Java Doc for X500Principal.java in  » 6.0-JDK-Core » security » javax » security » auth » x500 » Java Source Code / Java DocumentationJava Source Code and Java Documentation

This class represents an X.500 Principal. X500Principals are represented by distinguished names such as "CN=Duke, OU=JavaSoft, O=Sun Microsystems, C=US".

This class can be instantiated by using a string representation of the distinguished name, or by using the ASN.1 DER encoded byte representation of the distinguished name. The current specification for the string representation of a distinguished name is defined in RFC 2253: Lightweight Directory Access Protocol (v3): UTF-8 String Representation of Distinguished Names. This class, however, accepts string formats from both RFC 2253 and RFC 1779: A String Representation of Distinguished Names, and also recognizes attribute type keywords whose OIDs (Object Identifiers) are defined in RFC 3280: Internet X.509 Public Key Infrastructure Certificate and CRL Profile.

The string representation for this X500Principal can be obtained by calling the getName methods.

Note that the getSubjectX500Principal and getIssuerX500Principal methods of X509Certificate return X500Principals representing the issuer and subject fields of the certificate.
version:
   1.32, 05/05/07
See Also:   java.security.cert.X509Certificate
since:
   1.4

This constructor recognizes the attribute type keywords specified in X500Principal.X500Principal(String) and also recognizes additional keywords that have entries in the keywordMap parameter. Keyword entries in the keywordMap take precedence over the default keywords recognized by X500Principal(String).

This constructor recognizes the attribute type keywords defined in RFC 1779 and RFC 2253 (and listed in X500Principal.getName(String format) getName(String format) ), as well as the T, DNQ or DNQUALIFIER, SURNAME, GIVENNAME, INITIALS, GENERATION, EMAILADDRESS, and SERIALNUMBER keywords whose OIDs are defined in RFC 3280 and its successor. Any other attribute type must be specified as an OID.
Parameters:
  name - an X.500 distinguished name in RFC 1779 or RFC 2253 format
exception:
  NullPointerException - if the nameis null
exception:
  IllegalArgumentException - if the nameis improperly specified

This constructor recognizes the attribute type keywords specified in X500Principal.X500Principal(String) and also recognizes additional keywords that have entries in the keywordMap parameter. Keyword entries in the keywordMap take precedence over the default keywords recognized by X500Principal(String). Keywords MUST be specified in all upper-case, otherwise they will be ignored. Improperly specified keywords are ignored; however if a keyword in the name maps to an improperly specified OID, an IllegalArgumentException is thrown. It is permissible to have 2 different keywords that map to the same OID.
Parameters:
  name - an X.500 distinguished name in RFC 1779 or RFC 2253 format
Parameters:
  keywordMap - an attribute type keyword map, where each key is akeyword String that maps to a corresponding object identifier in Stringform (a sequence of nonnegative integers separated by periods). The mapmay be empty but never null.
exception:
  NullPointerException - if name orkeywordMap is null
exception:
  IllegalArgumentException - if the name isimproperly specified or a keyword in the name maps to an OID that is not in the correct form
since:
   1.6

 Name ::= CHOICE {
 RDNSequence }
 RDNSequence ::= SEQUENCE OF RelativeDistinguishedName
 RelativeDistinguishedName ::=
 SET SIZE (1 .. MAX) OF AttributeTypeAndValue
 AttributeTypeAndValue ::= SEQUENCE {
 type     AttributeType,
 value    AttributeValue }
 AttributeType ::= OBJECT IDENTIFIER
 AttributeValue ::= ANY DEFINED BY AttributeType
 ....
 DirectoryString ::= CHOICE {
 teletexString           TeletexString (SIZE (1..MAX)),
 printableString         PrintableString (SIZE (1..MAX)),
 universalString         UniversalString (SIZE (1..MAX)),
 utf8String              UTF8String (SIZE (1.. MAX)),
 bmpString               BMPString (SIZE (1..MAX)) }
 

The read position of the input stream is positioned to the next available byte after the encoded distinguished name.
Parameters:
  is - an InputStream containing the distinguishedname in ASN.1 DER encoded form
exception:
  NullPointerException - if the InputStreamis null
exception:
  IllegalArgumentException - if an encoding error occurs(incorrect form for DN)

Specifically, this method returns true if the Object o is an X500Principal and if the respective canonical string representations (obtained via the getName(X500Principal.CANONICAL) method) of this object and o are equal.

This implementation is compliant with the requirements of RFC 3280.
Parameters:
  o - Object to be compared for equality with thisX500Principal true if the specified Object is equal to this X500Principal, false otherwise

Note that the byte array returned is cloned to protect against subsequent modifications. a byte array containing the distinguished name in ASN.1 DER encoded form

This method is equivalent to calling getName(X500Principal.RFC2253). the distinguished name of this X500Principal

If "RFC1779" is specified as the format, this method emits the attribute type keywords defined in RFC 1779 (CN, L, ST, O, OU, C, STREET). Any other attribute type is emitted as an OID.

If "RFC2253" is specified as the format, this method emits the attribute type keywords defined in RFC 2253 (CN, L, ST, O, OU, C, STREET, DC, UID). Any other attribute type is emitted as an OID. Under a strict reading, RFC 2253 only specifies a UTF-8 string representation. The String returned by this method is the Unicode string achieved by decoding this UTF-8 representation.

If "CANONICAL" is specified as the format, this method returns an RFC 2253 conformant string representation with the following additional canonicalizations:

1. Leading zeros are removed from attribute types that are encoded as dotted decimal OIDs
2. DirectoryString attribute values of type PrintableString and UTF8String are not output in hexadecimal format
3. DirectoryString attribute values of types other than PrintableString and UTF8String are output in hexadecimal format
4. Leading and trailing white space characters are removed from non-hexadecimal attribute values (unless the value consists entirely of white space characters)
5. Internal substrings of one or more white space characters are converted to a single space in non-hexadecimal attribute values
6. Relative Distinguished Names containing more than one Attribute Value Assertion (AVA) are output in the following order: an alphabetical ordering of AVAs containing standard keywords, followed by a numeric ordering of AVAs containing OID keywords.
7. The only characters in attribute values that are escaped are those which section 2.4 of RFC 2253 states must be escaped (they are escaped using a preceding backslash character)
8. The entire name is converted to upper case using String.toUpperCase(Locale.US)
9. The entire name is converted to lower case using String.toLowerCase(Locale.US)
10. The name is finally normalized using normalization form KD, as described in the Unicode Standard and UAX #15

Additional standard formats may be introduced in the future.
Parameters:
  format - the format to use a string representation of this X500Principalusing the specified format
throws:
  IllegalArgumentException - if the specified format is invalidor null

This method returns Strings in the format as specified in X500Principal.getName(String) and also emits additional attribute type keywords for OIDs that have entries in the oidMap parameter. OID entries in the oidMap take precedence over the default OIDs recognized by getName(String). Improperly specified OIDs are ignored; however if an OID in the name maps to an improperly specified keyword, an IllegalArgumentException is thrown.

Additional standard formats may be introduced in the future.

Warning: additional attribute type keywords may not be recognized by other implementations; therefore do not use this method if you are unsure if these keywords will be recognized by other implementations.
Parameters:
  format - the format to use
Parameters:
  oidMap - an OID map, where each key is an object identifier inString form (a sequence of nonnegative integers separated by periods)that maps to a corresponding attribute type keyword String.The map may be empty but never null. a string representation of this X500Principalusing the specified format
throws:
  IllegalArgumentException - if the specified format is invalid, null, or an OID in the name maps to an improperly specified keyword
throws:
  NullPointerException - if oidMap is null
since:
   1.6

The hash code is calculated via: getName(X500Principal.CANONICAL).hashCode() a hash code for this X500Principal