com.ibm.security.certclient
Interface PkEeBuiltReqTransaction
All Superinterfaces:
All known subinterfaces:
- public interface PkEeBuiltReqTransaction
- extends PkEeReqTransaction
Method Summary
Modifier and Type | Method and Description |
---|---|
|
addKeyUsage(List<String> kUsage)
Merges the provided key usages to those already existing if any.
|
getKeyPair()
Fetch the keyPair that was created for this
certificate request.
|
|
getPrivateKey()
Fetch the private key that was created for this
certificate request.
|
|
getPublicKey()
Fetch the public key that was created for this
certificate request.
|
|
|
setSubjectAltNames(List<String> subjectAltNames)
Adds the provided alternate names to the certificate request.
|
|
setSubjectKeyIdShort(boolean form)
Determines if the short form of the subjectKey identifier is
required as defined in RFC3280
|
|
setValidity(int days)
Set the validity period for the key.
|
Methods inherited from interface com.ibm.security.certclient.PkEeReqTransaction |
---|
getCertificateChain, getPKCS10CertReq, getSignedCert |
Methods inherited from interface com.ibm.security.certclient.PkEeTransaction |
---|
actionRequest |
Method Detail
setValidity
- void setValidity(int days)
- throws com.ibm.security.certclient.base.PkException
Set the validity period for the key. The start of the period will be
set when the Request is actioned. Overrides current
value if any.
Parameters:
days
- period length in days. Throws:
com.ibm.security.certclient.base.PkException
- days less than 1 setSubjectKeyIdShort
- void setSubjectKeyIdShort(boolean form)
Determines if the short form of the subjectKey identifier is
required as defined in RFC3280
Parameters:
form
- set true if the short form is required otherwise
false. setSubjectAltNames
Adds the provided alternate names to the certificate request. These will replace
any existing names.
Parameters:
subjectAltNames
- List of subject alternate names. Specify null to indicate that no value is being specified.
- email email address for the subject , e.g. newUser@us.ibm.com
- dnsName domain name server name. Name is not case sensitive. e.g host.domain
- uri universal resource identifier ,e.g http://www.tivoli.com, ftp://www.ibm.com/
- ipaddress ipaddress for the subject , e.g. 127.0.0.1
addKeyUsage
Merges the provided key usages to those already existing if any.
Parameters:
kUsage
- List of key usages -
"digital_signature"
"non_repudiation"
"key_encipherment"
"data_encipherment"
"encipher_only"
"decipher_only" getPrivateKey
- PrivateKey getPrivateKey()
Fetch the private key that was created for this
certificate request. This will only be meaningful
after the certificate request has been actioned.
Returns:
the private key or null if the key has not
been generated
getPublicKey
- PublicKey getPublicKey()
Fetch the public key that was created for this
certificate request. This will only be meaningful
after the certificate request has been actioned.
Returns:
the public key or null if the key has not
been generated
getKeyPair
- KeyPair getKeyPair()
Fetch the keyPair that was created for this
certificate request. This will only be meaningful
after the certificate request has been actioned.
Returns:
the keyPair or null if the key has not
been generated