FixTrustAnchorsNotEmpty.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */

  21. package org.openspcoop2.utils.certificate;

  23. import java.io.ByteArrayInputStream;
  24. import java.io.InputStream;
  25. import java.security.KeyStore;
  26. import java.security.cert.CertificateFactory;
  27. import java.util.Enumeration;

  29. import org.openspcoop2.utils.LoggerWrapperFactory;
  30. import org.openspcoop2.utils.UtilsException;
  31. import org.slf4j.Logger;

  33. /**
  34.  * FixTrustAnchorsNotEmpty
  35.  *
  36.  * @author Andrea Poli (apoli@link.it)
  37.  * @author $Author$
  38.  * @version $Rev$, $Date$
  39.  */
  40. public class FixTrustAnchorsNotEmpty {
  41.     
  42.     private FixTrustAnchorsNotEmpty() {}
  43.     
  44.     private static Logger log = LoggerWrapperFactory.getLogger(FixTrustAnchorsNotEmpty.class);
  45.     
  46.     private static CertificateFactory cf = null;
  47.     private static java.security.cert.Certificate certFix = null;
  48.     private static final String PEM = "-----BEGIN CERTIFICATE-----\n"+
  49.             "MIIC9TCCAd0CBE/Ior8wDQYJKoZIhvcNAQEFBQAwPjELMAkGA1UEBhMCSVQxLzAt\n"+
  50.             "BgNVBAMMJkZpeFRydXN0QW5jaG9yc1BhcmFtZXRlck11c3RCZU5vbkVtcHR5MCAX\n"+
  51.             "DTEyMDYwMTExMDg0N1oYDzIyODYwMzE2MTEwODQ3WjA+MQswCQYDVQQGEwJJVDEv\n"+
  52.             "MC0GA1UEAwwmRml4VHJ1c3RBbmNob3JzUGFyYW1ldGVyTXVzdEJlTm9uRW1wdHkw\n"+
  53.             "ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDoLP0pdU4WM5DalQHPBhC\n"+
  54.             "ewg2vuS/S6gnG9gLr3N1FzH0efpBuUwX8R7tjX4bEAHnkJdfy+SVAOargNBJnIje\n"+
  55.             "HFmfIwWVjqnHSahZR2IbR8v9LnPgWFljmyu6rtqlSKpL2qhU0pyVaJCtzBUqsTia\n"+
  56.             "BLyQVj+aJJZIjT/BrbNogHds3Ez8Jsh24XbJWA/GcrqFOPW8VP4hg8RS+v7/rr5o\n"+
  57.             "epNQ1l5kc7lg/G4ABpBi3krqCRP2ZVlLdYdv3UbOWyUSOzn6PP17BAgaUAdHJNxg\n"+
  58.             "yxN3F39xMElgO6q9ZykgCDwlAjQtP/ejo5vvRNy7ZEnkY5st7FuUOErOReDQRnFZ\n"+
  59.             "AgMBAAEwDQYJKoZIhvcNAQEFBQADggEBAIq3c5tpfU+L3843mT1iVC2I7D85l2aG\n"+
  60.             "UgxMtBm+yYf428SR/ziL/9Z0DVA8G/6dOLpT2MdKQWEeAR8D3V0VnFZ7quysCug8\n"+
  61.             "XdmSW1kL5Z/rtXHfvQ6FOVYCaOV2f5Th9Hl0Z2dKVLNYBHzTL65OoB+yYMNGXv5Q\n"+
  62.             "ITke2pz4vP3LYv4RDFl80g1Qofpeqa4AFuCkmxlntL7SBCJMtlQutRtJ99ZsxgYG\n"+
  63.             "Mp0Afz8RQ2nSpTW6gUEcYx80oWRSipR7+dmMyeESYnv9l5K6raw3GIrNtzqkfRbx\n"+
  64.             "mZaYPs2bYuX52F4fNc3jqQ8Zd2XnH2nMtHShjFVVfvAY9/LueO2LTuk=\n"+
  65.             "-----END CERTIFICATE-----";
  66.     private static synchronized void initCertificateFactory(){
  67.         if(FixTrustAnchorsNotEmpty.cf==null){
  68.             try (InputStream is = new ByteArrayInputStream(PEM.getBytes());){
  69.                 FixTrustAnchorsNotEmpty.cf = org.openspcoop2.utils.certificate.CertificateFactory.getCertificateFactory();
  70.                 FixTrustAnchorsNotEmpty.certFix = FixTrustAnchorsNotEmpty.cf.generateCertificate(is);
  71.             }catch(Exception e){
  72.                 log.error(e.getMessage(),e);
  73.             }
  74.         }
  75.     }
  76.     
  77.     public static void addCertificate(KeyStore keystore) throws UtilsException{

  79.         try{
  80.             
  81.             // Se esiste un certificato non devo fare altro
  82.             Enumeration<String> aliases = keystore.aliases();
  83.             while (aliases.hasMoreElements()) {
  84.                 String alias = aliases.nextElement();
  85.                 /** System.out.println("ALIAS["+alias+"] ..."); */
  86.                 if(keystore.isCertificateEntry(alias)){
  87.                     /** System.out.println("TROVATO!!!!"); */
  88.                     return;
  89.                 }
  90.             }
  91.             /** System.out.println("NON TROVATO!"); */
  92.             
  93.             if(FixTrustAnchorsNotEmpty.cf==null){
  94.                 FixTrustAnchorsNotEmpty.initCertificateFactory();
  95.             }
  96.             keystore.setCertificateEntry("FixTrustAnchorsParameterMustBeNonEmpty", FixTrustAnchorsNotEmpty.certFix);
  97.             /** System.out.println("AGGIUNTO"); */

  99.         }catch(Exception e){
  100.             throw new UtilsException(e.getMessage(),e);
  101.         }

  103.     }

  105. }
Created with JaCoCo 0.8.8.202204050719