Skip to content

de-mklinger/certificatebuilder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

certificatebuilder

Simple Builder API for X.509 certificates using Bouncy Castle.

Usage

Maven dependency:

<dependency>
    <groupId>de.mklinger.commons</groupId>
    <artifactId>certificatebuilder</artifactId>
    <version>1.0</version>
</dependency>

Create a self-signed server certificate:

CertificateAndKeyPair certificateAndKeyPair = new CertificateBuilder()
    .subjectCn("selfsigned-cert")
    .subjectO("My Organization")
    .serverAuth(true)
    .dnsSan("example.org")
    .ipSan("127.0.0.1")
    .validDays(365)
    .keySize(2048)
    .build();

Create CA root certificate, intermediated certificate and signed certificate:

CertificateAndKeyPair root = new CertificateBuilder()
    .subjectCn("ca-root")
    .ca()
    .build();

CertificateAndKeyPair intermediate = new CertificateBuilder()
    .subjectCn("ca-intermediate")
    .ca()
    .validDays(365)
    .issuer(root)
    .build();

CertificateAndKeyPair cert = new CertificateBuilder()
    .subjectCn("cert")
    .validDays(365)
    .issuer(intermediate)
    .serverAuth(true)
    .dnsSan("example.org")
    .ipSan("127.0.0.1")
    .build();

PrivateKey privateKey = certificateAndKeyPair.getKeyPair().getPrivate();

Certificate[] certificateChain = {
    cert.getCertificate(),
    intermediate.getCertificate(),
    root.getCertificate()
};

About

Simple Builder API for X509 certificates using Bouncy Castle

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages