Package eu.europa.esig.dss.validation

Class DefaultAdvancedSignature

java.lang.Object

eu.europa.esig.dss.validation.DefaultAdvancedSignature

All Implemented Interfaces:

AdvancedSignature, Serializable

Direct Known Subclasses:

CAdESSignature, XAdESSignature

public abstract class DefaultAdvancedSignature
extends Object
implements AdvancedSignature

See Also:

Serialized Form

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	DefaultAdvancedSignature.RevocationDataForInclusion

Field Summary

Fields

Modifier and Type	Field	Description
protected CandidatesForSigningCertificate	candidatesForSigningCertificate	The reference to the object containing all candidates to the signing certificate.
protected CertificatePool	certPool	This is the reference to the global (external) pool of certificates.
protected List<DSSDocument>	detachedContents	In case of a detached signature this is the signed document.
protected List<ManifestFile>	manifestFiles	In case of a ASiC-E signature this is the list of found manifest files.
protected SignatureCertificateSource	offlineCertificateSource
protected CertificateToken	providedSigningCertificateToken	In the case of a non AdES signature the signing certificate is not mandatory within the signature and can be provided by the driving application.
protected List<ReferenceValidation>	referenceValidations	This variable contains a list of reference validations (reference tag for XAdES or message-digest for CAdES)
protected SignatureCRLSource	signatureCRLSource
protected SignatureCryptographicVerification	signatureCryptographicVerification	This variable contains the result of the signature mathematical validation.
protected SignatureIdentifier	signatureIdentifier
protected SignatureOCSPSource	signatureOCSPSource
protected SignaturePolicy	signaturePolicy
protected SignatureTimestampSource	signatureTimestampSource
protected String	structureValidation

Constructor Summary

Constructors

Modifier	Constructor	Description
protected	DefaultAdvancedSignature(CertificatePool certPool)

Method Summary

Modifier and Type	Method	Description
protected void	addEncapsulatedCertificatesFromTimestamp(List<TimestampedReference> references, TimestampToken timestampedTimestamp)
void	addExternalTimestamp(TimestampToken timestamp)	This method allows to add an external timestamp.
protected void	addReference(List<TimestampedReference> referenceList, TimestampedReference referenceToAdd)	Adds referenceToAdd to referenceList without duplicates
protected void	addReferences(List<TimestampedReference> referenceList, List<TimestampedReference> referencesToAdd)	Adds referencesToAdd to referenceList without duplicates
protected void	addReferencesForCertificates(List<TimestampedReference> references)
protected void	addReferencesForPreviousTimestamps(List<TimestampedReference> references, List<TimestampToken> timestampedTimestamps)
protected void	addReferencesFromRevocationData(List<TimestampedReference> references)	This method adds references to retrieved revocation data.
protected abstract SignatureIdentifier	buildSignatureIdentifier()	Build and defines signatureIdentifier value
boolean	equals(Object obj)
List<RevocationRef>	findRefsForRevocationIdentifier(EncapsulatedRevocationTokenIdentifier revocationIdentifier)	Retrieves a list of found RevocationRefs for the given revocationIdentifier
List<RevocationRef>	findRefsForRevocationToken(RevocationToken revocationToken)	Retrieves a list of found RevocationRefs for the given revocationToken
void	findSignatureScope(SignatureScopeFinder signatureScopeFinder)
List<EncapsulatedRevocationTokenIdentifier>	getAllFoundRevocationIdentifiers()	Returns a list of all EncapsulatedRevocationTokenIdentifiers found in CRL and OCSP sources
List<RevocationRef>	getAllFoundRevocationRefs()	Retrieves a list of all found RevocationRefs present in the signature
Set<RevocationToken>	getAllRevocationTokens()	Retrieves the set of all RevocationTokens in the signature
List<TimestampToken>	getAllTimestamps()	Returns a list of all timestamps found in the signature
List<TimestampToken>	getArchiveTimestamps()	Returns the archive Timestamps
List<CRLRef>	getAttributeRevocationCRLReferences()	Retrieves a list of all CRLRefs present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
List<OCSPRef>	getAttributeRevocationOCSPReferences()	Retrieves a list of all OCSPRefs present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
List<RevocationToken>	getAttributeRevocationTokens()	Retrieves the list of all RevocationTokens present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
List<RevocationToken>	getAttributeRevocationValuesTokens()	Retrieves the list of all RevocationTokens present in 'AttributeRevocationValues' element NOTE: Applicable only for XAdES revocation source
List<CertificateToken>	getCertificateListWithinSignatureAndTimestamps()	Returns a list of all certificates found into signature and timestamps
Map<String,List<CertificateToken>>	getCertificateMapWithinSignatureAndTimestamps(boolean skipLastArchiveTimestamp)	Returns a map between found certificate chains in signature and timestamps
List<CertificateToken>	getCertificates()	Returns an unmodifiable list of all certificate tokens encapsulated in the signature
Set<CertificateToken>	getCertificatesForInclusion(ValidationContext validationContext)	This method returns all certificates used during the validation process.
ListCRLSource	getCompleteCRLSource()	Gets a ListCRLSource representing a merged source from signatureCRLSourse and all included to the signature timestamp objects
ListOCSPSource	getCompleteOCSPSource()	Gets a ListOCSPSource representing a merged source from signatureOCSPSourse and all included to the signature timestamp objects
List<CRLRef>	getCompleteRevocationCRLReferences()	Retrieves a list of all CRLRefs present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
List<OCSPRef>	getCompleteRevocationOCSPReferences()	Retrieves a list of all OCSPRefs present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
List<RevocationToken>	getCompleteRevocationTokens()	Retrieves the list of all RevocationTokens present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources
String	getContactInfo()
List<DSSDocument>	getContainerContents()
protected List<TimestampedReference>	getContentTimestampReferences()
List<TimestampToken>	getContentTimestamps()	Returns the content timestamps
SignatureLevel	getDataFoundUpToLevel()
List<DSSDocument>	getDetachedContents()
List<TimestampToken>	getDocumentTimestamps()	Returns a list of timestamps defined with the 'DocTimeStamp' type NOTE: applicable only for PAdES
List<RevocationToken>	getDSSDictionaryRevocationTokens()	Retrieves the list of all RevocationTokens present in 'DSS' dictionary NOTE: Applicable only for PAdES revocation source
SignatureIdentifier	getDSSId()	This method returns the SignatureIdentifier.
String	getFilter()
String	getId()	This method returns the DSS unique signature id.
List<DSSDocument>	getManifestedDocuments()
AdvancedSignature	getMasterSignature()
byte[]	getMessageDigestValue()
List<CertificateRef>	getOrphanCertificateRefs()	Returns a list of orphan certificate refs, that are not associated to any CertificateToken
List<RevocationRef>	getOrphanRevocationRefs()	Returns a list of all orphan RevocationRefs found into the signature
SignaturePolicy	getPolicyId()	Returns the Signature Policy OID from the signature.
CertificateToken	getProvidedSigningCertificateToken()
String	getReason()
DefaultAdvancedSignature.RevocationDataForInclusion	getRevocationDataForInclusion(ValidationContext validationContext)	This method returns revocation values (ocsp and crl) that will be included in the LT profile.
List<RevocationToken>	getRevocationValuesTokens()	Retrieves the list of all RevocationTokens present in 'RevocationValues' element NOTE: Applicable only for CAdES and XAdES revocation sources
int[]	getSignatureByteRange()
SignatureCryptographicVerification	getSignatureCryptographicVerification()
String	getSignatureFieldName()
String	getSignatureFilename()	This method returns the signature filename (useful for ASiC and multiple signature files)
List<SignatureScope>	getSignatureScopes()
protected List<TimestampedReference>	getSignatureTimestampReferences()
List<TimestampToken>	getSignatureTimestamps()	Returns the signature timestamps
ValidationContext	getSignatureValidationContext(CertificateVerifier certificateVerifier)	This method validates the signing certificate and all timestamps.
String	getSignerName()
List<SignerRole>	getSignerRoles()	Returns the list of roles of the signer.
protected List<TimestampedReference>	getSigningCertificateTimestampReferences()
CertificateToken	getSigningCertificateToken()	This method returns the signing certificate token or null if there is no valid signing certificate.
String	getStructureValidationResult()
String	getSubFilter()
protected List<TimestampedReference>	getTimestampedReferencesFromCertificates(List<CertificateToken> certificateTokens)	Creates a list of TimestampedReferences for the provided certificateTokens
List<CRLRef>	getTimestampRevocationCRLReferences()	Retrieves a list of all CRLRefs present in a timestamp element NOTE: Applicable only for CAdES revocation source
List<OCSPRef>	getTimestampRevocationOCSPReferences()	Retrieves a list of all OCSPRefs present in a timestamp element NOTE: Applicable only for CAdES revocation source
List<CertificateToken>	getTimestampSourceCertificates()	Returns a list of CertificateTokens found in the SignatureTimestampSource
List<TimestampToken>	getTimestampsX1()	Returns the time-stamp which is placed on the digital signature (XAdES example: ds:SignatureValue element), the signature time-stamp(s) present in the AdES-T form, the certification path references and the revocation status references.
List<TimestampToken>	getTimestampsX2()	Returns the time-stamp which is computed over the concatenation of CompleteCertificateRefs and CompleteRevocationRefs elements (XAdES example).
List<RevocationToken>	getTimestampValidationDataTokens()	Retrieves the list of all RevocationTokens present in 'TimestampValidationData/RevocationValues' element NOTE: Applicable only for XAdES revocation source
List<RevocationToken>	getVRIDictionaryRevocationTokens()	Retrieves the list of all RevocationTokens present in 'VRI' dictionary NOTE: Applicable only for PAdES revocation source
int	hashCode()
boolean	hasLTAProfile()
boolean	hasLTProfile()
boolean	hasTProfile()
boolean	isDocHashOnlyValidation()	Returns true if the validation of the signature has been performed only on Signer's Document Representation (SDR).
boolean	isHashOnlyValidation()	Returns true if the validation of the signature has been performed only on Data To Be Signed Representation (DTBSR).
void	populateCRLTokenLists(SignatureCRLSource crlSource)	Fills all the missing CRLTokens from the given signatureCRLSource
void	populateOCSPTokenLists(SignatureOCSPSource ocspSource)	Fills all the missing OCSPTokens from the given signatureOCSPSource
void	prepareTimestamps(ValidationContext validationContext)	This method adds to the ValidationContext all timestamps to be validated.
void	setContainerContents(List<DSSDocument> containerContents)	This method allows to set the container contents in the case of ASiC signature.
void	setDetachedContents(List<DSSDocument> detachedContents)	This method allows to set the signed contents in the case of the detached signature.
void	setManifestFiles(List<ManifestFile> manifestFiles)	This method allows to set the manifest files in the case of ASiC-E signature.
void	setMasterSignature(AdvancedSignature masterSignature)	This setter allows to indicate the master signature.
void	setProvidedSigningCertificateToken(CertificateToken certificateToken)	This method allows to provide a signing certificate to be used in the validation process.
void	setSignatureFilename(String signatureFilename)	This method allows to set the signature filename (useful in case of ASiC)
void	validateStructure()	This method allows the structure validation of the signature.

Methods inherited from class java.lang.Object

clone, finalize, getClass, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface eu.europa.esig.dss.validation.AdvancedSignature

checkSignatureIntegrity, checkSignaturePolicy, checkSigningCertificate, getCandidatesForSigningCertificate, getCertificateRefs, getCertificateSource, getCertifiedSignerRoles, getClaimedSignerRoles, getCommitmentTypeIndication, getContentHints, getContentIdentifier, getContentType, getCounterSignatures, getCRLSource, getDAIdentifier, getDigestAlgorithm, getEncryptionAlgorithm, getMaskGenerationFunction, getMimeType, getOCSPSource, getReferenceValidations, getSignatureAlgorithm, getSignatureDigestReference, getSignatureForm, getSignatureLevels, getSignatureProductionPlace, getSignatureValue, getSigningTime, getTimestampSource, isDataForSignatureLevelPresent

Field Detail

certPool

protected final CertificatePool certPool

This is the reference to the global (external) pool of certificates. All encapsulated certificates in the signature are added to this pool. See CertificatePool

providedSigningCertificateToken

protected CertificateToken providedSigningCertificateToken

In the case of a non AdES signature the signing certificate is not mandatory within the signature and can be provided by the driving application.

detachedContents

protected List<DSSDocument> detachedContents

In case of a detached signature this is the signed document.

manifestFiles

protected List<ManifestFile> manifestFiles

In case of a ASiC-E signature this is the list of found manifest files.

referenceValidations

protected List<ReferenceValidation> referenceValidations

This variable contains a list of reference validations (reference tag for XAdES or message-digest for CAdES)

signatureCryptographicVerification

protected SignatureCryptographicVerification signatureCryptographicVerification

This variable contains the result of the signature mathematical validation. It is initialised when the method checkSignatureIntegrity is called.

structureValidation

protected String structureValidation

candidatesForSigningCertificate

protected CandidatesForSigningCertificate candidatesForSigningCertificate

The reference to the object containing all candidates to the signing certificate.

offlineCertificateSource

protected SignatureCertificateSource offlineCertificateSource

signatureCRLSource

protected SignatureCRLSource signatureCRLSource

signatureOCSPSource

protected SignatureOCSPSource signatureOCSPSource

signatureTimestampSource

protected SignatureTimestampSource signatureTimestampSource

signaturePolicy

protected SignaturePolicy signaturePolicy

signatureIdentifier

protected SignatureIdentifier signatureIdentifier

Constructor Detail

DefaultAdvancedSignature

protected DefaultAdvancedSignature(CertificatePool certPool)

Parameters:

certPool - can be null

Method Detail

buildSignatureIdentifier

protected abstract SignatureIdentifier buildSignatureIdentifier()

Build and defines signatureIdentifier value

getSignatureFilename

public String getSignatureFilename()

Description copied from interface: AdvancedSignature

This method returns the signature filename (useful for ASiC and multiple signature files)

Specified by:

getSignatureFilename in interface AdvancedSignature

Returns:

the signature filename

setSignatureFilename

public void setSignatureFilename(String signatureFilename)

Description copied from interface: AdvancedSignature

This method allows to set the signature filename (useful in case of ASiC)

Specified by:

setSignatureFilename in interface AdvancedSignature

getDetachedContents

public List<DSSDocument> getDetachedContents()

Specified by:

getDetachedContents in interface AdvancedSignature

Returns:

in the case of the detached signature this is the List of signed contents.

setDetachedContents

public void setDetachedContents(List<DSSDocument> detachedContents)

Description copied from interface: AdvancedSignature

This method allows to set the signed contents in the case of the detached signature.

Specified by:

setDetachedContents in interface AdvancedSignature

Parameters:

detachedContents - List of DSSDocument representing the signed detached contents.

getContainerContents

public List<DSSDocument> getContainerContents()

Specified by:

getContainerContents in interface AdvancedSignature

Returns:

in case of ASiC signature returns a list of container documents

setContainerContents

public void setContainerContents(List<DSSDocument> containerContents)

Description copied from interface: AdvancedSignature

This method allows to set the container contents in the case of ASiC signature.

Specified by:

setContainerContents in interface AdvancedSignature

Parameters:

containerContents - List of DSSDocument representing the container contents.

setManifestFiles

public void setManifestFiles(List<ManifestFile> manifestFiles)

Description copied from interface: AdvancedSignature

This method allows to set the manifest files in the case of ASiC-E signature.

Specified by:

setManifestFiles in interface AdvancedSignature

Parameters:

manifestFiles - List of ManifestFiles

getOrphanCertificateRefs

public List<CertificateRef> getOrphanCertificateRefs()

Description copied from interface: AdvancedSignature

Returns a list of orphan certificate refs, that are not associated to any CertificateToken

Specified by:

getOrphanCertificateRefs in interface AdvancedSignature

Returns:

list of found CertificateRefs

getDSSId

public SignatureIdentifier getDSSId()

Description copied from interface: AdvancedSignature

This method returns the SignatureIdentifier.

Specified by:

getDSSId in interface AdvancedSignature

Returns:

unique SignatureIdentifier

getId

public String getId()

Description copied from interface: AdvancedSignature

This method returns the DSS unique signature id. It allows to unambiguously identify each signature.

Specified by:

getId in interface AdvancedSignature

Returns:

The signature unique Id

getManifestedDocuments

public List<DSSDocument> getManifestedDocuments()

Specified by:

getManifestedDocuments in interface AdvancedSignature

Returns:

in case of ASiC-E signature returns a list of DSSDocuments contained in the related signature manifest

getDataFoundUpToLevel

public SignatureLevel getDataFoundUpToLevel()

Specified by:

getDataFoundUpToLevel in interface AdvancedSignature

Returns:

the upper level for which data have been found. Doesn't mean any validity of the data found. Null if unknown.

getCompleteCRLSource

public ListCRLSource getCompleteCRLSource()

Description copied from interface: AdvancedSignature

Gets a ListCRLSource representing a merged source from signatureCRLSourse and all included to the signature timestamp objects

Specified by:

getCompleteCRLSource in interface AdvancedSignature

Returns:

ListCRLSource

getCompleteOCSPSource

public ListOCSPSource getCompleteOCSPSource()

Description copied from interface: AdvancedSignature

Gets a ListOCSPSource representing a merged source from signatureOCSPSourse and all included to the signature timestamp objects

Specified by:

getCompleteOCSPSource in interface AdvancedSignature

Returns:

ListOCSPSource

getSignatureValidationContext

public ValidationContext getSignatureValidationContext(CertificateVerifier certificateVerifier)

This method validates the signing certificate and all timestamps.

Returns:

signature validation context containing all certificates and revocation data used during the validation process.

getCertificates

public List<CertificateToken> getCertificates()

Returns an unmodifiable list of all certificate tokens encapsulated in the signature

Specified by:

getCertificates in interface AdvancedSignature

Returns:

a list of certificate contained within the signature

See Also:

AdvancedSignature.getCertificates()

getTimestampSourceCertificates

public List<CertificateToken> getTimestampSourceCertificates()

Returns a list of CertificateTokens found in the SignatureTimestampSource

Returns:

list of CertificateTokens

getCertificatesForInclusion

public Set<CertificateToken> getCertificatesForInclusion(ValidationContext validationContext)

This method returns all certificates used during the validation process. If a certificate is already present within the signature then it is ignored.

Parameters:

validationContext - validation context containing all information about the validation process of the signing certificate and time-stamps

Returns:

set of certificates not yet present within the signature

getCertificateListWithinSignatureAndTimestamps

public List<CertificateToken> getCertificateListWithinSignatureAndTimestamps()

Description copied from interface: AdvancedSignature

Returns a list of all certificates found into signature and timestamps

Specified by:

getCertificateListWithinSignatureAndTimestamps in interface AdvancedSignature

Returns:

list of CertificateTokens

getCertificateMapWithinSignatureAndTimestamps

public Map<String,List<CertificateToken>> getCertificateMapWithinSignatureAndTimestamps(boolean skipLastArchiveTimestamp)

Returns a map between found certificate chains in signature and timestamps

Parameters:

skipLastArchiveTimestamp - - if chain for the last archive timestamp must not be included to the final map

Returns:

map between signature/timestamp instances and their certificate chains

getRevocationDataForInclusion

public DefaultAdvancedSignature.RevocationDataForInclusion getRevocationDataForInclusion(ValidationContext validationContext)

This method returns revocation values (ocsp and crl) that will be included in the LT profile.

Parameters:

validationContext - ValidationContext contains all the revocation data retrieved during the validation process.

Returns:

RevocationDataForInclusion

setMasterSignature

public void setMasterSignature(AdvancedSignature masterSignature)

Description copied from interface: AdvancedSignature

This setter allows to indicate the master signature. It means that this is a countersignature.

Specified by:

setMasterSignature in interface AdvancedSignature

Parameters:

masterSignature - AdvancedSignature

getMasterSignature

public AdvancedSignature getMasterSignature()

Specified by:

getMasterSignature in interface AdvancedSignature

Returns:

AdvancedSignature

getSignatureCryptographicVerification

public SignatureCryptographicVerification getSignatureCryptographicVerification()

Specified by:

getSignatureCryptographicVerification in interface AdvancedSignature

Returns:

SignatureCryptographicVerification with all the information collected during the validation process.

getSignerRoles

public List<SignerRole> getSignerRoles()

Description copied from interface: AdvancedSignature

Returns the list of roles of the signer.

Specified by:

getSignerRoles in interface AdvancedSignature

Returns:

list of the SignerRoles

getProvidedSigningCertificateToken

public CertificateToken getProvidedSigningCertificateToken()

Specified by:

getProvidedSigningCertificateToken in interface AdvancedSignature

Returns:

This method returns the provided signing certificate or null

setProvidedSigningCertificateToken

public void setProvidedSigningCertificateToken(CertificateToken certificateToken)

Description copied from interface: AdvancedSignature

This method allows to provide a signing certificate to be used in the validation process. It can happen in the case of a non-AdES signature without the signing certificate within the signature.

Specified by:

setProvidedSigningCertificateToken in interface AdvancedSignature

Parameters:

certificateToken - CertificateToken representing the signing certificate token.

getSigningCertificateToken

public CertificateToken getSigningCertificateToken()

Description copied from interface: AdvancedSignature

This method returns the signing certificate token or null if there is no valid signing certificate. Note that to determinate the signing certificate the signature must be validated: the method checkSignatureIntegrity must be called.

Specified by:

getSigningCertificateToken in interface AdvancedSignature

Returns:

prepareTimestamps

public void prepareTimestamps(ValidationContext validationContext)

This method adds to the ValidationContext all timestamps to be validated.

Specified by:

prepareTimestamps in interface AdvancedSignature

Parameters:

validationContext - ValidationContext to which the timestamps must be added

validateStructure

public void validateStructure()

Description copied from interface: AdvancedSignature

This method allows the structure validation of the signature.

Specified by:

validateStructure in interface AdvancedSignature

getStructureValidationResult

public String getStructureValidationResult()

Specified by:

getStructureValidationResult in interface AdvancedSignature

getContentTimestampReferences

protected List<TimestampedReference> getContentTimestampReferences()

getSignatureTimestampReferences

protected List<TimestampedReference> getSignatureTimestampReferences()

getSigningCertificateTimestampReferences

protected List<TimestampedReference> getSigningCertificateTimestampReferences()

addReferencesForPreviousTimestamps

protected void addReferencesForPreviousTimestamps(List<TimestampedReference> references,
                                                  List<TimestampToken> timestampedTimestamps)

addEncapsulatedCertificatesFromTimestamp

protected void addEncapsulatedCertificatesFromTimestamp(List<TimestampedReference> references,
                                                        TimestampToken timestampedTimestamp)

addReferencesForCertificates

protected void addReferencesForCertificates(List<TimestampedReference> references)

getTimestampedReferencesFromCertificates

protected List<TimestampedReference> getTimestampedReferencesFromCertificates(List<CertificateToken> certificateTokens)

Creates a list of TimestampedReferences for the provided certificateTokens

Parameters:

certificateTokens - list of CertificateTokens to create timestamped references for

Returns:

list of TimestampedReferences

addReferencesFromRevocationData

protected void addReferencesFromRevocationData(List<TimestampedReference> references)

This method adds references to retrieved revocation data.

Parameters:

references -

addReference

protected void addReference(List<TimestampedReference> referenceList,
                            TimestampedReference referenceToAdd)

Adds referenceToAdd to referenceList without duplicates

Parameters:

referenceList - - list of TimestampedReferences to be extended

referenceToAdd - - TimestampedReference to be added

addReferences

protected void addReferences(List<TimestampedReference> referenceList,
                             List<TimestampedReference> referencesToAdd)

Adds referencesToAdd to referenceList without duplicates

Parameters:

referenceList - - list of TimestampedReferences to be extended

referencesToAdd - - TimestampedReferences to be added

getPolicyId

public SignaturePolicy getPolicyId()

Description copied from interface: AdvancedSignature

Returns the Signature Policy OID from the signature.

Specified by:

getPolicyId in interface AdvancedSignature

Returns:

SignaturePolicy

populateCRLTokenLists

public void populateCRLTokenLists(SignatureCRLSource crlSource)

Description copied from interface: AdvancedSignature

Fills all the missing CRLTokens from the given signatureCRLSource

Specified by:

populateCRLTokenLists in interface AdvancedSignature

populateOCSPTokenLists

public void populateOCSPTokenLists(SignatureOCSPSource ocspSource)

Description copied from interface: AdvancedSignature

Fills all the missing OCSPTokens from the given signatureOCSPSource

Specified by:

populateOCSPTokenLists in interface AdvancedSignature

findSignatureScope

public void findSignatureScope(SignatureScopeFinder signatureScopeFinder)

Specified by:

findSignatureScope in interface AdvancedSignature

getSignatureScopes

public List<SignatureScope> getSignatureScopes()

Specified by:

getSignatureScopes in interface AdvancedSignature

getContentTimestamps

public List<TimestampToken> getContentTimestamps()

Description copied from interface: AdvancedSignature

Returns the content timestamps

Specified by:

getContentTimestamps in interface AdvancedSignature

Returns:

List of TimestampToken

getSignatureTimestamps

public List<TimestampToken> getSignatureTimestamps()

Description copied from interface: AdvancedSignature

Returns the signature timestamps

Specified by:

getSignatureTimestamps in interface AdvancedSignature

Returns:

List of TimestampToken

getTimestampsX1

public List<TimestampToken> getTimestampsX1()

Description copied from interface: AdvancedSignature

Returns the time-stamp which is placed on the digital signature (XAdES example: ds:SignatureValue element), the signature time-stamp(s) present in the AdES-T form, the certification path references and the revocation status references.

Specified by:

getTimestampsX1 in interface AdvancedSignature

Returns:

List of TimestampToken

getTimestampsX2

public List<TimestampToken> getTimestampsX2()

Description copied from interface: AdvancedSignature

Returns the time-stamp which is computed over the concatenation of CompleteCertificateRefs and CompleteRevocationRefs elements (XAdES example).

Specified by:

getTimestampsX2 in interface AdvancedSignature

Returns:

List of TimestampToken

getArchiveTimestamps

public List<TimestampToken> getArchiveTimestamps()

Description copied from interface: AdvancedSignature

Returns the archive Timestamps

Specified by:

getArchiveTimestamps in interface AdvancedSignature

Returns:

List of TimestampTokens

getDocumentTimestamps

public List<TimestampToken> getDocumentTimestamps()

Description copied from interface: AdvancedSignature

Returns a list of timestamps defined with the 'DocTimeStamp' type NOTE: applicable only for PAdES

Specified by:

getDocumentTimestamps in interface AdvancedSignature

Returns:

List of TimestampTokens

getAllTimestamps

public List<TimestampToken> getAllTimestamps()

Description copied from interface: AdvancedSignature

Returns a list of all timestamps found in the signature

Specified by:

getAllTimestamps in interface AdvancedSignature

Returns:

List of TimestampTokens

addExternalTimestamp

public void addExternalTimestamp(TimestampToken timestamp)

Description copied from interface: AdvancedSignature

This method allows to add an external timestamp. The given timestamp must be processed before.

Specified by:

addExternalTimestamp in interface AdvancedSignature

Parameters:

timestamp - the timestamp token

hasTProfile

public boolean hasTProfile()

hasLTProfile

public boolean hasLTProfile()

hasLTAProfile

public boolean hasLTAProfile()

getAllRevocationTokens

public Set<RevocationToken> getAllRevocationTokens()

Description copied from interface: AdvancedSignature

Retrieves the set of all RevocationTokens in the signature

Specified by:

getAllRevocationTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getRevocationValuesTokens

public List<RevocationToken> getRevocationValuesTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'RevocationValues' element NOTE: Applicable only for CAdES and XAdES revocation sources

Specified by:

getRevocationValuesTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getAttributeRevocationValuesTokens

public List<RevocationToken> getAttributeRevocationValuesTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'AttributeRevocationValues' element NOTE: Applicable only for XAdES revocation source

Specified by:

getAttributeRevocationValuesTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getTimestampValidationDataTokens

public List<RevocationToken> getTimestampValidationDataTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'TimestampValidationData/RevocationValues' element NOTE: Applicable only for XAdES revocation source

Specified by:

getTimestampValidationDataTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getDSSDictionaryRevocationTokens

public List<RevocationToken> getDSSDictionaryRevocationTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'DSS' dictionary NOTE: Applicable only for PAdES revocation source

Specified by:

getDSSDictionaryRevocationTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getVRIDictionaryRevocationTokens

public List<RevocationToken> getVRIDictionaryRevocationTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'VRI' dictionary NOTE: Applicable only for PAdES revocation source

Specified by:

getVRIDictionaryRevocationTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getCompleteRevocationCRLReferences

public List<CRLRef> getCompleteRevocationCRLReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all CRLRefs present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getCompleteRevocationCRLReferences in interface AdvancedSignature

Returns:

list of CRLRefs

getAttributeRevocationCRLReferences

public List<CRLRef> getAttributeRevocationCRLReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all CRLRefs present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getAttributeRevocationCRLReferences in interface AdvancedSignature

Returns:

list of CRLRefs

getTimestampRevocationCRLReferences

public List<CRLRef> getTimestampRevocationCRLReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all CRLRefs present in a timestamp element NOTE: Applicable only for CAdES revocation source

Specified by:

getTimestampRevocationCRLReferences in interface AdvancedSignature

Returns:

list of CRLRefs

getCompleteRevocationOCSPReferences

public List<OCSPRef> getCompleteRevocationOCSPReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all OCSPRefs present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getCompleteRevocationOCSPReferences in interface AdvancedSignature

Returns:

list of OCSPRefs

getAttributeRevocationOCSPReferences

public List<OCSPRef> getAttributeRevocationOCSPReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all OCSPRefs present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getAttributeRevocationOCSPReferences in interface AdvancedSignature

Returns:

list of OCSPRefs

getTimestampRevocationOCSPReferences

public List<OCSPRef> getTimestampRevocationOCSPReferences()

Description copied from interface: AdvancedSignature

Retrieves a list of all OCSPRefs present in a timestamp element NOTE: Applicable only for CAdES revocation source

Specified by:

getTimestampRevocationOCSPReferences in interface AdvancedSignature

Returns:

list of OCSPRefs

getAllFoundRevocationRefs

public List<RevocationRef> getAllFoundRevocationRefs()

Description copied from interface: AdvancedSignature

Retrieves a list of all found RevocationRefs present in the signature

Specified by:

getAllFoundRevocationRefs in interface AdvancedSignature

Returns:

list of RevocationRefs

getOrphanRevocationRefs

public List<RevocationRef> getOrphanRevocationRefs()

Description copied from interface: AdvancedSignature

Returns a list of all orphan RevocationRefs found into the signature

Specified by:

getOrphanRevocationRefs in interface AdvancedSignature

Returns:

list of RevocationRefs

getCompleteRevocationTokens

public List<RevocationToken> getCompleteRevocationTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'CompleteRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getCompleteRevocationTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

getAttributeRevocationTokens

public List<RevocationToken> getAttributeRevocationTokens()

Description copied from interface: AdvancedSignature

Retrieves the list of all RevocationTokens present in 'AttributeRevocationRefs' element NOTE: Applicable only for XAdES and CAdES revocation sources

Specified by:

getAttributeRevocationTokens in interface AdvancedSignature

Returns:

list of RevocationTokens

findRefsForRevocationToken

public List<RevocationRef> findRefsForRevocationToken(RevocationToken revocationToken)

Description copied from interface: AdvancedSignature

Retrieves a list of found RevocationRefs for the given revocationToken

Specified by:

findRefsForRevocationToken in interface AdvancedSignature

Parameters:

revocationToken - RevocationToken to get references for

Returns:

list of RevocationRefs

findRefsForRevocationIdentifier

public List<RevocationRef> findRefsForRevocationIdentifier(EncapsulatedRevocationTokenIdentifier revocationIdentifier)

Description copied from interface: AdvancedSignature

Retrieves a list of found RevocationRefs for the given revocationIdentifier

Specified by:

findRefsForRevocationIdentifier in interface AdvancedSignature

Parameters:

revocationIdentifier - EncapsulatedRevocationTokenIdentifier to get references for

Returns:

list of RevocationRefs

getAllFoundRevocationIdentifiers

public List<EncapsulatedRevocationTokenIdentifier> getAllFoundRevocationIdentifiers()

Description copied from interface: AdvancedSignature

Returns a list of all EncapsulatedRevocationTokenIdentifiers found in CRL and OCSP sources

Specified by:

getAllFoundRevocationIdentifiers in interface AdvancedSignature

Returns:

list of all EncapsulatedRevocationTokenIdentifiers

isDocHashOnlyValidation

public boolean isDocHashOnlyValidation()

Description copied from interface: AdvancedSignature

Returns true if the validation of the signature has been performed only on Signer's Document Representation (SDR). (An SDR typically is built on a cryptographic hash of the Signer's Document)

Specified by:

isDocHashOnlyValidation in interface AdvancedSignature

Returns:

true of it is DocHashOnly validation, false otherwise

isHashOnlyValidation

public boolean isHashOnlyValidation()

Description copied from interface: AdvancedSignature

Returns true if the validation of the signature has been performed only on Data To Be Signed Representation (DTBSR). EN 319 102-1 v1.1.1 (4.2.8 Data to be signed representation (DTBSR)): The DTBS preparation component shall take the DTBSF and hash it according to the hash algorithm specified in the cryptographic suite. The result of this process is the DTBSR, which is then used to create the signature. NOTE: In order for the produced hash to be representative of the DTBSF, the hashing function has the property that it is computationally infeasible to find collisions for the expected signature lifetime. Should the hash function become weak in the future, additional security measures, such as applying time-stamp tokens, can be taken.

Specified by:

isHashOnlyValidation in interface AdvancedSignature

Returns:

true of it is HashOnly validation, false otherwise

getMessageDigestValue

public byte[] getMessageDigestValue()

Specified by:

getMessageDigestValue in interface AdvancedSignature

getSignatureFieldName

public String getSignatureFieldName()

Specified by:

getSignatureFieldName in interface AdvancedSignature

getSignerName

public String getSignerName()

Specified by:

getSignerName in interface AdvancedSignature

getFilter

public String getFilter()

Specified by:

getFilter in interface AdvancedSignature

getSubFilter

public String getSubFilter()

Specified by:

getSubFilter in interface AdvancedSignature

getContactInfo

public String getContactInfo()

Specified by:

getContactInfo in interface AdvancedSignature

getReason

public String getReason()

Specified by:

getReason in interface AdvancedSignature

getSignatureByteRange

public int[] getSignatureByteRange()

Specified by:

getSignatureByteRange in interface AdvancedSignature

equals

public boolean equals(Object obj)

Overrides:

equals in class Object

hashCode

public int hashCode()

Overrides:

hashCode in class Object