Class EncryptedKeyResolver
java.lang.Object
org.apache.xml.security.keys.keyresolver.KeyResolverSpi
org.apache.xml.security.keys.keyresolver.implementations.EncryptedKeyResolver
The
EncryptedKeyResolver is not a generic resolver. It can
only be for specific instantiations, as the key being unwrapped will
always be of a particular type and will always have been wrapped by
another key which needs to be recursively resolved.
The EncryptedKeyResolver can therefore only be instantiated
with an algorithm. It can also be instantiated with a key (the KEK) or
will search the static KeyResolvers to find the appropriate key.-
Field Summary
Fields inherited from class org.apache.xml.security.keys.keyresolver.KeyResolverSpi
globalResolver, properties, secureValidation -
Constructor Summary
ConstructorsConstructorDescriptionEncryptedKeyResolver(String algorithm) Constructor for use when a KEK needs to be derived from a KeyInfo listEncryptedKeyResolver(String algorithm, Key kek) Constructor used for when a KEK has been set -
Method Summary
Modifier and TypeMethodDescriptionengineLookupAndResolvePublicKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolvePublicKeyengineLookupAndResolveSecretKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolveSecretKeyengineLookupResolveX509Certificate(Element element, String baseURI, StorageResolver storage) Method engineLookupResolveX509CertificatevoidregisterInternalKeyResolver(KeyResolverSpi realKeyResolver) This method is used to add a customKeyResolverSpito help resolve the KEK.Methods inherited from class org.apache.xml.security.keys.keyresolver.KeyResolverSpi
engineCanResolve, engineGetProperty, engineLookupAndResolvePrivateKey, engineResolvePublicKey, engineResolveSecretKey, engineResolveX509Certificate, engineSetProperty, getDocFromBytes, setGlobalResolver, setSecureValidation, understandsProperty
-
Constructor Details
-
EncryptedKeyResolver
Constructor for use when a KEK needs to be derived from a KeyInfo list- Parameters:
algorithm-
-
EncryptedKeyResolver
Constructor used for when a KEK has been set- Parameters:
algorithm-kek-
-
-
Method Details
-
registerInternalKeyResolver
This method is used to add a customKeyResolverSpito help resolve the KEK.- Parameters:
realKeyResolver-
-
engineLookupAndResolvePublicKey
public PublicKey engineLookupAndResolvePublicKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolvePublicKey- Overrides:
engineLookupAndResolvePublicKeyin classKeyResolverSpi- Returns:
- resolved public key from the registered from the element.
-
engineLookupResolveX509Certificate
public X509Certificate engineLookupResolveX509Certificate(Element element, String baseURI, StorageResolver storage) Method engineLookupResolveX509Certificate- Overrides:
engineLookupResolveX509Certificatein classKeyResolverSpi- Returns:
- resolved X509Certificate key from the registered from the elements
-
engineLookupAndResolveSecretKey
public SecretKey engineLookupAndResolveSecretKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolveSecretKey- Overrides:
engineLookupAndResolveSecretKeyin classKeyResolverSpi- Returns:
- resolved SecretKey key from the registered from the elements
-