/*
|
* The contents of this file are subject to the terms of the Common Development and
|
* Distribution License (the License). You may not use this file except in compliance with the
|
* License.
|
*
|
* You can obtain a copy of the License at legal/CDDLv1.0.txt. See the License for the
|
* specific language governing permission and limitations under the License.
|
*
|
* When distributing Covered Software, include this CDDL Header Notice in each file and include
|
* the License file at legal/CDDLv1.0.txt. If applicable, add the following below the CDDL
|
* Header, with the fields enclosed by brackets [] replaced by your own identifying
|
* information: "Portions Copyright [year] [name of copyright owner]".
|
*
|
* Copyright 2008-2009 Sun Microsystems, Inc.
|
* Portions Copyright 2013-2016 ForgeRock AS.
|
*/
|
package org.opends.quicksetup.ui;
|
|
import static org.opends.messages.QuickSetupMessages.*;
|
|
import java.awt.CardLayout;
|
import java.awt.Component;
|
import java.awt.Dimension;
|
import java.awt.GridBagConstraints;
|
import java.awt.GridBagLayout;
|
import java.awt.event.ActionEvent;
|
import java.awt.event.ActionListener;
|
import java.awt.event.WindowAdapter;
|
import java.awt.event.WindowEvent;
|
import java.security.MessageDigest;
|
import java.security.NoSuchAlgorithmException;
|
import java.security.cert.CertificateEncodingException;
|
import java.security.cert.X509Certificate;
|
import java.text.DateFormat;
|
import java.util.Date;
|
import java.util.HashMap;
|
import java.util.Map;
|
|
import javax.naming.ldap.LdapName;
|
import javax.naming.ldap.Rdn;
|
import javax.swing.Box;
|
import javax.swing.JButton;
|
import javax.swing.JComboBox;
|
import javax.swing.JComponent;
|
import javax.swing.JDialog;
|
import javax.swing.JEditorPane;
|
import javax.swing.JFrame;
|
import javax.swing.JLabel;
|
import javax.swing.JPanel;
|
import javax.swing.JScrollPane;
|
import javax.swing.border.EmptyBorder;
|
import javax.swing.event.HyperlinkEvent;
|
import javax.swing.event.HyperlinkListener;
|
|
import org.forgerock.i18n.LocalizableMessage;
|
import org.forgerock.i18n.LocalizableMessageBuilder;
|
import org.forgerock.i18n.slf4j.LocalizedLogger;
|
import org.opends.quicksetup.UserDataCertificateException;
|
import org.opends.quicksetup.event.MinimumSizeComponentListener;
|
|
/**
|
* This class is used to present the user a certificate to the user in order
|
* it to be accepted.
|
*/
|
public class CertificateDialog extends JDialog implements HyperlinkListener
|
{
|
/**
|
* The enumeration that defines the different answers that the user can
|
* provide for this dialog.
|
*/
|
public enum ReturnType
|
{
|
/** The user did not accept the certificate. */
|
NOT_ACCEPTED,
|
/** The user accepted the certificate only for this session. */
|
ACCEPTED_FOR_SESSION,
|
/** The user accepted the certificate permanently. */
|
ACCEPTED_PERMANENTLY
|
}
|
private static final long serialVersionUID = -8989965057591475064L;
|
private ReturnType returnValue = ReturnType.NOT_ACCEPTED;
|
private final UserDataCertificateException ce;
|
private JButton doNotAcceptButton;
|
private JComponent certificateDetails;
|
private JEditorPane explanationPane;
|
private boolean detailsAlreadyClicked;
|
private String explanationWithHideDetails;
|
private String explanationWithShowDetails;
|
|
private static final LocalizedLogger logger = LocalizedLogger.getLoggerForThisClass();
|
|
/**
|
* Constructor of the certificate dialog.
|
* @param parent the parent frame for this dialog.
|
* @param ce the UserDataCertificateException we use to get the information
|
* about the certificate that was presented and the reason why it was
|
* rejected.
|
*/
|
public CertificateDialog(JFrame parent, UserDataCertificateException ce)
|
{
|
super(parent);
|
this.ce = ce;
|
setTitle(INFO_CERTIFICATE_DIALOG_TITLE.get().toString());
|
getContentPane().add(createPanel());
|
setModal(true);
|
pack();
|
if (parent != null
|
&& getPreferredSize().width > parent.getWidth())
|
{
|
setPreferredSize(new Dimension(Math.max(parent.getWidth() - 20, 600),
|
getPreferredSize().height));
|
}
|
pack();
|
int minWidth = (int) getPreferredSize().getWidth();
|
int minHeight = (int) getPreferredSize().getHeight();
|
addComponentListener(new MinimumSizeComponentListener(this, minWidth,
|
minHeight));
|
getRootPane().setDefaultButton(doNotAcceptButton);
|
|
addWindowListener(new WindowAdapter()
|
{
|
@Override
|
public void windowClosing(WindowEvent e)
|
{
|
doNotAccept();
|
}
|
});
|
setDefaultCloseOperation(DO_NOTHING_ON_CLOSE);
|
|
Utilities.centerOnComponent(this, parent);
|
}
|
|
/**
|
* Wheter the user accepted the certificate or not.
|
* @return the ReturnType object defining what the user chose to do with the
|
* certificate.
|
*/
|
public ReturnType getUserAnswer()
|
{
|
return returnValue;
|
}
|
|
/**
|
* Implements HyperlinkListener. When the user clicks on a link we assume
|
* that is the show details/hide details and we update the visible components
|
* accordingly.
|
*
|
* @param e the HyperlinkEvent.
|
*/
|
@Override
|
public void hyperlinkUpdate(HyperlinkEvent e)
|
{
|
if (e.getEventType() == HyperlinkEvent.EventType.ACTIVATED)
|
{
|
boolean detailsVisible = !certificateDetails.isVisible();
|
explanationPane.setText(detailsVisible?
|
explanationWithHideDetails:explanationWithShowDetails);
|
certificateDetails.setVisible(detailsVisible);
|
if (detailsVisible && !detailsAlreadyClicked)
|
{
|
detailsAlreadyClicked = true;
|
pack();
|
}
|
}
|
}
|
|
/**
|
* Creates and returns the panel of the dialog.
|
* @return the panel of the dialog.
|
*/
|
private JPanel createPanel()
|
{
|
GridBagConstraints gbc = new GridBagConstraints();
|
|
JPanel contentPanel = new JPanel(new GridBagLayout());
|
contentPanel.setBackground(UIFactory.DEFAULT_BACKGROUND);
|
gbc.anchor = GridBagConstraints.NORTHWEST;
|
gbc.insets = UIFactory.getEmptyInsets();
|
gbc.fill = GridBagConstraints.BOTH;
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.weightx = 1.0;
|
|
JPanel topPanel = new JPanel(new GridBagLayout());
|
topPanel.setBorder(UIFactory.DIALOG_PANEL_BORDER);
|
topPanel.setBackground(UIFactory.CURRENT_STEP_PANEL_BACKGROUND);
|
|
gbc.weighty = 0.0;
|
gbc.insets = UIFactory.getCurrentStepPanelInsets();
|
topPanel.add(createTitlePanel(), gbc);
|
gbc.insets.top = UIFactory.TOP_INSET_INSTRUCTIONS_SUBPANEL;
|
topPanel.add(createTextPane(), gbc);
|
certificateDetails = createCertificateDetailsPane();
|
gbc.insets.top = 0;
|
gbc.insets.bottom = 0;
|
topPanel.add(Box.createHorizontalStrut(
|
certificateDetails.getPreferredSize().width), gbc);
|
gbc.insets.top = 0;
|
gbc.weighty = 1.0;
|
JPanel auxPanel = UIFactory.makeJPanel();
|
auxPanel.setLayout(new GridBagLayout());
|
gbc.weightx = 0.0;
|
gbc.insets = UIFactory.getEmptyInsets();
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
auxPanel.add(Box.createVerticalStrut(100), gbc);
|
gbc.weightx = 1.0;
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
auxPanel.add(certificateDetails, gbc);
|
gbc.insets = UIFactory.getCurrentStepPanelInsets();
|
gbc.insets.bottom = UIFactory.TOP_INSET_INPUT_SUBPANEL;
|
topPanel.add(auxPanel, gbc);
|
certificateDetails.setVisible(false);
|
gbc.weighty = 0.2;
|
gbc.insets = UIFactory.getEmptyInsets();
|
topPanel.add(Box.createVerticalGlue(), gbc);
|
contentPanel.add(topPanel, gbc);
|
gbc.weighty = 0.0;
|
gbc.insets = UIFactory.getButtonsPanelInsets();
|
gbc.fill = GridBagConstraints.HORIZONTAL;
|
contentPanel.add(createButtonsPanel(), gbc);
|
|
return contentPanel;
|
}
|
|
/**
|
* Creates and returns the title sub panel.
|
* @return the title sub panel.
|
*/
|
private Component createTitlePanel()
|
{
|
JPanel titlePanel = UIFactory.makeJPanel();
|
titlePanel.setLayout(new GridBagLayout());
|
GridBagConstraints gbc = new GridBagConstraints();
|
gbc.anchor = GridBagConstraints.NORTHWEST;
|
gbc.fill = GridBagConstraints.BOTH;
|
gbc.weightx = 0.0;
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
|
LocalizableMessage title = INFO_CERTIFICATE_TITLE.get();
|
JLabel l =
|
UIFactory.makeJLabel(UIFactory.IconType.NO_ICON, title,
|
UIFactory.TextStyle.TITLE);
|
l.setOpaque(false);
|
titlePanel.add(l, gbc);
|
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
gbc.anchor = GridBagConstraints.NORTHWEST;
|
gbc.weightx = 1.0;
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.insets.left = 0;
|
gbc.weightx = 1.0;
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
titlePanel.add(Box.createHorizontalGlue(), gbc);
|
|
return titlePanel;
|
}
|
|
/**
|
* Creates and returns the text sub panel.
|
* @return the text sub panel.
|
*/
|
private Component createTextPane()
|
{
|
LocalizableMessage text;
|
if (ce.getType() == UserDataCertificateException.Type.NOT_TRUSTED)
|
{
|
text = INFO_CERTIFICATE_NOT_TRUSTED_TEXT.get(
|
ce.getHost(), ce.getPort(),
|
ce.getHost(), ce.getPort());
|
}
|
else
|
{
|
text = INFO_CERTIFICATE_NAME_MISMATCH_TEXT.get(
|
ce.getHost(), ce.getPort(),
|
ce.getHost(),
|
ce.getHost(), ce.getPort(),
|
ce.getHost(), ce.getPort());
|
}
|
JPanel p = UIFactory.makeJPanel();
|
p.setLayout(new GridBagLayout());
|
GridBagConstraints gbc = new GridBagConstraints();
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
gbc.anchor = GridBagConstraints.NORTHWEST;
|
p.add(UIFactory.makeJLabel(UIFactory.IconType.WARNING_LARGE, null,
|
UIFactory.TextStyle.NO_STYLE), gbc);
|
gbc.weightx = 1.0;
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.fill = GridBagConstraints.BOTH;
|
gbc.insets.left = UIFactory.LEFT_INSET_PRIMARY_FIELD;
|
gbc.insets.bottom = 0;
|
explanationPane = UIFactory.makeHtmlPane(null, UIFactory.INSTRUCTIONS_FONT);
|
explanationPane.setOpaque(false);
|
explanationPane.setEditable(false);
|
explanationPane.addHyperlinkListener(this);
|
p.add(explanationPane, gbc);
|
if (ce.getChain() != null && ce.getChain().length > 0)
|
{
|
LocalizableMessageBuilder mb = new LocalizableMessageBuilder();
|
mb.append(text);
|
mb.append(INFO_CERTIFICATE_SHOW_DETAILS_TEXT.get());
|
explanationWithShowDetails = UIFactory.applyFontToHtml(
|
mb.toString(), UIFactory.INSTRUCTIONS_FONT);
|
LocalizableMessageBuilder mb2 = new LocalizableMessageBuilder();
|
mb2.append(text);
|
mb2.append(INFO_CERTIFICATE_HIDE_DETAILS_TEXT.get());
|
explanationWithHideDetails = UIFactory.applyFontToHtml(
|
mb2.toString(), UIFactory.INSTRUCTIONS_FONT);
|
|
explanationPane.setText(explanationWithShowDetails);
|
}
|
else
|
{
|
explanationPane.setText(text.toString());
|
}
|
return p;
|
}
|
|
/**
|
* Creates and returns the buttons DO NOT ACCEPT/ACCEPT FOR THIS SESSION/
|
* ACCEPT PERMANENTLY sub panel.
|
* @return the buttons DO NOT ACCEPT/ACCEPT FOR THIS SESSION/ACCEPT
|
* PERMANENTLY sub panel.
|
*/
|
private Component createButtonsPanel()
|
{
|
JPanel buttonsPanel = UIFactory.makeJPanel();
|
buttonsPanel.setLayout(new GridBagLayout());
|
GridBagConstraints gbc = new GridBagConstraints();
|
gbc.fill = GridBagConstraints.HORIZONTAL;
|
gbc.gridwidth = 4;
|
gbc.insets = UIFactory.getEmptyInsets();
|
gbc.insets.left = UIFactory.getCurrentStepPanelInsets().left;
|
buttonsPanel.add(UIFactory.makeJLabel(UIFactory.IconType.NO_ICON,
|
null, UIFactory.TextStyle.NO_STYLE), gbc);
|
gbc.weightx = 1.0;
|
gbc.gridwidth--;
|
gbc.insets.left = 0;
|
buttonsPanel.add(Box.createHorizontalGlue(), gbc);
|
gbc.gridwidth = 3;
|
gbc.fill = GridBagConstraints.NONE;
|
gbc.weightx = 0.0;
|
JButton acceptSessionButton = UIFactory.makeJButton(
|
INFO_CERTIFICATE_DIALOG_ACCEPT_FOR_SESSION_BUTTON_LABEL.get(),
|
INFO_CERTIFICATE_DIALOG_ACCEPT_FOR_SESSION_BUTTON_TOOLTIP.get());
|
buttonsPanel.add(acceptSessionButton, gbc);
|
acceptSessionButton.addActionListener(new ActionListener() {
|
@Override
|
public void actionPerformed(ActionEvent ev) {
|
acceptForSession();
|
}
|
});
|
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
gbc.insets.left = UIFactory.HORIZONTAL_INSET_BETWEEN_BUTTONS;
|
JButton acceptPermanentlyButton = UIFactory.makeJButton(
|
INFO_CERTIFICATE_DIALOG_ACCEPT_PERMANENTLY_BUTTON_LABEL.get(),
|
INFO_CERTIFICATE_DIALOG_ACCEPT_PERMANENTLY_BUTTON_TOOLTIP.get());
|
buttonsPanel.add(acceptPermanentlyButton, gbc);
|
acceptPermanentlyButton.addActionListener(new ActionListener() {
|
@Override
|
public void actionPerformed(ActionEvent ev) {
|
acceptPermanently();
|
}
|
});
|
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
doNotAcceptButton =
|
UIFactory.makeJButton(
|
INFO_CERTIFICATE_DIALOG_DO_NOT_ACCEPT_BUTTON_LABEL.get(),
|
INFO_CERTIFICATE_DIALOG_DO_NOT_ACCEPT_BUTTON_TOOLTIP.get());
|
buttonsPanel.add(doNotAcceptButton, gbc);
|
doNotAcceptButton.addActionListener(new ActionListener()
|
{
|
@Override
|
public void actionPerformed(ActionEvent ev)
|
{
|
doNotAccept();
|
}
|
});
|
|
return buttonsPanel;
|
}
|
|
/**
|
* Creates the panel containing a representation of the certificate chain.
|
* @return the panel containing a representation of the certificate chain.
|
*/
|
private JComponent createCertificateDetailsPane()
|
{
|
JPanel p = UIFactory.makeJPanel();
|
p.setLayout(new GridBagLayout());
|
if (ce.getChain() != null && ce.getChain().length > 0)
|
{
|
final JComboBox<String> combo = new JComboBox<String>();
|
combo.setToolTipText(
|
INFO_CERTIFICATE_CHAIN_COMBO_TOOLTIP.get().toString());
|
final CardLayout cl = new CardLayout();
|
final JPanel cardPanel = new JPanel(cl);
|
final Map<String, JPanel> hmPanels = new HashMap<>();
|
|
LocalizableMessage[] labels =
|
{
|
INFO_CERTIFICATE_SUBJECT_LABEL.get(),
|
INFO_CERTIFICATE_ISSUED_BY_LABEL.get(),
|
INFO_CERTIFICATE_VALID_FROM_LABEL.get(),
|
INFO_CERTIFICATE_EXPIRES_ON_LABEL.get(),
|
INFO_CERTIFICATE_TYPE_LABEL.get(),
|
INFO_CERTIFICATE_SERIAL_NUMBER_LABEL.get(),
|
INFO_CERTIFICATE_MD5_FINGERPRINT_LABEL.get(),
|
INFO_CERTIFICATE_SHA1_FINGERPRINT_LABEL.get()
|
};
|
|
for (int i=0; i<ce.getChain().length; i++)
|
{
|
X509Certificate cert = ce.getChain()[i];
|
JComponent[] components =
|
{
|
createSubjectComponent(cert),
|
createIssuedByComponent(cert),
|
createValidFromComponent(cert),
|
createExpiresOnComponent(cert),
|
createTypeComponent(cert),
|
createSerialNumberComponent(cert),
|
createMD5FingerprintComponent(cert),
|
createSHA1FingerprintComponent(cert)
|
};
|
JPanel certPanel = UIFactory.makeJPanel();
|
certPanel.setLayout(new GridBagLayout());
|
GridBagConstraints gbc = new GridBagConstraints();
|
gbc.anchor = GridBagConstraints.NORTHWEST;
|
gbc.fill = GridBagConstraints.HORIZONTAL;
|
|
for (int j=0; j<labels.length; j++)
|
{
|
JLabel l = UIFactory.makeJLabel(UIFactory.IconType.NO_ICON,
|
labels[j], UIFactory.TextStyle.PRIMARY_FIELD_VALID);
|
|
l.setLabelFor(components[j]);
|
if (j > 0)
|
{
|
gbc.insets.top = UIFactory.TOP_INSET_SECONDARY_FIELD;
|
}
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
gbc.weightx = 0.0;
|
gbc.insets.left = 0;
|
certPanel.add(l, gbc);
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.weightx = 1.0;
|
gbc.insets.left = UIFactory.LEFT_INSET_SECONDARY_FIELD;
|
certPanel.add(components[j], gbc);
|
}
|
String name = getName(cert);
|
hmPanels.put(name, certPanel);
|
cardPanel.add(name, certPanel);
|
combo.addItem(name);
|
}
|
GridBagConstraints gbc = new GridBagConstraints();
|
if (ce.getChain().length == 1)
|
{
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.weightx = 1.0;
|
gbc.fill = GridBagConstraints.BOTH;
|
p.add(cardPanel, gbc);
|
|
gbc.weighty = 1.0;
|
p.add(Box.createVerticalGlue(), gbc);
|
}
|
else
|
{
|
gbc.anchor = GridBagConstraints.WEST;
|
gbc.gridwidth = 3;
|
gbc.fill = GridBagConstraints.HORIZONTAL;
|
JPanel auxPanel = UIFactory.makeJPanel();
|
auxPanel.setLayout(new GridBagLayout());
|
JLabel l = UIFactory.makeJLabel(UIFactory.IconType.NO_ICON,
|
INFO_CERTIFICATE_CHAIN_LABEL.get(),
|
UIFactory.TextStyle.PRIMARY_FIELD_VALID);
|
auxPanel.add(l, gbc);
|
gbc.gridwidth = GridBagConstraints.RELATIVE;
|
gbc.insets.left = UIFactory.LEFT_INSET_SECONDARY_FIELD;
|
auxPanel.add(combo, gbc);
|
l.setLabelFor(combo);
|
gbc.gridwidth = GridBagConstraints.REMAINDER;
|
gbc.insets.left = 0;
|
gbc.weightx = 1.0;
|
auxPanel.add(Box.createHorizontalGlue(), gbc);
|
|
p.add(auxPanel, gbc);
|
|
gbc.insets.top = UIFactory.TOP_INSET_PRIMARY_FIELD;
|
gbc.fill = GridBagConstraints.BOTH;
|
p.add(cardPanel, gbc);
|
|
gbc.weighty = 1.0;
|
p.add(Box.createVerticalGlue(), gbc);
|
}
|
|
combo.addActionListener(new ActionListener()
|
{
|
@Override
|
public void actionPerformed(ActionEvent ev)
|
{
|
String selectedItem = (String)combo.getSelectedItem();
|
cl.show(hmPanels.get(selectedItem), selectedItem);
|
}
|
});
|
}
|
JScrollPane scroll = new JScrollPane(p);
|
scroll.setViewportBorder(new EmptyBorder(0, 0, 0, 0));
|
scroll.setOpaque(false);
|
scroll.getViewport().setOpaque(false);
|
scroll.setPreferredSize(new Dimension(scroll.getPreferredSize().width,
|
175));
|
return scroll;
|
}
|
|
private JComponent createSubjectComponent(X509Certificate cert)
|
{
|
LocalizableMessage dn = LocalizableMessage.raw(cert.getSubjectX500Principal().getName());
|
return makeValueLabel(dn);
|
}
|
|
private JComponent createIssuedByComponent(X509Certificate cert)
|
{
|
LocalizableMessage dn = LocalizableMessage.raw(cert.getIssuerX500Principal().getName());
|
return makeValueLabel(dn);
|
}
|
|
private JComponent createValidFromComponent(X509Certificate cert)
|
{
|
JComponent c;
|
|
Date date = cert.getNotBefore();
|
DateFormat df = DateFormat.getDateTimeInstance(DateFormat.SHORT,
|
DateFormat.SHORT);
|
LocalizableMessage value = LocalizableMessage.raw(df.format(date));
|
long t1 = System.currentTimeMillis();
|
long t2 = date.getTime();
|
boolean isNotValidYet = t1 < t2;
|
|
if (isNotValidYet)
|
{
|
c = UIFactory.makeJLabel(UIFactory.IconType.ERROR,
|
INFO_CERTIFICATE_NOT_VALID_YET.get(value),
|
UIFactory.TextStyle.SECONDARY_FIELD_INVALID);
|
}
|
else
|
{
|
c = makeValueLabel(value);
|
}
|
return c;
|
}
|
|
|
private JComponent createExpiresOnComponent(X509Certificate cert)
|
{
|
JComponent c;
|
|
Date date = cert.getNotAfter();
|
DateFormat df = DateFormat.getDateTimeInstance(DateFormat.SHORT,
|
DateFormat.SHORT);
|
LocalizableMessage value = LocalizableMessage.raw(df.format(date));
|
long t1 = System.currentTimeMillis();
|
long t2 = date.getTime();
|
boolean isExpired = t1 > t2;
|
|
if (isExpired)
|
{
|
c = UIFactory.makeJLabel(UIFactory.IconType.ERROR,
|
INFO_CERTIFICATE_EXPIRED.get(value),
|
UIFactory.TextStyle.SECONDARY_FIELD_INVALID);
|
}
|
else
|
{
|
c = makeValueLabel(value);
|
}
|
return c;
|
}
|
|
|
private JComponent createTypeComponent(X509Certificate cert)
|
{
|
LocalizableMessage type = LocalizableMessage.raw(cert.getType());
|
return makeValueLabel(type);
|
}
|
|
private JComponent createSerialNumberComponent(X509Certificate cert)
|
{
|
LocalizableMessage serialNumber = LocalizableMessage.raw(String.valueOf(cert.getSerialNumber()));
|
return makeValueLabel(serialNumber);
|
}
|
|
|
/**
|
* Returns the LocalizableMessage representation of the SHA1 fingerprint.
|
* @param cert the certificate object.
|
* @return the LocalizableMessage representation of the SHA1 fingerprint.
|
*/
|
private static LocalizableMessage getSHA1FingerPrint(X509Certificate cert)
|
{
|
return getFingerPrint(cert, "SHA1");
|
}
|
|
/**
|
* Returns the LocalizableMessage representation of the MD5 fingerprint.
|
* @param cert the certificate object.
|
* @return the LocalizableMessage representation of the MD5 fingerprint.
|
*/
|
private static LocalizableMessage getMD5FingerPrint(X509Certificate cert)
|
{
|
return getFingerPrint(cert, "MD5");
|
}
|
|
private static LocalizableMessage getFingerPrint(X509Certificate cert, String algorithm)
|
{
|
try {
|
MessageDigest md = MessageDigest.getInstance(algorithm);
|
byte[] b = md.digest(cert.getEncoded());
|
StringBuilder sb = new StringBuilder();
|
for (int i = 0; i < b.length; i++)
|
{
|
if (i > 0)
|
{
|
sb.append(":");
|
}
|
sb.append(Integer.toHexString(b[i] & 0xFF));
|
}
|
return LocalizableMessage.raw(sb);
|
}
|
catch (NoSuchAlgorithmException nsae) {
|
logger.warn(LocalizableMessage.raw(algorithm + " algorithm not supported: " + nsae, nsae));
|
return null;
|
}
|
catch (CertificateEncodingException cee) {
|
logger.warn(LocalizableMessage.raw("Certificate encoding exception: "+cee, cee));
|
return null;
|
}
|
}
|
|
private JComponent createSHA1FingerprintComponent(X509Certificate cert)
|
{
|
return UIFactory.makeTextPane(getSHA1FingerPrint(cert),
|
UIFactory.TextStyle.SECONDARY_FIELD_VALID);
|
}
|
|
private JComponent createMD5FingerprintComponent(X509Certificate cert)
|
{
|
return UIFactory.makeTextPane(getMD5FingerPrint(cert),
|
UIFactory.TextStyle.SECONDARY_FIELD_VALID);
|
}
|
|
private JLabel makeValueLabel(LocalizableMessage value)
|
{
|
if (value == null)
|
{
|
value = INFO_NOT_AVAILABLE_LABEL.get();
|
}
|
return UIFactory.makeJLabel(UIFactory.IconType.NO_ICON, value,
|
UIFactory.TextStyle.SECONDARY_FIELD_VALID);
|
}
|
|
private String getName(X509Certificate cert)
|
{
|
String name = cert.getSubjectX500Principal().getName();
|
try
|
{
|
LdapName dn = new LdapName(name);
|
Rdn rdn = dn.getRdn(0);
|
return rdn.getValue().toString();
|
}
|
catch (Throwable t)
|
{
|
logger.warn(LocalizableMessage.raw("Error parsing subject dn: "+
|
cert.getSubjectX500Principal(), t));
|
return name;
|
}
|
}
|
|
/** Method called when user clicks on ok. */
|
private void acceptForSession()
|
{
|
returnValue = ReturnType.ACCEPTED_FOR_SESSION;
|
dispose();
|
}
|
|
/** Method called when user clicks on cancel. */
|
private void doNotAccept()
|
{
|
returnValue = ReturnType.NOT_ACCEPTED;
|
dispose();
|
}
|
|
/** Method called when user clicks on ok. */
|
private void acceptPermanently()
|
{
|
returnValue = ReturnType.ACCEPTED_PERMANENTLY;
|
dispose();
|
}
|
}
|
