CertificateStatus.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */
  20. package org.openspcoop2.utils.certificate.ocsp;

  22. import java.io.Serializable;
  23. import java.security.cert.CRLReason;
  24. import java.util.Date;

  26. import org.openspcoop2.utils.UtilsException;
  27. import org.openspcoop2.utils.date.DateUtils;

  29. /**
  30.  * CertificateStatus
  31.  *
  32.  * @author Poli Andrea (apoli@link.it)
  33.  * @author $Author$
  34.  * @version $Rev$, $Date$
  35.  */
  36. public class CertificateStatus implements Serializable {

  38.     private static final long serialVersionUID = 1L;

  40.     private CertificateStatusCode code;
  41.     private Date revocationTime;
  42.     private CRLReason revocationReason;
  43.     private String details; // disponibili per crl
  44.     
  45.     @Override
  46.     public String toString() {
  47.         StringBuilder sb = new StringBuilder();
  48.         sb.append(this.code);
  49.         if(this.revocationTime!=null) {
  50.             sb.append("\nrevocationTime: "+DateUtils.getSimpleDateFormatMs().format(this.revocationTime));
  51.         }
  52.         if(this.revocationReason!=null) {
  53.             sb.append("\nrevocationReason: "+this.revocationReason);
  54.         }
  55.         if(this.details!=null) {
  56.             sb.append("\ndetails: "+this.details);
  57.         }
  58.         return sb.toString();
  59.     }
  60.     
  61.     public CertificateStatusCode getCode() {
  62.         return this.code;
  63.     }
  64.     public void setCode(CertificateStatusCode code) {
  65.         this.code = code;
  66.     }
  67.     public Date getRevocationTime() {
  68.         return this.revocationTime;
  69.     }
  70.     public void setRevocationTime(Date revocationTime) {
  71.         this.revocationTime = revocationTime;
  72.     }
  73.     public CRLReason getRevocationReason() {
  74.         return this.revocationReason;
  75.     }
  76.     public void setRevocationReason(CRLReason revocationReason) {
  77.         this.revocationReason = revocationReason;
  78.     }
  79.     public String getDetails() {
  80.         return this.details;
  81.     }
  82.     public void setDetails(String details) {
  83.         this.details = details;
  84.     }
  85.     
  86.     public boolean isGOOD() {
  87.         return CertificateStatusCode.GOOD.equals(this.code);
  88.     }
  89.     public boolean isSELF_SIGNED() {
  90.         return CertificateStatusCode.SELF_SIGNED.equals(this.code);
  91.     }
  92.     public boolean isISSUER_NOT_FOUND() {
  93.         return CertificateStatusCode.ISSUER_NOT_FOUND.equals(this.code);
  94.     }
  95.     public boolean isOCSP_RESPONDER_NOT_FOUND() {
  96.         return CertificateStatusCode.OCSP_RESPONDER_NOT_FOUND.equals(this.code);
  97.     }
  98.     public boolean isCRL_NOT_FOUND() {
  99.         return CertificateStatusCode.CRL_NOT_FOUND.equals(this.code);
  100.     }
  101.     public boolean isUNKNOWN() {
  102.         return CertificateStatusCode.UNKNOWN.equals(this.code);
  103.     }
  104.     public boolean isREVOKED() {
  105.         return CertificateStatusCode.REVOKED.equals(this.code);
  106.     }
  107.     public boolean isEXPIRED() {
  108.         return CertificateStatusCode.EXPIRED.equals(this.code);
  109.     }
  110.     public boolean isValid() {
  111.         return this.code!=null && this.code.isValid();
  112.     }
  113.     public void checkValid() throws UtilsException {
  114.         if(this.code==null) {
  115.             throw new UtilsException("CertificateStatusCode unspecified");
  116.         }
  117.         switch (this.code) {
  118.         case REVOKED:
  119.         case EXPIRED:
  120.         case UNKNOWN:
  121.             StringBuilder sb = new StringBuilder("Certificate ");
  122.             sb.append(this.code.name().toLowerCase());
  123.             if(this.revocationTime!=null) {
  124.                 sb.append(" in date '"+DateUtils.getSimpleDateFormatMs().format(this.revocationTime)+"'");
  125.             }
  126.             if(this.revocationReason!=null) {
  127.                 sb.append(" (Reason: ").append(this.revocationReason).append(")");
  128.             }
  129.             if(this.details!=null) {
  130.                 sb.append(": ").append(this.details);
  131.             }
  132.             throw new OCSPResponseStatusException(this, sb.toString());
  133.         default:
  134.             if(this.code.isInvalid()) {
  135.                 throw new OCSPResponseStatusException(this, "Certificate status code '"+this.code+"'");
  136.             }
  137.             break;
  138.         }
  139.     }
  140.     
  141.     
  142.     
  143.     public static CertificateStatus GOOD() {
  144.         CertificateStatus s = new CertificateStatus();
  145.         s.code = CertificateStatusCode.GOOD;
  146.         return s;
  147.     }
  148.     public static CertificateStatus SELF_SIGNED() {
  149.         CertificateStatus s = new CertificateStatus();
  150.         s.code = CertificateStatusCode.SELF_SIGNED;
  151.         return s;
  152.     }
  153.     public static CertificateStatus ISSUER_NOT_FOUND() {
  154.         CertificateStatus s = new CertificateStatus();
  155.         s.code = CertificateStatusCode.ISSUER_NOT_FOUND;
  156.         return s;
  157.     }
  158.     public static CertificateStatus OCSP_RESPONDER_NOT_FOUND() {
  159.         CertificateStatus s = new CertificateStatus();
  160.         s.code = CertificateStatusCode.OCSP_RESPONDER_NOT_FOUND;
  161.         return s;
  162.     }
  163.     public static CertificateStatus CRL_NOT_FOUND() {
  164.         CertificateStatus s = new CertificateStatus();
  165.         s.code = CertificateStatusCode.CRL_NOT_FOUND;
  166.         return s;
  167.     }
  168.     public static CertificateStatus UNKNOWN() {
  169.         CertificateStatus s = new CertificateStatus();
  170.         s.code = CertificateStatusCode.UNKNOWN;
  171.         return s;
  172.     }
  173.     public static CertificateStatus REVOKED(CRLReason reason, Date time) {
  174.         CertificateStatus s = new CertificateStatus();
  175.         s.code = CertificateStatusCode.REVOKED;
  176.         s.revocationReason = reason;
  177.         s.revocationTime = time;
  178.         return s;
  179.     }
  180.     public static CertificateStatus EXPIRED(String details, Date time) {
  181.         CertificateStatus s = new CertificateStatus();
  182.         s.code = CertificateStatusCode.EXPIRED;
  183.         s.revocationTime = time;
  184.         s.details = details;
  185.         return s;
  186.     }
  187. }
Created with JaCoCo 0.8.8.202204050719