Example 1 with XKMSValidateException
use of org.apache.cxf.xkms.exception.XKMSValidateException in project cxf by apache.
the class XKMSInvoker method checkCertificateValidity.
protected boolean checkCertificateValidity(X509Certificate cert, boolean directTrust) {
try {
ValidateRequestType validateRequestType = prepareValidateXKMSRequest(cert);
if (directTrust) {
validateRequestType.getQueryKeyBinding().getKeyUsage().add(KeyUsageEnum.HTTP_WWW_W_3_ORG_2002_03_XKMS_SIGNATURE);
}
ValidateResultType validateResultType = xkmsConsumer.validate(validateRequestType);
String id = cert.getSubjectDN().getName();
CertificateValidationResult result = parseValidateXKMSResponse(validateResultType, id);
if (!result.isValid()) {
LOG.warn(String.format("Certificate %s is not valid: %s", cert.getSubjectDN(), result.getDescription()));
}
return result.isValid();
} catch (RuntimeException e) {
String msg = String.format("XKMS validate call fails for certificate: %s. Error: %s", cert.getSubjectDN(), e.getMessage());
LOG.warn(msg, e);
throw new XKMSValidateException(msg, e);
}
}
Also used :
XKMSValidateException(org.apache.cxf.xkms.exception.XKMSValidateException)
ValidateResultType(org.apache.cxf.xkms.model.xkms.ValidateResultType)
ValidateRequestType(org.apache.cxf.xkms.model.xkms.ValidateRequestType)
Aggregations
XKMSValidateException (org.apache.cxf.xkms.exception.XKMSValidateException)1
ValidateRequestType (org.apache.cxf.xkms.model.xkms.ValidateRequestType)1
ValidateResultType (org.apache.cxf.xkms.model.xkms.ValidateResultType)1
