WLCertManager (IBM MobileFirst Foundation Native Android API)

java.lang.Object
- com.worklight.common.security.WLCertManager

Direct Known Subclasses:

WLDeviceAuthManager, WLOAuthCertManager
```
public abstract class WLCertManager
extends java.lang.Object
```
Class that manages certificates on the specified keystore file. It also creates CSRs for the certificates it will later store. It has refactored code from WLDeviceAuthManager and WLUserAuthManager.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`clearKeystore(java.lang.String provisioningEntity)` Remove the keystore
`java.security.KeyPair`	`generateKeyPair(java.lang.String provisioningEntity, int rsaKeySize)` Generate a keypair(private + public) key set, for use with signing metadata.
`java.security.KeyPair`	`getKeyPair(java.lang.String provisioningEntity)`
`void`	`init(Context ctx)` Initialize state variables for this device auth session
`void`	`removeEntityKeyStoreValues(java.lang.String provisioningEntity)` Remove the
`java.lang.String`	`signCsr(JSONObject csrJSON, java.lang.String provisioningEntity)` This method signs on a given content according to JWS standard (JSON Web Signature - http://datatracker.ietf.org/doc/draft-ietf-jose-json-web-signature/?include_text=1) We'll be using the public key We use the SHA256withRSA algorithm for creating the JWS header
`java.lang.String`	`signJWS(JSONObject payladJSON, java.security.interfaces.RSAPublicKey publicKey, java.security.PrivateKey privateKey, java.lang.String kid)`

Methods inherited from class java.lang.Object
equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

init
```
public void init(Context ctx)
```
Initialize state variables for this device auth session

Parameters:

ctx -

generateKeyPair

public java.security.KeyPair generateKeyPair(java.lang.String provisioningEntity,
                                             int rsaKeySize)
                                      throws java.security.NoSuchAlgorithmException,
                                             java.io.IOException,
                                             java.security.NoSuchProviderException

Generate a keypair(private + public) key set, for use with signing metadata. Using RSA with a 512 long key size Store the keyPair in SharedPresences and cache it in this instance.

Returns:
Throws:: java.security.NoSuchAlgorithmException; java.io.IOException; java.security.NoSuchProviderException

signCsr
```
public java.lang.String signCsr(JSONObject csrJSON,
                                java.lang.String provisioningEntity)
                         throws java.lang.Exception
```
This method signs on a given content according to JWS standard (JSON Web Signature - http://datatracker.ietf.org/doc/draft-ietf-jose-json-web-signature/?include_text=1) We'll be using the public key We use the SHA256withRSA algorithm for creating the JWS header

Parameters:

csrJSON - - a JSON Object with the content to sign on

provisioningEntity -

Returns:

The signed payload as Base64 encoded string.

Throws:

java.lang.Exception

signJWS

public java.lang.String signJWS(JSONObject payladJSON,
                                java.security.interfaces.RSAPublicKey publicKey,
                                java.security.PrivateKey privateKey,
                                java.lang.String kid)
                         throws JSONException,
                                java.io.UnsupportedEncodingException,
                                java.security.NoSuchAlgorithmException,
                                java.security.InvalidKeyException,
                                java.security.SignatureException

Throws:: JSONException; java.io.UnsupportedEncodingException; java.security.NoSuchAlgorithmException; java.security.InvalidKeyException; java.security.SignatureException

clearKeystore

public void clearKeystore(java.lang.String provisioningEntity)
                   throws java.security.KeyStoreException

Remove the keystore

Throws:: java.security.KeyStoreException

removeEntityKeyStoreValues

public void removeEntityKeyStoreValues(java.lang.String provisioningEntity)
                                throws java.security.KeyStoreException

Remove the

Throws:: java.security.KeyStoreException

getKeyPair

public java.security.KeyPair getKeyPair(java.lang.String provisioningEntity)
                                 throws java.security.KeyStoreException,
                                        java.security.NoSuchAlgorithmException,
                                        java.security.UnrecoverableEntryException,
                                        java.io.IOException,
                                        java.lang.ClassNotFoundException

Throws:: java.security.KeyStoreException; java.security.NoSuchAlgorithmException; java.security.UnrecoverableEntryException; java.io.IOException; java.lang.ClassNotFoundException

Class WLCertManager