Example 76 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project android by nextcloud.
the class CsrHelper method generateCsrPemEncodedString.
/**
* Generate CSR with PEM encoding
*
* @param keyPair the KeyPair with private and public keys
* @param userId userId of CSR owner
* @return PEM encoded CSR string
* @throws IOException thrown if key cannot be created
* @throws OperatorCreationException thrown if contentSigner cannot be build
*/
public static String generateCsrPemEncodedString(KeyPair keyPair, String userId) throws IOException, OperatorCreationException {
PKCS10CertificationRequest csr = CsrHelper.generateCSR(keyPair, userId);
byte[] derCSR = csr.getEncoded();
return "-----BEGIN CERTIFICATE REQUEST-----\n" + android.util.Base64.encodeToString(derCSR, android.util.Base64.NO_WRAP) + "\n-----END CERTIFICATE REQUEST-----";
}
Also used :
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
Example 77 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project dcos-commons by mesosphere.
the class TLSArtifactsGenerator method generateCSR.
@SuppressWarnings("checkstyle:ThrowsCount")
private static byte[] generateCSR(KeyPair keyPair, CertificateNamesGenerator certificateNamesGenerator) throws IOException, OperatorCreationException {
ExtensionsGenerator extensionsGenerator = new ExtensionsGenerator();
extensionsGenerator.addExtension(Extension.keyUsage, true, new KeyUsage(KeyUsage.digitalSignature));
extensionsGenerator.addExtension(Extension.extendedKeyUsage, true, new ExtendedKeyUsage(new KeyPurposeId[] { KeyPurposeId.id_kp_clientAuth, KeyPurposeId.id_kp_serverAuth }));
extensionsGenerator.addExtension(Extension.subjectAlternativeName, true, certificateNamesGenerator.getSANs());
PKCS10CertificationRequest csr = new JcaPKCS10CertificationRequestBuilder(certificateNamesGenerator.getSubject(), keyPair.getPublic()).addAttribute(PKCSObjectIdentifiers.pkcs_9_at_extensionRequest, extensionsGenerator.generate()).build(new JcaContentSignerBuilder("SHA256withRSA").build(keyPair.getPrivate()));
return PEMUtils.toPEM(csr);
}
Also used :
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
JcaPKCS10CertificationRequestBuilder(org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequestBuilder)
KeyPurposeId(org.bouncycastle.asn1.x509.KeyPurposeId)
JcaContentSignerBuilder(org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)
ExtendedKeyUsage(org.bouncycastle.asn1.x509.ExtendedKeyUsage)
KeyUsage(org.bouncycastle.asn1.x509.KeyUsage)
ExtendedKeyUsage(org.bouncycastle.asn1.x509.ExtendedKeyUsage)
ExtensionsGenerator(org.bouncycastle.asn1.x509.ExtensionsGenerator)
Example 78 with PKCS10CertificationRequest
use of org.bouncycastle.pkcs.PKCS10CertificationRequest in project Spark by igniterealtime.
the class MutualAuthenticationSettingsPanel method createCertificateSignRequest.
private void createCertificateSignRequest() {
idControll.setUpData(commonNameField.getText(), organizationUnitField.getText(), organizationField.getText(), countryField.getText(), cityField.getText());
try {
KeyPair keyPair = idControll.createKeyPair();
PKCS10CertificationRequest request = idControll.createCSR(keyPair);
PemHelper.saveToPemFile(keyPair, IdentityController.KEY_FILE);
PemHelper.saveToPemFile(request, IdentityController.CSR_FILE);
JOptionPane.showMessageDialog(null, Res.getString("dialog.certificate.request.has.been.created") + IdentityController.SECURITY_DIRECTORY.toString());
} catch (OperatorCreationException | NoSuchAlgorithmException | IOException | NoSuchProviderException e1) {
Log.error("Couldn't create Certificate Signing Request", e1);
}
}
Also used :
PKCS10CertificationRequest(org.bouncycastle.pkcs.PKCS10CertificationRequest)
KeyPair(java.security.KeyPair)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
IOException(java.io.IOException)
OperatorCreationException(org.bouncycastle.operator.OperatorCreationException)
NoSuchProviderException(java.security.NoSuchProviderException)
Aggregations
PKCS10CertificationRequest (org.bouncycastle.pkcs.PKCS10CertificationRequest)78
Test (org.testng.annotations.Test)39
Path (java.nio.file.Path)34
DERIA5String (org.bouncycastle.asn1.DERIA5String)19
X509Certificate (java.security.cert.X509Certificate)17
IOException (java.io.IOException)14
X500Name (org.bouncycastle.asn1.x500.X500Name)13
PrivateKey (java.security.PrivateKey)12
JcaContentSignerBuilder (org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)10
JcaPKCS10CertificationRequestBuilder (org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequestBuilder)10
KeyPair (java.security.KeyPair)9
KeyPairGenerator (java.security.KeyPairGenerator)8
X500Principal (javax.security.auth.x500.X500Principal)8
OperatorCreationException (org.bouncycastle.operator.OperatorCreationException)8
File (java.io.File)7
BouncyCastleProvider (org.bouncycastle.jce.provider.BouncyCastleProvider)7
ContentSigner (org.bouncycastle.operator.ContentSigner)7
JcaPKCS10CertificationRequest (org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequest)7
PemObject (org.bouncycastle.util.io.pem.PemObject)6
CryptoException (org.kse.crypto.CryptoException)6
