proxyNoIssuer - eu.emi.security.authn.x509.ValidationErrorCode
proxyNoIssuerSubject - eu.emi.security.authn.x509.ValidationErrorCode
ProxyPolicy - Class in eu.emi.security.authn.x509.proxy: Proxy policy ASN1 class.
ProxyPolicy(String) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyPolicy: Generate basic proxy policy.
ProxyPolicy(String, ASN1OctetString) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyPolicy: Generate new policy object using language defined by oid and the policy.
ProxyPolicy(ASN1Sequence) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyPolicy: Read a new proxy policy object from the ASN1 sequence.
ProxyRequestOptions - Class in eu.emi.security.authn.x509.proxy: Holds parameters which are used to issue a proxy certificate using a provided Certificate Signing Request and a local certificate chain.
ProxyRequestOptions(X509Certificate[], PKCS10CertificationRequest) - Constructor for class eu.emi.security.authn.x509.proxy.ProxyRequestOptions: Create a new proxy certificate based on certification request and a certificate chain.
ProxySAMLExtension - Class in eu.emi.security.authn.x509.helpers.proxy: A class for handling the SAML extension in the Certificate.
ProxySAMLExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: Generates a new SAMLExtension object from the byte array
ProxySAMLExtension(String) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: Used to generate an instance from the SAML assertion in String format.
proxySubjectAltNameSet - eu.emi.security.authn.x509.ValidationErrorCode
proxySubjectBaseWrong - eu.emi.security.authn.x509.ValidationErrorCode
proxySubjectInconsistent - eu.emi.security.authn.x509.ValidationErrorCode
proxySubjectLastRDNNotCN - eu.emi.security.authn.x509.ValidationErrorCode
proxySubjectMultiLastRDN - eu.emi.security.authn.x509.ValidationErrorCode
proxySubjectOneRDN - eu.emi.security.authn.x509.ValidationErrorCode
proxySupport - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
ProxySupport - Enum in eu.emi.security.authn.x509: Defines proxy support mode for validators.
ProxyTracingExtension - Class in eu.emi.security.authn.x509.helpers.proxy: A class for generating and parsing the proxy tracing extensions.
ProxyTracingExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: Parses the information in the byte array (GeneralNames ASN1 sequence of GeneralName) into a proxy tracing extension object.
ProxyTracingExtension(String) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: Generates a new proxy tracing item from the URL.
ProxyType - Enum in eu.emi.security.authn.x509.proxy: Specifies the type of the proxy.
proxyTypeInconsistent - eu.emi.security.authn.x509.ValidationErrorCode
ProxyUtils - Class in eu.emi.security.authn.x509.proxy: Utility methods for checking properties of proxy certificates.
ProxyUtils() - Constructor for class eu.emi.security.authn.x509.proxy.ProxyUtils
pubKeyError - eu.emi.security.authn.x509.ValidationErrorCode

Q

QcStatementExtError - eu.emi.security.authn.x509.ValidationErrorCode
queryForCertificate(URL, X509Certificate, X509Certificate, X509Credential, boolean, int) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCachingClient: Returns the checked certificate status.
queryForCertificate(URL, X509Certificate, X509Certificate, X509Credential, boolean, int) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl: Returns a verified single response, related to the checked certificate.
queryForCertificate(URL, X509Certificate, X509Certificate, X509Credential, boolean, int, OCSPClientImpl) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPCachingClient: Returns the checked certificate status, using a custom client.

R

read() - Method in class eu.emi.security.authn.x509.helpers.ReaderInputStream: Read a single byte.
read(byte[]) - Method in class eu.emi.security.authn.x509.helpers.ReaderInputStream: Read the specified number of bytes into an array.
read(byte[], int, int) - Method in class eu.emi.security.authn.x509.helpers.ReaderInputStream: Read the specified number of bytes into an array.
readDERCertificate(InputStream) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers
readDERCertificates(InputStream) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers
ReaderInputStream - Class in eu.emi.security.authn.x509.helpers: InputStream implementation that reads a character stream from a Reader and transforms it to a byte stream using a specified charset encoding.
ReaderInputStream(Reader) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream that uses the default character encoding with a default input buffer size of 1024 characters.
ReaderInputStream(Reader, String) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream with a default input buffer size of 1024 characters.
ReaderInputStream(Reader, String, int) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream.
ReaderInputStream(Reader, Charset) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream with a default input buffer size of 1024 characters.
ReaderInputStream(Reader, CharsetEncoder) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream.
ReaderInputStream(Reader, CharsetEncoder, int) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream.
ReaderInputStream(Reader, Charset, int) - Constructor for class eu.emi.security.authn.x509.helpers.ReaderInputStream: Construct a new ReaderInputStream.
readPemObject() - Method in class eu.emi.security.authn.x509.helpers.CachedPEMReader: Generate BC's PemObject from the input stream.
readPemObject() - Method in class eu.emi.security.authn.x509.helpers.FlexiblePEMReader: Generate BC's PemObject
readPemObject() - Method in class eu.emi.security.authn.x509.helpers.PKCS8DERReader: Generate BC's PemObject from the input stream.
REASONS - Static variable in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
reloadCerts(Collection<URL>) - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore: For all URLs tries to load a CA cert.
reloadCerts(Collection<URL>) - Method in class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl: For all URLs tries to load a CA cert and namespaces
reloadCRL(File) - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
reloadCRL(URL) - Method in class eu.emi.security.authn.x509.helpers.crl.OpensslCRLStoreSpi: Tries to load a CRL
reloadCRL(URL) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
removeAllObservers() - Method in class eu.emi.security.authn.x509.helpers.ObserversHandler
removeChild(PKIXPolicyNode) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
removeEldestEntry(Map.Entry<S, T>) - Method in class eu.emi.security.authn.x509.helpers.ocsp.BoundedSizeLruMap
removeObserver(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.ObserversHandler: Unregisters a previously registered CA or CRL update listener.
removeUpdateListener(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Unregisters a previously registered CA or CRL update listener.
removeUpdateListener(StoreUpdateListener) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Unregisters a previously registered CA or CRL update listener.
removeUpdateListener(StoreUpdateListener) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Unregisters a previously registered CA or CRL update listener.
removeValidationListener(ValidationErrorListener) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Unregisters a previously registered validation listener.
removeValidationListener(ValidationErrorListener) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Unregisters a previously registered validation listener.
removeValidationListener(ValidationErrorListener) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Unregisters a previously registered validation listener.
REQUIRE - eu.emi.security.authn.x509.CrlCheckingMode: A CRL for CA which issued a certificate being validated must be present and valid and the certificate must not be on the list.
REQUIRE - eu.emi.security.authn.x509.OCSPCheckingMode: Require, for each checked certificate, that at least one valid OCSP responder is defined and that at least one responder of those defined returns a correct certificate status.
RESOURCE_NAME - Static variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.FixedBCPKIXCertPathReviewer
ResultWrapper() - Constructor for class eu.emi.security.authn.x509.helpers.ssl.HostnameToCertificateChecker.ResultWrapper
RevocationChecker - Interface in eu.emi.security.authn.x509.helpers.revocation: Used to check revocation using a single revocation checking mechanism.
revocationParameters - Variable in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator
RevocationParameters - Class in eu.emi.security.authn.x509: Wraps the information required to control how certificates revocation is checked.
RevocationParameters() - Constructor for class eu.emi.security.authn.x509.RevocationParameters: Default constructor, using the default CrlCheckingMode.IF_VALID and default OCSPParametes.
RevocationParameters(CrlCheckingMode) - Constructor for class eu.emi.security.authn.x509.RevocationParameters: Deprecated.
RevocationParameters(CrlCheckingMode, OCSPParametes) - Constructor for class eu.emi.security.authn.x509.RevocationParameters: One positive revocation source is enough to finish validation, order is set to OCSP first, then CRL.
RevocationParameters(CrlCheckingMode, OCSPParametes, boolean, RevocationParameters.RevocationCheckingOrder) - Constructor for class eu.emi.security.authn.x509.RevocationParameters: Constructor allowing to control all settings.
RevocationParameters.RevocationCheckingOrder - Enum in eu.emi.security.authn.x509
RevocationParametersExt - Class in eu.emi.security.authn.x509.impl: Manages configuration of revocation settings, used in non-openssl truststores.
RevocationParametersExt() - Constructor for class eu.emi.security.authn.x509.impl.RevocationParametersExt: Default constructor, uses default settings of CRLs and OCSP (see RevocationParameters() and CRLParameters()).
RevocationParametersExt(CrlCheckingMode, CRLParameters) - Constructor for class eu.emi.security.authn.x509.impl.RevocationParametersExt: Deprecated.
Use RevocationParametersExt(CrlCheckingMode, CRLParameters, OCSPParametes) instead
RevocationParametersExt(CrlCheckingMode, CRLParameters, OCSPParametes) - Constructor for class eu.emi.security.authn.x509.impl.RevocationParametersExt: Constructor allowing to set CRL checking mode and all OCSP settings.
RevocationParametersExt(CrlCheckingMode, CRLParameters, OCSPParametes, boolean, RevocationParameters.RevocationCheckingOrder) - Constructor for class eu.emi.security.authn.x509.impl.RevocationParametersExt: Full fledged constructor.
revocationParams - Variable in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
revocationSettings - Variable in class eu.emi.security.authn.x509.impl.ValidatorParams
revocationSettings - Variable in class eu.emi.security.authn.x509.impl.ValidatorParamsExt
RevocationStatus - Enum in eu.emi.security.authn.x509.helpers.revocation: Covers possible generic revocation checking outcomes, in case when certificate being checked is not revoked.
revoked - eu.emi.security.authn.x509.helpers.ocsp.OCSPResult.Status
RFC_EXTENSION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension: The oid of the proxy cert info extension, defined in the RFC 3820.
RFC3280CertPathUtilitiesCanl - Class in eu.emi.security.authn.x509.helpers.pkipath.bc: This class exposes the BC's JCA implementation of the RFC3280CertPathUtilities.
RFC3280CertPathUtilitiesCanl() - Constructor for class eu.emi.security.authn.x509.helpers.pkipath.bc.RFC3280CertPathUtilitiesCanl
rfc3280Equal(X500Principal, X500Principal) - Static method in class eu.emi.security.authn.x509.impl.X500NameUtils: Uses the strict RFC 3280 algorithm to compare two DNs.
RFC3820 - eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: RFC 3820 conformant proxy
RFC3820 - eu.emi.security.authn.x509.proxy.ProxyChainType: A chain contains only RFC 3820 conformant proxies.
RFC3820 - eu.emi.security.authn.x509.proxy.ProxyType: RFC 3820 conformant proxy
RFCProxyCertInfoExtension - Class in eu.emi.security.authn.x509.helpers.proxy: Proxy cert info extension class.
RFCProxyCertInfoExtension() - Constructor for class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension: Generate a proxy that inherits all rights and that has no cert path length limitations.
RFCProxyCertInfoExtension(byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension: Constructor that generates instance out of byte array.
RFCProxyCertInfoExtension(int, ProxyPolicy) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension: Generate new proxy certificate info extension with length limit len and policy policy.
RFCProxyCertInfoExtension(ASN1Sequence) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension: Read a proxyCertInfoExtension from the ASN1 sequence.
rootKeyIsValidButNotATrustAnchor - eu.emi.security.authn.x509.ValidationErrorCode

S

SAML_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension: The OID for the SAML assertion.
saveCacheFile(byte[], URL) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainStoreUtils
saveCertificate(OutputStream, X509Certificate, CertificateUtils.Encoding) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Saves the provided certificate to the output file, using the requested encoding.
saveCertificateChain(OutputStream, X509Certificate[], CertificateUtils.Encoding) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Saves the provided certificate chain to the output stream, using the requested encoding.
savePEMKeystore(OutputStream, X509Credential, String, char[], boolean) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: See CertificateUtils.savePEMKeystore(OutputStream, KeyStore, String, String, char[], char[], boolean).
savePEMKeystore(OutputStream, KeyStore, String, String, char[], char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: See CertificateUtils.savePEMKeystore(OutputStream, KeyStore, String, String, char[], char[], boolean) with the last argument equal to false.
savePEMKeystore(OutputStream, KeyStore, String, String, char[], char[], boolean) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Saves the chosen private key entry from the provided keystore as a plain text PEM data.
savePrivateKey(OutputStream, PrivateKey, CertificateUtils.Encoding, String, char[]) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: As CertificateUtils.savePrivateKey(OutputStream, PrivateKey, Encoding, String, char[], boolean) with the last argument equal to false
savePrivateKey(OutputStream, PrivateKey, CertificateUtils.Encoding, String, char[], boolean) - Static method in class eu.emi.security.authn.x509.impl.CertificateUtils: Saves the provided private key to the output file, using the requested encoding.
scheduleUpdate() - Method in class eu.emi.security.authn.x509.helpers.trust.TimedTrustAnchorStoreBase
send(URL, OCSPReq, int) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl
setAddress(URL) - Method in class eu.emi.security.authn.x509.OCSPResponder
setAllowProxy(ProxySupport) - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
setArguments(Object[]) - Method in exception eu.emi.security.authn.x509.helpers.pkipath.SimpleValidationErrorException
setAttributeCertificates(AttributeCertificate[]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets Attribute certificates, which will be added as the VOMS extensions to the generated proxy.
setCacheTtl(int) - Method in class eu.emi.security.authn.x509.OCSPParametes
setCertificate(X509Certificate) - Method in class eu.emi.security.authn.x509.OCSPResponder
setCheckingMode(OCSPCheckingMode) - Method in class eu.emi.security.authn.x509.OCSPParametes
setCode(ValidationErrorCode) - Method in exception eu.emi.security.authn.x509.helpers.pkipath.SimpleValidationErrorException
setConntectTimeout(int) - Method in class eu.emi.security.authn.x509.OCSPParametes
setCritical(boolean) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
setCritical(boolean) - Method in class eu.emi.security.authn.x509.proxy.CertificateExtension
setCrlCheckingMode(CrlCheckingMode) - Method in class eu.emi.security.authn.x509.RevocationParameters: Changes CRL settings that shall be used.
setCrlParameters(CRLParameters) - Method in class eu.emi.security.authn.x509.impl.RevocationParametersExt: Sets CRL parameters to be used.
setCrls(List<String>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Sets a new list of additional CRL locations.
setCrls(List<String>) - Method in class eu.emi.security.authn.x509.impl.CRLParameters
setCrlUpdateInterval(long) - Method in class eu.emi.security.authn.x509.impl.CRLParameters
setCRLUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator: Sets a new interval between subsequent of CRLs.
setDiskCachePath(String) - Method in class eu.emi.security.authn.x509.impl.CRLParameters
setDiskCachePath(String) - Method in class eu.emi.security.authn.x509.OCSPParametes
setError(List<ValidationError>) - Method in exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
setErrors(List<ValidationError>) - Method in class eu.emi.security.authn.x509.ValidationResult
setExpectedPolicies(Set) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
setInitialListeners(Collection<? extends StoreUpdateListener>) - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
setKeyLength(int) - Method in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions: Sets the length of the keys to be generated, only used if the keys are not set separately.
setLifetime(int) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Set the proxy lifetime in seconds.
setLifetime(long, TimeUnit) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Set the proxy lifetime using desired unit.
setLimited(boolean) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Defines whether the resulting proxy will be a limited proxy.
setLocalResponders(OCSPResponder[]) - Method in class eu.emi.security.authn.x509.OCSPParametes
setMaxCache(Date) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponseStructure
setOcspParameters(OCSPParametes) - Method in class eu.emi.security.authn.x509.RevocationParameters: Changes OCSP settings that shall be used.
setOid(String) - Method in class eu.emi.security.authn.x509.proxy.OidAndValue
setOrder(RevocationParameters.RevocationCheckingOrder) - Method in class eu.emi.security.authn.x509.RevocationParameters
setParent(PKIXPolicyNode) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
setPolicies(Collection<String>) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesStore
setPolicies(Collection<String>) - Method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesStore
setPolicies(Collection<String>) - Method in class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
setPolicies(Collection<String>) - Method in class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore
setPolicies(Collection<String>) - Method in interface eu.emi.security.authn.x509.helpers.ns.NamespacesStore
setPolicies(List<NamespacePolicy>) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesStore
setPolicies(List<NamespacePolicy>) - Method in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesStore
setPolicy(ProxyPolicy) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Set the RFC proxy extension policy OID and octets of the policy.
setPreferLocalResponders(boolean) - Method in class eu.emi.security.authn.x509.OCSPParametes
setProxyKeyUsageMask(int) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the mask of the KeyUsage for the resulting proxy certificate.
setProxyPathLimit(int) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the proxy path length limit of this certificate.
setProxySupport(boolean) - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2.Builder
setProxyTracingIssuer(String) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the issuer URL for the proxy tracing.
setProxyTracingSubject(String) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the subject URL for the proxy tracing.
setPublicKey(PublicKey) - Method in class eu.emi.security.authn.x509.proxy.ProxyCertificateOptions: Manually sets public key which shall be included in the generated proxy
setRemoteConnectionTimeout(int) - Method in class eu.emi.security.authn.x509.impl.CRLParameters
setResponse(OCSPResp) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResponseStructure
setRevocationParams(RevocationParameters) - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2.Builder
setRevocationSettings(RevocationParametersExt) - Method in class eu.emi.security.authn.x509.impl.ValidatorParamsExt
setRevocationSettings(RevocationParameters) - Method in class eu.emi.security.authn.x509.impl.ValidatorParams
setRevocationSettings(RevocationParameters) - Method in class eu.emi.security.authn.x509.impl.ValidatorParamsExt: Do not use this method - it will always throw an exception.
setSAMLAssertion(String) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets SAML assertions in a string format.
setSerialNumber(BigInteger) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the proxy serial number.
setSourceRestrictionExcludedAddresses(byte[][]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets an excluded from source restriction IP addressSpace to the data structure.
setSourceRestrictionExcludedAddresses(String[]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets an excluded from source restriction IP addressSpace to the data structure.
setSourceRestrictionPermittedAddresses(byte[][]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets a permitted source IP addressSpace to the Proxy.
setSourceRestrictionPermittedAddresses(String[]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets a new permitted source IP addressSpace to the Proxy
setTargetRestrictionExcludedAddresses(byte[][]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets an excluded target IP addressSpace to the data structure.
setTargetRestrictionExcludedAddresses(String[]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets an excluded target IP addressSpace to the data structure.
setTargetRestrictionPermittedAddresses(byte[][]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets a permitted target IP address space to the Proxy.
setTargetRestrictionPermittedAddresses(String[]) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets a new permitted target IP addressSpace to the Proxy.
setTrustAnchors(Set<TrustAnchor>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2.Builder
setTruststore(KeyStore) - Method in class eu.emi.security.authn.x509.impl.InMemoryKeystoreCertChainValidator: Changes the current trust store.
setTruststorePaths(List<String>) - Method in class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Sets new trusted locations.
setTruststoreUpdateInterval(long) - Method in class eu.emi.security.authn.x509.impl.DirectoryCertChainValidator: Sets a new interval between subsequent checks of the truststore files.
setTruststoreUpdateInterval(long) - Method in class eu.emi.security.authn.x509.impl.KeystoreCertChainValidator: Sets a new interval between subsequent checks of the truststore file.
setType(ProxyType) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Used to set the type of the proxy.
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.crl.LazyOpensslCRLStoreSpi
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.trust.AbstractTrustAnchorStore
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.helpers.trust.TimedTrustAnchorStoreBase
setUpdateInterval(long) - Method in interface eu.emi.security.authn.x509.helpers.trust.TrustAnchorStore
setUpdateInterval(long) - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Sets a new interval between subsequent checks of the trusted certificates directory.
setUseAllEnabled(boolean) - Method in class eu.emi.security.authn.x509.RevocationParameters
setUseNonce(boolean) - Method in class eu.emi.security.authn.x509.OCSPParametes
setValidityBounds(Date, Date) - Method in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions: Sets the desired time bounds for the proxy.
setValue(T) - Method in class eu.emi.security.authn.x509.proxy.OidAndValue
signatureNotVerified - eu.emi.security.authn.x509.ValidationErrorCode
SimpleCRLStore - Class in eu.emi.security.authn.x509.helpers.crl: Provider-less implementation of the CertStore.
SimpleCRLStore(CertStoreSpi) - Constructor for class eu.emi.security.authn.x509.helpers.crl.SimpleCRLStore
SimpleValidationErrorException - Exception in eu.emi.security.authn.x509.helpers.pkipath: Contains one problem code with optional arguments.
SimpleValidationErrorException(ValidationErrorCode, Object...) - Constructor for exception eu.emi.security.authn.x509.helpers.pkipath.SimpleValidationErrorException
SocketFactoryCreator - Class in eu.emi.security.authn.x509.impl: Deprecated.
Use SocketFactoryCreator2 instead, which handles hostname verification in a safer way. Hostname verification provided in this class requires manual wiring and in certain server configuration may cause connection errors.
SocketFactoryCreator() - Constructor for class eu.emi.security.authn.x509.impl.SocketFactoryCreator: Deprecated.
SocketFactoryCreator2 - Class in eu.emi.security.authn.x509.impl: Utility allowing programmers to quickly create SSL socket factories using configuration abstractions of this library.
SocketFactoryCreator2(X509CertChainValidator, HostnameMismatchCallback2) - Constructor for class eu.emi.security.authn.x509.impl.SocketFactoryCreator2
SocketFactoryCreator2(X509CertChainValidator, HostnameMismatchCallback2, SecureRandom, String) - Constructor for class eu.emi.security.authn.x509.impl.SocketFactoryCreator2
SocketFactoryCreator2(X509Credential, X509CertChainValidator, HostnameMismatchCallback2) - Constructor for class eu.emi.security.authn.x509.impl.SocketFactoryCreator2
SocketFactoryCreator2(X509Credential, X509CertChainValidator, HostnameMismatchCallback2, SecureRandom, String) - Constructor for class eu.emi.security.authn.x509.impl.SocketFactoryCreator2
sortChain(List<X509Certificate>) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Creates a chain of certificates, where the top-most certificate (the one without issuing certificate) is the last in the returned array.
SOURCE_RESTRICTION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
SSLTrustManager - Class in eu.emi.security.authn.x509.helpers.ssl: Implementation of TrustManager which uses a configured X509CertChainValidator to validate certificates.
SSLTrustManager(X509CertChainValidator) - Constructor for class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
SSLTrustManagerWithHostnameChecking - Class in eu.emi.security.authn.x509.helpers.ssl: Wires CANL abstractions: credentials and verificators into Java SSL socket factory.
SSLTrustManagerWithHostnameChecking(X509CertChainValidator, HostnameMismatchCallback2) - Constructor for class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
start() - Method in class eu.emi.security.authn.x509.helpers.crl.PlainCRLStoreSpi: Initiates the store operation (the initial update and subsequent refreshes)
store - Variable in class eu.emi.security.authn.x509.impl.InMemoryKeystoreCertChainValidator
StoreUpdateListener - Interface in eu.emi.security.authn.x509: Implementations receive information about updates of certificate, CRL stores or OCSP errors.
StoreUpdateListener.Severity - Enum in eu.emi.security.authn.x509
stripComments(String) - Method in class eu.emi.security.authn.x509.helpers.ns.EuGridPmaNamespacesParser
subjAltNameExtError - eu.emi.security.authn.x509.ValidationErrorCode
SUBJECT_EXTENSION - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension: The OID to identify issuer proxy tracing type.
SUFFIX - Static variable in class eu.emi.security.authn.x509.helpers.ns.AbstractEuGridPmaNamespacesStore
SUFFIX - Static variable in class eu.emi.security.authn.x509.helpers.ns.AbstractGlobusNamespacesStore

T

TARGET_RESTRICTION_OID - Static variable in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData
TimedTrustAnchorStoreBase - Class in eu.emi.security.authn.x509.helpers.trust: Base implementation of Trust Anchor stores which load all certificates into memory.
TimedTrustAnchorStoreBase(Timer, long, ObserversHandler) - Constructor for class eu.emi.security.authn.x509.helpers.trust.TimedTrustAnchorStoreBase
timer - Static variable in class eu.emi.security.authn.x509.helpers.pkipath.PlainCRLValidator
timer - Static variable in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.DraftRFCProxyCertInfoExtension
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyACExtension
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyAddressRestrictionData: Returns the NameConstraints structure of the restrictions.
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxySAMLExtension
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.ProxyTracingExtension
toASN1Primitive() - Method in class eu.emi.security.authn.x509.helpers.proxy.RFCProxyCertInfoExtension
toASN1Primitive() - Method in class eu.emi.security.authn.x509.proxy.CertificateExtension: Extension ::= SEQUENCE { extnId EXTENSION.&id ({ExtensionSet}), critical BOOLEAN DEFAULT FALSE, extnValue OCTET STRING }
toASN1Primitive() - Method in class eu.emi.security.authn.x509.proxy.ProxyPolicy: output the ASN1 object of the proxy policy.
toCertPath(X509Certificate[]) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Converts certificates array to CertPath
toProxyType() - Method in enum eu.emi.security.authn.x509.proxy.ProxyChainType: Converts this chain type to ProxyType.
toShortString() - Method in class eu.emi.security.authn.x509.ValidationResult
toString() - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPResult
toString() - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
toString() - Method in class eu.emi.security.authn.x509.helpers.pkipath.ExtPKIXParameters2
toString() - Method in exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
toString() - Method in class eu.emi.security.authn.x509.ValidationError
toString() - Method in class eu.emi.security.authn.x509.ValidationResult
toString(String) - Method in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
toString(X500Name) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
toString(X500Name, Hashtable<ASN1ObjectIdentifier, String>) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
toStringFull(X500Name) - Method in class eu.emi.security.authn.x509.helpers.JavaAndBCStyle
toX500Name(X500Principal) - Static method in class eu.emi.security.authn.x509.helpers.CertificateHelpers: Converts X500Principal to X500Name with the JavaAndBCStyle style.
TrustAnchorExt - Class in eu.emi.security.authn.x509.helpers.trust
TrustAnchorExt(X509Certificate, byte[]) - Constructor for class eu.emi.security.authn.x509.helpers.trust.TrustAnchorExt
trustAnchorIssuerError - eu.emi.security.authn.x509.ValidationErrorCode
TrustAnchorStore - Interface in eu.emi.security.authn.x509.helpers.trust: Implementations provide trust store material: a list of trusted CA certificates.
trustButInvalidCert - eu.emi.security.authn.x509.ValidationErrorCode
trustDNInvalid - eu.emi.security.authn.x509.ValidationErrorCode
trustKeyUsage - eu.emi.security.authn.x509.ValidationErrorCode
trustPubKeyError - eu.emi.security.authn.x509.ValidationErrorCode
tryLoadCert(File, Set<TrustAnchorExt>) - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
tryLoadCert(URL, Set<TrustAnchorExt>) - Method in class eu.emi.security.authn.x509.helpers.trust.OpensslTrustAnchorStoreImpl
tryLoadCertInternal(File) - Method in class eu.emi.security.authn.x509.helpers.trust.LazyOpensslTrustAnchorStoreImpl
tryLoadNsLocation(String, List<NamespacePolicy>) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore
tryLoadNsPath(String) - Method in class eu.emi.security.authn.x509.helpers.ns.AbstractNamespacesStore

U

unknown - eu.emi.security.authn.x509.helpers.ocsp.OCSPResult.Status
unknown - eu.emi.security.authn.x509.helpers.revocation.RevocationStatus: Revocation check finished without any errors, but it was not possible to make a decision.
unknown - eu.emi.security.authn.x509.ValidationErrorCode
UNKNOWN - eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType
unknownCriticalExt - eu.emi.security.authn.x509.ValidationErrorCode
unknownCriticalExts - eu.emi.security.authn.x509.ValidationErrorCode
unknownMsg - eu.emi.security.authn.x509.ValidationErrorCode
UNLIMITED_PROXY_LENGTH - Static variable in class eu.emi.security.authn.x509.proxy.BaseProxyCertificateOptions
update() - Method in class eu.emi.security.authn.x509.helpers.trust.DirectoryTrustAnchorStore: 1.
update() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKFSTrustAnchorStore
update() - Method in class eu.emi.security.authn.x509.helpers.trust.JDKInMemoryTrustAnchorStore
update() - Method in class eu.emi.security.authn.x509.helpers.trust.TimedTrustAnchorStoreBase: implementation should update the contents of the trust anchor store.
updateInterval - Variable in class eu.emi.security.authn.x509.helpers.crl.AbstractCRLStoreSPI
updateInterval - Variable in class eu.emi.security.authn.x509.helpers.ns.LazyEuGridPmaNamespacesStore
updateInterval - Variable in class eu.emi.security.authn.x509.helpers.ns.LazyGlobusNamespacesStore
useAllEnabled - Variable in class eu.emi.security.authn.x509.RevocationParameters
useNonce - Variable in class eu.emi.security.authn.x509.OCSPParametes

V

validate(CertPath) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Performs validation of a provided certificate path.
validate(CertPath) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Performs validation of a provided certificate path.
validate(CertPath) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Performs validation of a provided certificate path.
validate(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.BinaryCertChainValidator: Performs validation of a provided certificate chain.
validate(X509Certificate[]) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator: Performs validation of a provided certificate chain.
validate(X509Certificate[]) - Method in class eu.emi.security.authn.x509.impl.OpensslCertChainValidator: Performs validation of a provided certificate chain.
validate(X509Certificate[]) - Method in interface eu.emi.security.authn.x509.X509CertChainValidator: Performs validation of a provided certificate chain.
validate(X509Certificate[], boolean, Set<TrustAnchor>, CertStore, RevocationParameters, ObserversHandler) - Method in class eu.emi.security.authn.x509.helpers.pkipath.BCCertPathValidator: Performs validation.
validate(X509Certificate[], Set<TrustAnchor>) - Method in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
ValidationError - Class in eu.emi.security.authn.x509: Holds information about a single validation problem with a reference to the certificate chain.
ValidationError(X509Certificate[], int, ValidationErrorCode, Object...) - Constructor for class eu.emi.security.authn.x509.ValidationError
ValidationErrorCategory - Enum in eu.emi.security.authn.x509: This enumeration contains general classes of errors that can be signaled during certificate path validation.
ValidationErrorCode - Enum in eu.emi.security.authn.x509: This enumeration contains codes of errors that can be signaled during certificate path validation.
ValidationErrorException - Exception in eu.emi.security.authn.x509.helpers.pkipath: Wraps a list of ValidationError
ValidationErrorException() - Constructor for exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
ValidationErrorException(ValidationError) - Constructor for exception eu.emi.security.authn.x509.helpers.pkipath.ValidationErrorException
ValidationErrorListener - Interface in eu.emi.security.authn.x509: Invoked when there is an error found during certificate chain validation.
ValidationResult - Class in eu.emi.security.authn.x509: Wraps a validation result, error messages and unresolved certificate extension oids (if any).
ValidationResult(boolean) - Constructor for class eu.emi.security.authn.x509.ValidationResult: Constructor used when no errors are provided and no information about unresolved extensions.
ValidationResult(boolean, List<ValidationError>) - Constructor for class eu.emi.security.authn.x509.ValidationResult: Constructor used when no information about unresolved extensions is provided.
ValidationResult(boolean, List<ValidationError>, Set<String>, List<X509Certificate>) - Constructor for class eu.emi.security.authn.x509.ValidationResult: Constructor used to provide a full information set about validation problem.
validator - Variable in class eu.emi.security.authn.x509.helpers.pkipath.AbstractValidator
validator - Variable in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManager
validator - Variable in class eu.emi.security.authn.x509.helpers.ssl.SSLTrustManagerWithHostnameChecking
ValidatorParams - Class in eu.emi.security.authn.x509.impl: Contains parameters common for all X509CertChainValidator implementations.
ValidatorParams() - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParams: Default constructor: proxies are allowed, no initial update listeners, default revocation settings.
ValidatorParams(RevocationParameters, ProxySupport) - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParams: Allows for setting all parameters except the list of initial listeners
ValidatorParams(RevocationParameters, ProxySupport, Collection<? extends StoreUpdateListener>) - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParams: Full version, allows for setting all parameters.
ValidatorParamsExt - Class in eu.emi.security.authn.x509.impl: Contains parameters common for all X509CertChainValidator implementations which use RevocationParametersExt
ValidatorParamsExt() - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParamsExt: Default constructor: proxies are allowed, no initial update listeners, default revocation settings.
ValidatorParamsExt(RevocationParametersExt, ProxySupport) - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParamsExt: Allows for setting all parameters except the list of initial listeners
ValidatorParamsExt(RevocationParametersExt, ProxySupport, Collection<? extends StoreUpdateListener>) - Constructor for class eu.emi.security.authn.x509.impl.ValidatorParamsExt: Full version, allows for setting all parameters.
validPolicy - Variable in class eu.emi.security.authn.x509.helpers.pkipath.bc.PKIXPolicyNode
value - Variable in class eu.emi.security.authn.x509.proxy.OidAndValue
VALUE_CA_SIGN - Static variable in class eu.emi.security.authn.x509.helpers.ns.GlobusNamespacesParser
valueOf(String) - Static method in enum eu.emi.security.authn.x509.CrlCheckingMode: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.helpers.ocsp.OCSPResult.Status: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.helpers.revocation.RevocationStatus: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.impl.CertificateUtils.Encoding: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.impl.FormatMode: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.NamespaceCheckingMode: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.OCSPCheckingMode: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.proxy.ProxyChainType: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.proxy.ProxyType: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.ProxySupport: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.RevocationParameters.RevocationCheckingOrder: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.StoreUpdateListener.Severity: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.ValidationErrorCategory: Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum eu.emi.security.authn.x509.ValidationErrorCode: Returns the enum constant of this type with the specified name.
values() - Static method in enum eu.emi.security.authn.x509.CrlCheckingMode: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.helpers.CertificateHelpers.PEMContentsType: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.helpers.ocsp.OCSPResult.Status: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.helpers.proxy.ExtendedProxyType: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.helpers.revocation.RevocationStatus: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.impl.CertificateUtils.Encoding: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.impl.FormatMode: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.NamespaceCheckingMode: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.OCSPCheckingMode: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.proxy.ProxyChainType: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.proxy.ProxyType: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.ProxySupport: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.RevocationParameters.RevocationCheckingOrder: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.StoreUpdateListener.Severity: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.ValidationErrorCategory: Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum eu.emi.security.authn.x509.ValidationErrorCode: Returns an array containing the constants of this enum type, in the order they are declared.
verified - eu.emi.security.authn.x509.helpers.revocation.RevocationStatus: Revocation check was performed and it confirmed that the checked certificate is fine.
verify(X509Certificate, X509Certificate) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPVerifier
verifyResponse(OCSPResp, X509Certificate, X509Certificate, byte[]) - Method in class eu.emi.security.authn.x509.helpers.ocsp.OCSPClientImpl: Verifies the provided response

W

WARNING - eu.emi.security.authn.x509.StoreUpdateListener.Severity: Signifies that the problem was not critical, i.e.
WeakTimerTask<T> - Class in eu.emi.security.authn.x509.helpers: This class holds a partner of the TimerTask reference as weak one.
WeakTimerTask(T) - Constructor for class eu.emi.security.authn.x509.helpers.WeakTimerTask

X

X500NameUtils - Class in eu.emi.security.authn.x509.impl: Contains utility static methods which are helpful in manipulating X.500 Distinguished Names, especially encoded in String form using RFC 2253.
X500NameUtils() - Constructor for class eu.emi.security.authn.x509.impl.X500NameUtils
X509_BASIC - eu.emi.security.authn.x509.ValidationErrorCategory
X509_CHAIN - eu.emi.security.authn.x509.ValidationErrorCategory
X509CertChainValidator - Interface in eu.emi.security.authn.x509: Implementations are used to perform a manual certificate chain validation.
X509CertChainValidatorExt - Interface in eu.emi.security.authn.x509: Extends the main X509CertChainValidator interface with some additional methods which are commonly provided by the most validator implementations, but are not strictly required for the sole validation.
X509Credential - Interface in eu.emi.security.authn.x509: Implementations are used to wrap credentials (private key and certificate) in various formats.
X509Formatter - Class in eu.emi.security.authn.x509.impl: Utility allowing for converting certificates to various text representations.
X509Formatter(FormatMode) - Constructor for class eu.emi.security.authn.x509.impl.X509Formatter: Creates a new X509Formatter object
X509v3CertificateBuilder - Class in eu.emi.security.authn.x509.helpers.proxy: Class to produce an X.509 Version 3 certificate.
X509v3CertificateBuilder(X500Name, BigInteger, Date, Date, X500Name, SubjectPublicKeyInfo) - Constructor for class eu.emi.security.authn.x509.helpers.proxy.X509v3CertificateBuilder: Create a builder for a version 3 certificate.

A B C D E F G H I J K L M N O P Q R S T U V W X
All Classes All Packages