Example 11 with PolicyFilter
use of org.nhindirect.policy.PolicyFilter in project nhin-d by DirectProject.
the class ValidatePanel method validateCert.
private void validateCert() {
reportText.setText("");
final File certFile = certFileField.getFile();
final File policyFile = policyFileField.getFile();
if (!certFile.exists()) {
JOptionPane.showMessageDialog(this, "Certificate file does not exist or cannot be found.", "Invalid Cert File", JOptionPane.ERROR_MESSAGE);
return;
}
InputStream policyInput = null;
if (!feedMode) {
if (!policyFile.exists()) {
JOptionPane.showMessageDialog(this, "Policy file does not exist or cannot be found.", "Invalid Policy File", JOptionPane.ERROR_MESSAGE);
return;
}
try {
// load the policy as an input stream
policyInput = FileUtils.openInputStream(policyFile);
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load policy from file: " + e.getMessage(), "Invalid Policy File", JOptionPane.ERROR_MESSAGE);
return;
}
} else {
try {
final int length = feed.getLength();
policyInput = IOUtils.toInputStream(feed.getText(0, length));
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load policy: " + e.getMessage(), "Invalid Policy", JOptionPane.ERROR_MESSAGE);
return;
}
}
// load the certificate
X509Certificate cert = null;
try {
cert = (X509Certificate) CertificateFactory.getInstance("X.509").generateCertificate(FileUtils.openInputStream(certFile));
} catch (Exception e) {
JOptionPane.showMessageDialog(this, "Could not load certificate from file: " + e.getMessage(), "Invalid Cert File", JOptionPane.ERROR_MESSAGE);
return;
}
final DateFormat dateFormat = new SimpleDateFormat("EEE, MMM d yyyy HH:mm:ss", Locale.getDefault());
final StringBuilder reportTextBuilder = new StringBuilder("Validation run at " + dateFormat.format(Calendar.getInstance(Locale.getDefault()).getTime()) + "\r\n\r\n");
try {
final PolicyLexiconParser parser = (feedMode) ? PolicyLexiconParserFactory.getInstance(feedLexicon) : PolicyLexiconParserFactory.getInstance(PolicyLexicon.XML);
final PolicyExpression policyExpression = parser.parse(policyInput);
final org.nhindirect.policy.Compiler compiler = new StackMachineCompiler();
compiler.setReportModeEnabled(true);
final PolicyFilter filter = PolicyFilterFactory.getInstance(compiler);
if (filter.isCompliant(cert, policyExpression) && compiler.getCompilationReport().isEmpty())
reportTextBuilder.append("Certificate is compliant with the provided policy.");
else {
reportTextBuilder.append("Certificate is NOT compliant with the provided policy.\r\n\r\n");
final Collection<String> report = compiler.getCompilationReport();
if (!report.isEmpty()) {
for (String reportEntry : report) reportTextBuilder.append(reportEntry + "\r\n");
}
}
} catch (PolicyRequiredException e) {
reportTextBuilder.append("Validation Successful\r\nCertificate is missing a required field\r\n\t" + e.getMessage());
} catch (PolicyGrammarException e) {
reportTextBuilder.append("Validation Failed\r\nError compiling policy\r\n\t" + e.getMessage());
} catch (Exception e) {
final ByteArrayOutputStream str = new ByteArrayOutputStream();
final PrintStream printStr = new PrintStream(str);
e.printStackTrace();
e.printStackTrace(printStr);
final String stackTrace = new String(str.toByteArray());
reportTextBuilder.append("Validation Failed\r\nError compiling or proccessing policy\r\n\t" + e.getMessage() + "\r\n" + stackTrace);
} finally {
reportText.setText(reportTextBuilder.toString());
IOUtils.closeQuietly(policyInput);
}
}
Also used :
PrintStream(java.io.PrintStream)
PolicyGrammarException(org.nhindirect.policy.PolicyGrammarException)
PolicyFilter(org.nhindirect.policy.PolicyFilter)
InputStream(java.io.InputStream)
PolicyExpression(org.nhindirect.policy.PolicyExpression)
StackMachineCompiler(org.nhindirect.policy.impl.machine.StackMachineCompiler)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
PolicyGrammarException(org.nhindirect.policy.PolicyGrammarException)
PolicyRequiredException(org.nhindirect.policy.PolicyRequiredException)
X509Certificate(java.security.cert.X509Certificate)
PolicyRequiredException(org.nhindirect.policy.PolicyRequiredException)
SimpleDateFormat(java.text.SimpleDateFormat)
DateFormat(java.text.DateFormat)
PolicyLexiconParser(org.nhindirect.policy.PolicyLexiconParser)
File(java.io.File)
SimpleDateFormat(java.text.SimpleDateFormat)
Aggregations
X509Certificate (java.security.cert.X509Certificate)11
PolicyFilter (org.nhindirect.policy.PolicyFilter)11
PolicyExpression (org.nhindirect.policy.PolicyExpression)10
InternetAddress (javax.mail.internet.InternetAddress)9
PolicyResolver (org.nhindirect.stagent.policy.PolicyResolver)9
CertificateResolver (org.nhindirect.stagent.cert.CertificateResolver)5
TrustAnchorResolver (org.nhindirect.stagent.trust.TrustAnchorResolver)5
PolicyRequiredException (org.nhindirect.policy.PolicyRequiredException)3
PolicyProcessException (org.nhindirect.policy.PolicyProcessException)2
ByteArrayOutputStream (java.io.ByteArrayOutputStream)1
File (java.io.File)1
InputStream (java.io.InputStream)1
PrintStream (java.io.PrintStream)1
URL (java.net.URL)1
DateFormat (java.text.DateFormat)1
SimpleDateFormat (java.text.SimpleDateFormat)1
PolicyGrammarException (org.nhindirect.policy.PolicyGrammarException)1
PolicyLexiconParser (org.nhindirect.policy.PolicyLexiconParser)1
StackMachineCompiler (org.nhindirect.policy.impl.machine.StackMachineCompiler)1
AgentException (org.nhindirect.stagent.AgentException)1
