package org.adullact.liberattest.signature;
import org.adullact.liberattest.utils.KeyStoreLoader;
+import org.adullact.liberattest.utils.StoreConfig;
import org.adullact.liberattest.verifier.CRLVerifier;
-import java.security.KeyStore;
import java.security.cert.X509Certificate;
import java.util.Enumeration;
+import java.util.List;
/**
* Created by lhameury on 09/09/15.
// ---- Vérification de la chaine de certification ----
// Création d'un keystore...
- KeyStore ks = KeyStoreLoader.getInstance();
- Enumeration en = ks.aliases();
-
- String issuerdn = certificate.getIssuerDN().getName();
- while (en.hasMoreElements()) {
- X509Certificate storecert;
- String ali = (String) en.nextElement();
- if (ks.isCertificateEntry(ali)) {
- storecert = (X509Certificate) ks.getCertificate(ali);
- if ((storecert.getIssuerDN().getName()).equals(issuerdn)) {
- try {
- certificate.verify(storecert.getPublicKey());
- isVerified = true;
- break;
- } catch (Exception exc) {
- // Not good...
+ List<StoreConfig> ksList = KeyStoreLoader.getInstance();
+
+ for (StoreConfig ks : ksList) {
+ if (ks.valid != StoreConfig.Validity.error) {
+ Enumeration en = ks.ks.aliases();
+
+ String issuerdn = certificate.getIssuerDN().getName();
+ while (en.hasMoreElements()) {
+ X509Certificate storecert;
+ String ali = (String) en.nextElement();
+ if (ks.ks.isCertificateEntry(ali)) {
+ storecert = (X509Certificate) ks.ks.getCertificate(ali);
+ if ((storecert.getIssuerDN().getName()).equals(issuerdn)) {
+ try {
+ certificate.verify(storecert.getPublicKey());
+ isVerified.put(ks.name, true);
+ break;
+ } catch (Exception exc) {
+ // Not good...
+ }
+ }
+ } else if (ks.ks.isKeyEntry(ali)) {
+ System.out.println(ali + " **** key entry ****");
}
}
- } else if (ks.isKeyEntry(ali)) {
- System.out.println(ali + " **** key entry ****");
}
}
}