Class EncryptedKeyResolver
java.lang.Object
org.apache.xml.security.keys.keyresolver.KeyResolverSpi
org.apache.xml.security.keys.keyresolver.implementations.EncryptedKeyResolver
The
EncryptedKeyResolver
is not a generic resolver. It can
only be for specific instantiations, as the key being unwrapped will
always be of a particular type and will always have been wrapped by
another key which needs to be recursively resolved.
The EncryptedKeyResolver
can therefore only be instantiated
with an algorithm. It can also be instantiated with a key (the KEK) or
will search the static KeyResolvers to find the appropriate key.-
Field Summary
FieldsModifier and TypeFieldDescriptionprivate String
private List<KeyResolverSpi>
private Key
private static final org.slf4j.Logger
Fields inherited from class org.apache.xml.security.keys.keyresolver.KeyResolverSpi
globalResolver, properties, secureValidation
-
Constructor Summary
ConstructorsConstructorDescriptionEncryptedKeyResolver
(String algorithm) Constructor for use when a KEK needs to be derived from a KeyInfo listEncryptedKeyResolver
(String algorithm, Key kek) Constructor used for when a KEK has been set -
Method Summary
Modifier and TypeMethodDescriptionengineLookupAndResolvePublicKey
(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolvePublicKeyengineLookupAndResolveSecretKey
(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolveSecretKeyengineLookupResolveX509Certificate
(Element element, String baseURI, StorageResolver storage) Method engineLookupResolveX509Certificatevoid
registerInternalKeyResolver
(KeyResolverSpi realKeyResolver) This method is used to add a customKeyResolverSpi
to help resolve the KEK.Methods inherited from class org.apache.xml.security.keys.keyresolver.KeyResolverSpi
engineCanResolve, engineGetProperty, engineLookupAndResolvePrivateKey, engineResolvePublicKey, engineResolveSecretKey, engineResolveX509Certificate, engineSetProperty, getDocFromBytes, setGlobalResolver, setSecureValidation, understandsProperty
-
Field Details
-
LOG
private static final org.slf4j.Logger LOG -
kek
-
algorithm
-
internalKeyResolvers
-
-
Constructor Details
-
EncryptedKeyResolver
Constructor for use when a KEK needs to be derived from a KeyInfo list- Parameters:
algorithm
-
-
EncryptedKeyResolver
Constructor used for when a KEK has been set- Parameters:
algorithm
-kek
-
-
-
Method Details
-
registerInternalKeyResolver
This method is used to add a customKeyResolverSpi
to help resolve the KEK.- Parameters:
realKeyResolver
-
-
engineLookupAndResolvePublicKey
public PublicKey engineLookupAndResolvePublicKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolvePublicKey- Overrides:
engineLookupAndResolvePublicKey
in classKeyResolverSpi
- Returns:
- resolved public key from the registered from the element.
-
engineLookupResolveX509Certificate
public X509Certificate engineLookupResolveX509Certificate(Element element, String baseURI, StorageResolver storage) Method engineLookupResolveX509Certificate- Overrides:
engineLookupResolveX509Certificate
in classKeyResolverSpi
- Returns:
- resolved X509Certificate key from the registered from the elements
-
engineLookupAndResolveSecretKey
public SecretKey engineLookupAndResolveSecretKey(Element element, String baseURI, StorageResolver storage) Method engineLookupAndResolveSecretKey- Overrides:
engineLookupAndResolveSecretKey
in classKeyResolverSpi
- Returns:
- resolved SecretKey key from the registered from the elements
-