java source code of CertificateUtility

Project: blackduck-alert (GitHub Link)

blackduck-alert-master
- .github
  - PULL_REQUEST_TEMPLATE.md
  - CONTRIBUTING.md
  - ISSUE_TEMPLATE.md
  - CODE_OF_CONDUCT.md
- src
  - main
    - resources
      - alert.sh
      - db
        changelog-master.xml
        changelog
        alert
        5.2.0
        changelog.xml
        changelog-jira-server.xml
        changelog-custom-roles.xml
        changelog-authentication-component.xml
        changelog-migrate-provider-projects.xml
        changelog-authentication-permissions.xml
        changelog-migrate-field-stored-procedure.xml
        changelog-configuration-timestamp.xml
        changelog-default-users.xml
        4.2.0
        changelog.xml
        changelog-authentication-stored-procedures.xml
        changelog-configuration-initialization.xml
        changelog-authentication.xml
        changelog-scheduling.xml
        5.3.0
        changelog.xml
        changelog-email-channel.xml
        changelog-user-management.xml
        changelog-authentication-stored-procedures.xml
        custom-certificates.xml
        polaris.xml
        changelog-update-stored-procedures.xml
        permissions-matrix.xml
        changelog-distribution-job.xml
        initial
        changelog.xml
        changelog-initial-global.xml
        changelog-initial-distribution.xml
        changelog-initial-audit.xml
        changelog-initial-provider.xml
        changelog-initial-channel.xml
        4.0.0
        changelog.xml
        changelog-configuration-distribution-job-migration.xml
        changelog-configuration-stored-procedures.xml
        changelog-audit.xml
        changelog-configuration-initialization.xml
        changelog-settingskey.xml
        changelog-configuration-global-migration.xml
        changelog-cleanup.xml
        changelog-configuration.xml
        changelog-authentication.xml
        4.1.0
        changelog.xml
        changelog-polaris.xml
        changelog-provider-data.xml
        changelog-saml-authentication.xml
        5.0.0
        changelog.xml
        changelog-remove-hipchat.xml
        changelog-configuration-initialization.xml
        changelog-authentication.xml
        5.1.0
        changelog.xml
        changelog-authentication-migration.xml
        changelog-configuration-stored-procedures.xml
        changelog-authentication-stored-procedures.xml
        changelog-technical-debt.xml
        changelog-configuration-initialization.xml
        changelog-distribution-msteams.xml
        changelog-update-broken-jobs.xml
        changelog-global-slack.xml
        changelog-authentication.xml
      - images
      - jira
        atlassian-connect.json
      - templates
        msteams
        message_content.ftl
        email
        sampleTemplate.ftl
        password_reset.ftl
        message_content.ftl
        update_available.ftl
      - favicon.ico
      - .gitignore
      - application.properties
    - img
    - java
      - com
        synopsys
        integration
        alert
        ApplicationConfiguration.java
        provider
        blackduck
        actions
        BlackDuckDistributionTestAction.java
        BlackDuckConfigurationAction.java
        BlackDuckGlobalTestAction.java
        BlackDuckGlobalApiAction.java
        collector
        builder
        BlackDuckMessageBuilder.java
        policy
        PolicyCommonBuilder.java
        PolicyViolationMessageBuilder.java
        PolicyClearedMessageBuilder.java
        PolicyOverrideMessageBuilder.java
        ProjectVersionMessageBuilder.java
        BlackDuckIssueTrackerCallbackUtility.java
        util
        ComponentBuilderUtil.java
        VulnerabilityUtil.java
        PolicyPriorityUtil.java
        ProjectMessageBuilder.java
        LicenseLimitMessageBuilder.java
        VulnerabilityNotificationMessageBuilder.java
        BomEditMessageBuilder.java
        model
        ComponentData.java
        MessageBuilderConstants.java
        util
        BlackDuckResponseCache.java
        OperationUtil.java
        MessageContentCollectorFactory.java
        BlackDuckMessageContentCollector.java
        web
        VulnerabilityNotificationFilterCustomEndpoint.java
        NotificationFilterModel.java
        PolicyNotificationFilterCustomEndpoint.java
        validators
        BlackDuckApiTokenValidator.java
        BlackDuckValidator.java
        issues
        BlackDuckCallbackHandler.java
        BlackDuckProviderIssueHandler.java
        BlackDuckProviderIssueModel.java
        BlackDuckProvider.java
        BlackDuckProperties.java
        BlackDuckProviderKey.java
        tasks
        BlackDuckAccumulator.java
        BlackDuckDataSyncTask.java
        BlackDuckValidatorTask.java
        descriptor
        BlackDuckProviderUIConfig.java
        BlackDuckContent.java
        BlackDuckDistributionUIConfig.java
        BlackDuckDescriptor.java
        factories
        BlackDuckTaskFactory.java
        DistributionFilterFactory.java
        BlackDuckPropertiesFactory.java
        filter
        BlackDuckProjectNameExtractor.java
        BlackDuckDistributionFilter.java
        BlackDuckPhoneHomeHandler.java
        AboutReader.java
        web
        security
        authentication
        database
        UserDatabaseService.java
        AlertDatabaseAuthenticationPerformer.java
        UserPrincipal.java
        ldap
        MappingLdapAuthoritiesPopulator.java
        LdapAuthenticationPerformer.java
        LdapManager.java
        AlertAuthenticationProvider.java
        event
        AuthenticationEventListener.java
        AlertAuthenticationEvent.java
        AuthenticationEventManager.java
        saml
        UserDetailsService.java
        SAMLManager.java
        AlertSAMLMetadataGenerator.java
        SamlMetaDataFileUpload.java
        AlertWebSSOProfileOptions.java
        SamlAntMatcher.java
        AlertSAMLEntryPoint.java
        AlertFilterChainProxy.java
        AlertSAMLMetadataGeneratorFilter.java
        SAMLContext.java
        SamlConfig.java
        SAMLAuthProvider.java
        UserManagementAuthoritiesPopulator.java
        AuthenticationPerformer.java
        AuthenticationHandler.java
        HttpPathManager.java
        actions
        LoginActions.java
        DescriptorMetadataActions.java
        SystemActions.java
        AboutActions.java
        user
        UserController.java
        UserActions.java
        RoleController.java
        RoleActions.java
        audit
        AuditEntryController.java
        AuditEntryActions.java
        config
        FieldModelProcessor.java
        FieldValidationAction.java
        ConfigActions.java
        ConfigController.java
        DescriptorProcessor.java
        JobConfigController.java
        JobConfigActions.java
        PKIXErrorResponseFactory.java
        tasks
        TaskActions.java
        TaskController.java
        certificates
        CertificatesController.java
        CertificateActions.java
        model
        AboutModel.java
        UserConfig.java
        AboutDescriptorModel.java
        LoginConfig.java
        PermissionModel.java
        CertificateModel.java
        RolePermissionModel.java
        controller
        BaseController.java
        SystemController.java
        UploadEndpointController.java
        metadata
        DescriptorTypeController.java
        ContextController.java
        MetadataController.java
        DescriptorController.java
        ExposedEndpointsController.java
        HomeController.java
        AboutController.java
        CustomEndpointController.java
        AuthenticationController.java
        workflow
        message
        NotificationReceiver.java
        scheduled
        PhoneHomeTask.java
        frequency
        ProcessingTask.java
        DailyTask.java
        update
        UpdateNotifierTask.java
        UpdateChecker.java
        model
        DockerTagsResponseModel.java
        DockerTagModel.java
        UpdateModel.java
        DockerTagRetriever.java
        UpdateEmailService.java
        PurgeTask.java
        startup
        StartupManager.java
        component
        ConfigurationLogger.java
        StartupComponent.java
        SAMLStartupComponent.java
        SystemMessageInitializer.java
        LastSearchDataMigration.java
        SystemStatusValidator.java
        AlertStartupInitializer.java
        TrustStoreInitializer.java
        EnvironmentVariableUtility.java
        ProviderInitializer.java
        ConfigurationOverridesStartupComponent.java
        CronJobsStartupComponent.java
        channel
        msteams
        MsTeamsMessage.java
        MsTeamsEventParser.java
        MsTeamsChannel.java
        MsTeamsKey.java
        MsTeamsMessageParser.java
        descriptor
        MsTeamsUIConfig.java
        MsTeamsGlobalUIConfig.java
        MsTeamsDescriptor.java
        MsTeamsSection.java
        slack
        SlackChannel.java
        SlackChannelKey.java
        descriptor
        SlackDescriptor.java
        SlackGlobalUIConfig.java
        SlackUIConfig.java
        parser
        SlackChannelEventParser.java
        SlackChannelMessageParser.java
        email
        EmailAddressHandler.java
        actions
        EmailActionHelper.java
        EmailGlobalTestAction.java
        EmailDistributionTestAction.java
        EmailConfigurationAction.java
        web
        EmailCustomEndpoint.java
        EmailChannelKey.java
        EmailChannel.java
        template
        EmailAttachmentFormat.java
        EmailChannelMessageParser.java
        EmailAttachmentFileCreator.java
        descriptor
        EmailGlobalUIConfig.java
        EmailDistributionUIConfig.java
        EmailDescriptor.java
        jira
        common
        JiraGlobalTestAction.java
        JiraMessageContentConverter.java
        JiraIssuePropertiesUtil.java
        JiraContextBuilder.java
        JiraMessageParser.java
        IssueTrackerFieldExceptionConverter.java
        JiraTestIssueRequestCreator.java
        cloud
        JiraCloudContextBuilder.java
        actions
        JiraConfigurationAction.java
        JiraCloudGlobalTestAction.java
        JiraDistributionTestAction.java
        web
        JiraCustomEndpoint.java
        JiraChannel.java
        JiraChannelKey.java
        descriptor
        JiraGlobalUIConfig.java
        JiraDistributionUIConfig.java
        JiraDescriptor.java
        server
        actions
        JiraServerDistributionTestAction.java
        JiraServerGlobalTestAction.java
        JiraServerConfigurationAction.java
        web
        JiraServerCustomEndpoint.java
        JiraServerChannelKey.java
        JiraServerChannel.java
        descriptor
        JiraServerGlobalUIConfig.java
        JiraServerDescriptor.java
        JiraServerDistributionUIConfig.java
        JiraServerContextBuilder.java
        util
        ChannelRestConnectionFactory.java
        RestChannelUtility.java
        component
        authentication
        actions
        AuthenticationTestAction.java
        AuthenticationApiAction.java
        AuthenticationConfigurationAction.java
        descriptor
        AuthenticationDescriptor.java
        AuthenticationDescriptorKey.java
        AuthenticationUIConfig.java
        audit
        AuditDescriptorKey.java
        AuditDescriptor.java
        AuditUIConfig.java
        scheduling
        actions
        SchedulingConfigurationAction.java
        SchedulingGlobalApiAction.java
        descriptor
        SchedulingUIConfig.java
        SchedulingDescriptorKey.java
        SchedulingDescriptor.java
        SchedulingConfiguration.java
        users
        UserManagementUIConfig.java
        UserManagementDescriptorKey.java
        UserManagementDescriptor.java
        UserSystemValidator.java
        tasks
        TaskManagementUIConfig.java
        TaskManagementDescriptor.java
        TaskManagementDescriptorKey.java
        certificates
        CertificatesUIConfig.java
        CertificatesDescriptorKey.java
        CertificatesDescriptor.java
        settings
        actions
        SettingsConfigurationAction.java
        SettingsGlobalApiAction.java
        SettingsValidator.java
        PasswordResetService.java
        DefaultSettingsUtility.java
        descriptor
        SettingsDescriptorKey.java
        SettingsUIConfig.java
        SettingsDescriptor.java
        Application.java
    - js
      - providers
        ProviderTable.js
      - LogoutPage.js
      - field
        CounterField.js
        FieldsPopUp.js
        StatusMessage.js
        MessageFormatter.js
        ReadOnlyField.js
        EndpointSelectField.js
        UploadFileButtonField.js
        LabeledField.js
        TableDisplay.js
        FadeField.js
        PopUp.js
        FieldsPanel.js
        input
        SelectInput.js
        __tests__
        SubmitButton.test.js
        __snapshots__
        SubmitButton.test.js.snap
        GeneralButton.test.js.snap
        CancelButton.test.js.snap
        GeneralButton.test.js
        CancelButton.test.js
        PasswordInput.js
        CheckboxInput.js
        DynamicSelect.js
        SubmitButton.js
        GeneralButton.js
        TextArea.js
        TableSelectInput.js
        CancelButton.js
        NumberInput.js
        TextInput.js
        EndpointButtonField.js
      - templates
        index.html
      - Index.js
      - MainPage.js
      - util
        configurationRequestBuilder.js
        fieldMapping.js
        iconUtility.js
        httpErrorUtilities.js
        RequestUtilities.js
        fieldModelUtilities.js
        descriptorUtilities.js
      - store
        actions
        certificates.js
        system.js
        refresh.js
        roles.js
        descriptors.js
        about.js
        distributions.js
        types.js
        distributionConfigs.js
        audit.js
        users.js
        globalConfiguration.js
        tasks.js
        session.js
        reducers
        certificates.js
        system.js
        refresh.js
        roles.js
        descriptors.js
        about.js
        distributions.js
        distributionConfigs.js
        audit.js
        users.js
        globalConfiguration.js
        tasks.js
        index.js
        session.js
      - LoginPage.js
      - App.js
      - distribution
        Index.js
        JobDeleteModal.js
      - Navigation.js
      - component
        AboutInfoFooter.js
        common
        Logo.js
        RefreshTableCellFormatter.js
        Header.js
        LogoutConfirmation.js
        ResetPasswordModal.js
        CollapsiblePane.js
        SystemMessage.js
        ConfirmModal.js
        ConfigButtons.js
        DescriptorOption.js
        DescriptorLabel.js
        IconTableCellFormatter.js
        ConfigurationLabel.js
        AutoRefresh.js
        AboutInfo.js
      - dynamic
        DistributionConfiguration.js
        loaded
        audit
        NotificationTypeLegend.js
        AuditPage.js
        Details.js
        users
        RoleTable.js
        UserTable.js
        PermissionTable.js
        UserManagement.js
        tasks
        TaskManagement.js
        DescriptorContentLoader.js
        certificates
        CertificatesPage.js
        JobCustomMessageModal.js
        ChannelTestModal.js
        GlobalConfiguration.js
    - css
      - main.scss
      - messages.scss
      - footer.scss
      - logos.scss
      - header.scss
      - settings.scss
      - app.scss
      - table.scss
      - audit.scss
      - field.scss
      - variables.scss
  - test
    - resources
      - logback-test.xml
      - spring-test.properties
      - mockito-extensions
        org.mockito.plugins.MockMaker
      - certificates
        spring-certificate-test.properties
        selfsigned.cert.pem
      - com
        blackducksoftware
        integration
        hub
        datasource
        repository
        notificationData.xml
      - freemarker
        namespace_2
        template_1.ftl
        namespace_1
        template_1.ftl
      - json
        vulnerabilityNotificationComplex.json
        policyRuleClearedNotification.json
        policyOverrideNotification.json
        vulnerabilityNotificationSimple01.json
        vulnerabilityNotificationSimple02.json
        notification01.json
      - testDatabase
        init_test_db.sql
      - bdio
        component-bdio.jsonld
    - java
      - com
        synopsys
        integration
        alert
        ProxyManagerTest.java
        TestConstants.java
        database
        user
        UserEntityTest.java
        RoleEntityTest.java
        api
        configuration
        DescriptorAccessorTestIT.java
        ConfigurationAccessorTestIT.java
        user
        UserAccessorTestIT.java
        UserModelTest.java
        ProviderDataAccessorTestIT.java
        system
        SystemMessageTest.java
        SystemStatusTest.java
        SystemMessageUtilityTestIT.java
        DefaultTestIT.java
        repository
        configuration
        RegisteredDescriptorRepositoryTestIT.java
        FieldValueRepositoryTestIT.java
        FieldContextRepositoryTestIT.java
        ConfigGroupRepositoryTestIT.java
        DescriptorConfigRepositoryTestIT.java
        DefinedFieldRepositoryTestIT.java
        ConfigContextTestIT.java
        DescriptorFieldRepositoryTestIT.java
        settings
        EntityTest.java
        GlobalEntityTest.java
        repository
        NotificationContentRepositoryIT.java
        BaseEntityTest.java
        RelationTest.java
        relation
        UserRoleRelationTest.java
        provider
        blackduck
        actions
        BlackDuckGlobalApiActionTest.java
        collector
        LicenseLimitMessageBuilderTest.java
        VulnerabilityMessageBuilderTest.java
        BlackDuckMessageBuilderTestHelper.java
        PolicyOverrideMessageBuilderTest.java
        VulnerabilityTestConstants.java
        PolicyViolationMessageBuilderTest.java
        TestBlackDuckProperties.java
        BlackDuckProviderTest.java
        mock
        MockProviderDataAccessor.java
        tasks
        BlackDuckAccumulatorTest.java
        BlackDuckProjectSyncTaskTest.java
        descriptor
        BlackDuckDescriptorTest.java
        web
        security
        authentication
        ldap
        LdapManagerTest.java
        UserManagementAuthoritiesPopulatorTest.java
        saml
        SamlManagerTest.java
        UserDetailsServiceTest.java
        PasswordEncoderSample.java
        actions
        SystemActionsTest.java
        AboutActionsTest.java
        LoginActionsTestIT.java
        user
        UserActionTest.java
        config
        ConfigActionTestIT.java
        JobConfigControllerTestIT.java
        TaskActionTest.java
        certificates
        CertificateActionsTestIT.java
        CertificateTestUtil.java
        CertificateControllerTestIT.java
        model
        SystemMessageModelTest.java
        NotificationRestModelTest.java
        AlertPagedRestModelTest.java
        LoginConfigTest.java
        AboutDescriptorModelTest.java
        RestModelTest.java
        GlobalRestModelTest.java
        controller
        DescriptorControllerSpeedTestIT.java
        UploadEndpointControllerTestIT.java
        AboutControllerTest.java
        metadata
        ContextControllerTest.java
        DescriptorTypeControllerTest.java
        DescriptorControllerTest.java
        SystemControllerTestIT.java
        HomeControllerTestIT.java
        AuthenticationControllerTestIT.java
        BaseControllerTest.java
        ExposedEndpointsControllerTest.java
        audit
        mock
        MockAuditEntryRestModel.java
        MockJobAuditModel.java
        MockAuditEntryEntity.java
        MockAuditJobStatusModel.java
        repository
        AuditEntryEntityTest.java
        AuditNotificationRelationTest.java
        AuditEntryRepositoryTestIT.java
        AuditNotificationRelationPKTest.java
        controller
        AuditEntryRestModelTest.java
        AuditEntryHandlerTestIT.java
        AuditEntryControllerTestIT.java
        JobAuditModelTest.java
        AuditEntryActionsTest.java
        workflow
        scheduled
        frequency
        ProcessingTaskTest.java
        DailyTaskTest.java
        update
        DockerTagRetrieverTest.java
        UpdateCheckerTest.java
        ScheduledTaskTest.java
        PurgeTaskTest.java
        startup
        SAMLStartupComponentTest.java
        EnvironmentVariableUtilityTest.java
        AlertStartupInitializerTest.java
        StartupLogTest.java
        SystemValidatorTest.java
        filter
        NotificationToDistributionEventConverterTestIT.java
        common
        security
        EncryptionUtilityTest.java
        workflow
        TaskManagerTest.java
        message
        model
        AboutModelTest.java
        LinkableItemTest.java
        ComponentItemTest.java
        exception
        AlertFieldExceptionTest.java
        AlertExceptionTest.java
        event
        AlertEventTest.java
        ContentEventTest.java
        descriptor
        config
        ui
        ChannelDistributionUIConfigTest.java
        enumeration
        StatusEnumTest.java
        FrequencyTypeEnumTest.java
        util
        TestPropertiesFileGenerator.java
        TestTags.java
        AlertIntegrationTest.java
        OutputLogger.java
        TestPropertyKey.java
        TestAlertProperties.java
        TestProperties.java
        FieldModelUtil.java
        DescriptorMocker.java
        AlertIntegrationTestConfiguration.java
        ResourceLoader.java
        DatabaseConfiguredFieldTest.java
        channel
        msteams
        BeanContextTest.java
        MsTeamsChannelTest.java
        FreemarkerTemplatingServiceTest.java
        slack
        SlackChannelChannelDescriptorTestIT.java
        SlackChannelTest.java
        email
        EmailChannelTestIT.java
        EmailChannelChannelDescriptorTestIT.java
        EmailMessagingServiceTest.java
        template
        EmailTargetTest.java
        MimeMultipartBuilderTest.java
        DateRangeTest.java
        EmailGlobalTestActionTest.java
        EmailPropertiesTest.java
        ChannelTest.java
        util
        event
        ChannelEventManagerTest.java
        rest
        ChannelRestConnectionFactoryTest.java
        ChannelDescriptorTest.java
        mock
        entity
        MockEntityUtil.java
        MockNotificationContent.java
        MockGlobalEntityUtil.java
        MockUtils.java
        MockGlobalRestModelUtil.java
        notification
        NotificationGeneratorUtils.java
        model
        MockRestModelUtil.java
        MockNotificationRestModel.java
        MockLoginRestModel.java
        MockConfigurationModelFactory.java
        AboutReaderTest.java
        component
        authentication
        AuthenticationApiActionTest.java
        scheduling
        SchedulingGlobalApiActionTest.java
        settings
        SettingsValidatorTest.java
        SettingsGlobalApiActionTest.java
        PasswordResetServiceTest.java
        AlertConstantsTest.java
        NotificationManagerTestITAlert.java
        ContentConverterTest.java
        PhoneHomeTest.java
- gradle.properties
- gradle
  - wrapper
    - gradle-wrapper.properties
    - gradle-wrapper.jar
- Synopsys Privacy Policy.txt
- webpack.common.config.js
- webpack.dev.config.js
- gradlew.bat
- .eslintrc.json
- LICENSE
- gradlew
- webpack.config.js
- deployment
  - blackduck-alert.env
  - helm
    - synopsys-alert
      - Chart.yaml
      - templates
        serviceaccount.yaml
        postgres-config.yaml
        alert.yaml
        alert-environ-secret.yaml
        postgres.yaml
        alert-cfssl.yaml
        alert-environ-configmap.yaml
        _helpers.tpl
      - values.yaml
      - README.md
      - DEVELOPER_README.md
  - docker-swarm
    - standalone
      - docker-compose.yml
    - docker-compose.local-overrides.yml
    - README.md
    - hub
      - docker-compose.yml
    - external-db
      - standalone
        docker-compose.yml
      - docker-compose.local-overrides.yml
      - README.md
      - hub
        docker-compose.yml
- build.gradle
- buildSrc
  - src
    - main
      - java
        com
        synopsys
        integration
        alert
        build
        CreateKeystoreTask.java
        RunServerTask.java
  - runTasks.gradle
  - docker.gradle
  - buildTasks.gradle
  - deploymentTasks.gradle
- .babelrc
- docker-entrypoint.sh
- .travis.yml
- README.md
- package.json
- alert-common
  - src
    - main
      - java
        com
        synopsys
        integration
        alert
        common
        security
        authorization
        AuthorizationManager.java
        EncryptionUtility.java
        CertificateUtility.java
        AlertResourceLoader.java
        provider
        ProviderKey.java
        state
        StatefulProvider.java
        ProviderProperties.java
        lifecycle
        ProviderTaskFactory.java
        ProviderTask.java
        ProviderPropertiesFactory.java
        ProviderSchedulingManager.java
        ProvidersMissingTask.java
        ProviderPhoneHomeHandler.java
        helper
        ProviderAfterUpdateActionHelper.java
        ProviderConfigMissingValidator.java
        ProviderContent.java
        notification
        ProviderNotificationClassMap.java
        ProviderDistributionFilter.java
        Provider.java
        ProviderNotificationType.java
        email
        EmailTarget.java
        EmailMessagingService.java
        MimeMultipartBuilder.java
        MessageContentGroupCsvCreator.java
        EmailProperties.java
        AlertConstants.java
        ContentConverter.java
        workflow
        ProviderCallbackHandler.java
        processor
        ProviderMessageContentCollector.java
        message
        DigestMessageContentProcessor.java
        DefaultMessageContentProcessor.java
        MessageContentProcessor.java
        SummaryMessageContentProcessor.java
        NotificationToDistributionEventConverter.java
        notification
        NotificationProcessor.java
        task
        StartupScheduledTask.java
        ScheduledTask.java
        TaskManager.java
        TaskMetaDataProperty.java
        TaskMetaData.java
        cache
        NotificationDeserializationCache.java
        combiner
        DefaultMessageCombiner.java
        MessageCombiner.java
        TopLevelActionCombiner.java
        MessageOperationCombiner.java
        AbstractMessageCombiner.java
        MessageReceiver.java
        util
        DataStructureUtils.java
        MarkupEncoderUtil.java
        BitwiseUtil.java
        DateUtils.java
        message
        model
        CommonMessageData.java
        MessageResult.java
        MessageContentGroup.java
        LinkableItem.java
        ComponentItem.java
        ComponentItemCallbackInfo.java
        ProviderMessageContent.java
        DateRange.java
        ComponentAttributeMap.java
        ContentKey.java
        MessageContentKey.java
        exception
        AlertConfigurationException.java
        AlertJobMissingException.java
        AlertDatabaseConstraintException.java
        AlertRuntimeException.java
        AlertNotificationPurgedException.java
        AlertForbiddenOperationException.java
        AlertFieldException.java
        AlertException.java
        AlertMethodNotAllowedException.java
        channel
        ProviderCallbackEventProducer.java
        AutoActionable.java
        message
        ChannelMessageParser.java
        MessageSplitter.java
        DistributionChannel.java
        NamedDistributionChannel.java
        ChannelEventManager.java
        template
        FreemarkerTemplatingService.java
        FreemarkerDataModel.java
        IssueTrackerChannel.java
        ChannelDistributionTestAction.java
        key
        ClassNameChannelKey.java
        ChannelKey.java
        event
        EventManager.java
        AlertEvent.java
        ProviderCallbackEvent.java
        EventListenerConfigurer.java
        AlertEventListener.java
        ContentEvent.java
        DistributionEvent.java
        NotificationEvent.java
        action
        ConfigurationAction.java
        UploadEndpointManager.java
        CustomEndpointManager.java
        TestAction.java
        ApiAction.java
        descriptor
        accessor
        AuthorizationUtility.java
        AuditUtility.java
        DefaultDescriptorGlobalConfigUtility.java
        SettingsUtility.java
        ProviderDescriptor.java
        ChannelDescriptor.java
        DescriptorMap.java
        config
        field
        endpoint
        UploadFileButtonField.java
        EndpointSelectField.java
        ButtonCustomEndpoint.java
        EndpointField.java
        EndpointButtonField.java
        CustomEndpoint.java
        table
        TableSelectCustomEndpoint.java
        EndpointTableSelectField.java
        TableSelectColumn.java
        SelectCustomEndpoint.java
        TextInputConfigField.java
        SelectConfigField.java
        validators
        ConfigValidationFunction.java
        UploadValidationFunction.java
        ValidationResult.java
        EncryptionValidator.java
        EncryptionSettingsValidator.java
        PasswordConfigField.java
        HideCheckboxConfigField.java
        NumberConfigField.java
        ConfigField.java
        ReadOnlyConfigField.java
        CheckboxConfigField.java
        LabelValueSelectOption.java
        URLInputConfigField.java
        CountdownConfigField.java
        GlobalConfigExistsValidator.java
        ui
        ProviderDistributionUIConfig.java
        ProviderConfigSelectCustomEndpoint.java
        ProviderDistributionCustomEndpoint.java
        ChannelDistributionUIConfig.java
        UIConfig.java
        DescriptorMetadata.java
        ProviderSelectCustomEndpoint.java
        CustomUIConfig.java
        ProviderGlobalUIConfig.java
        ChannelSelectCustomEndpoint.java
        Descriptor.java
        ComponentDescriptor.java
        DescriptorKey.java
        system
        BaseSystemValidator.java
        enumeration
        ItemOperation.java
        DescriptorType.java
        ConfigContextEnum.java
        SystemMessageType.java
        AuthenticationType.java
        DefaultUserRole.java
        ProcessingType.java
        FrequencyType.java
        EmailPropertyKeys.java
        FieldType.java
        AuditEntryStatus.java
        FieldContentIdentifier.java
        ComponentItemPriority.java
        AccessOperation.java
        SystemMessageSeverity.java
        rest
        ResponseFactory.java
        ProxyManager.java
        ResponseBodyBuilder.java
        model
        FieldModel.java
        AlertSerializableModel.java
        Configuration.java
        AlertSerializableModelComponent.java
        AlertNotificationModel.java
        FieldValueModel.java
        JobFieldErrors.java
        Config.java
        JobAuditModel.java
        NotificationConfig.java
        AlertPagedModel.java
        JobFieldModel.java
        AlertProperties.java
        persistence
        accessor
        ProviderDataAccessor.java
        ProviderTaskPropertiesAccessor.java
        NotificationManager.java
        SettingsKeyAccessor.java
        DescriptorAccessor.java
        ConfigurationAccessor.java
        CustomCertificateAccessor.java
        SystemStatusUtility.java
        FieldAccessor.java
        UserAccessor.java
        SystemMessageUtility.java
        AuthenticationTypeAccessor.java
        util
        ConfigurationFieldModelConverter.java
        FilePersistenceUtil.java
        model
        RegisteredDescriptorModel.java
        ConfigurationFieldModel.java
        UserRoleModel.java
        PermissionKey.java
        AuthenticationTypeDetails.java
        ProviderUserModel.java
        UserModel.java
        AuditJobStatusModel.java
        SettingsKeyModel.java
        AuditEntryModel.java
        ProviderProject.java
        mutable
        ConfigurationModelMutable.java
        ConfigurationModel.java
        DefinedFieldModel.java
        CustomCertificateModel.java
        ConfigurationJobModel.java
        PermissionMatrixModel.java
        SystemMessageModel.java
    - test
      - resources
        mockito-extensions
        org.mockito.plugins.MockMaker
      - java
        com
        synopsys
        integration
        alert
        email
        MessageContentGroupCsvCreatorTest.java
        common
        provider
        ProviderPropertiesTest.java
        ProviderConfigMissingValidatorTest.java
        ConfigurationFieldModelTest.java
        workflow
        processor
        DefaultMessageContentProcessorTest.java
        ProcessorTest.java
        DigestMessageContentProcessorTest.java
        combiner
        TopLevelActionCombinerTest.java
        util
        DataStructureUtilsTest.java
        MarkupEncoderTest.java
        DateUtilsTest.java
        message
        model
        MessageContentKeyTest.java
        event
        EventManagerTest.java
        action
        UploadEndpointManagerTest.java
        descriptor
        DescriptorMapTest.java
        accessor
        DefaultDescriptorGlobalConfigUtilityTest.java
        config
        field
        validators
        ValidationResultTest.java
        ChannelDescriptorTest.java
        enumeration
        AccessOperationTest.java
        rest
        ResponseBodyBuilderTest.java
        model
        ConfigurationTest.java
        FieldValueModelTest.java
        JobFieldErrorsTest.java
        JobFieldModelTest.java
        FieldModelTest.java
        JobAuditModelTest.java
        AlertPagedModelTest.java
        NotificationConfigTest.java
        persistence
        model
        ConfigurationModelTest.java
        mutable
        ConfigurationModelMutableTest.java
        mock
        MockDescriptorAccessor.java
  - build.gradle
- alert-database
  - src
    - main
      - resources
        hibernate.properties
        scripts
        alertdb-healthcheck.sh
        export_h2_tables.sql
        import_postgres_tables.sql
        init_alert_db.sql
        liquibase
        changelog-postgres-master.xml
        6.1.0
        changelog.xml
        descriptor-types-fk.xml
        release-locks-changelog.xml
        6.0.0
        blackduck-procedures.xml
        notification-migration-procedures.xml
        changelog.xml
        refactor-field-names.xml
        init-config-db.xml
        init-auth-db.xml
        notifications.xml
        environment-override-removal.xml
        provider-task-properties.xml
        certificates-timestamp.xml
        provider-fields.xml
        component-tasks.xml
        settings-fields.xml
      - java
        com
        synopsys
        integration
        alert
        database
        configuration
        DescriptorTypeEntity.java
        ConfigGroupEntity.java
        DefinedFieldEntity.java
        FieldContextRelation.java
        DescriptorFieldRelation.java
        DescriptorConfigEntity.java
        ConfigContextEntity.java
        RegisteredDescriptorEntity.java
        FieldValueEntity.java
        repository
        FieldContextRepository.java
        DefinedFieldRepository.java
        FieldValueRepository.java
        DescriptorTypeRepository.java
        DescriptorFieldRepository.java
        ConfigGroupRepository.java
        ConfigContextRepository.java
        RegisteredDescriptorRepository.java
        DescriptorConfigRepository.java
        key
        FieldContextRelationPK.java
        DescriptorFieldRelationPK.java
        provider
        task
        ProviderTaskPropertiesRepository.java
        ProviderTaskPropertiesEntityPK.java
        ProviderTaskPropertiesEntity.java
        user
        ProviderUserRepository.java
        ProviderUserEntity.java
        project
        ProviderProjectEntity.java
        ProviderProjectRepository.java
        ProviderUserProjectRelationRepository.java
        ProviderUserProjectRelation.java
        ProviderUserProjectRelationPK.java
        user
        UserRoleRepository.java
        RoleRepository.java
        RoleEntity.java
        UserRoleRelation.java
        AuthenticationTypeEntity.java
        UserEntity.java
        UserRepository.java
        AuthenticationTypeRepository.java
        UserRoleRelationPK.java
        audit
        AuditEntryRepository.java
        AuditNotificationRelationPK.java
        AuditNotificationRelation.java
        AuditNotificationRepository.java
        AuditEntryEntity.java
        authorization
        PermissionMatrixRelation.java
        PermissionMatrixPK.java
        PermissionMatrixRepository.java
        api
        DefaultSettingsKeyAccessor.java
        DefaultProviderDataAccessor.java
        DefaultSystemStatusUtility.java
        DefaultDescriptorAccessor.java
        DefaultAuditUtility.java
        DefaultUserAccessor.java
        DefaultNotificationManager.java
        DefaultAuthenticationTypeAccessor.java
        DefaultAuthorizationUtility.java
        DefaultProviderTaskPropertiesAccessor.java
        DefaultCustomCertificateAccessor.java
        DefaultConfigurationAccessor.java
        DatabaseEntity.java
        DatabaseRelation.java
        certificates
        CustomCertificateRepository.java
        CustomCertificateEntity.java
        notification
        NotificationContentRepository.java
        NotificationEntity.java
        system
        SystemStatusEntity.java
        SystemMessageRepository.java
        DefaultSystemMessageUtility.java
        SystemMessageEntity.java
        SystemStatusRepository.java
        DatabaseDataSource.java
        settings
        SettingsKeyRepository.java
        SettingsKeyEntity.java
        BaseEntity.java
    - test
      - resources
        mockito-extensions
        org.mockito.plugins.MockMaker
      - java
        com
        synopsys
        integration
        alert
        database
        api
        DefaultProviderDataAccessorTest.java
        DefaultSystemStatusUtilityTest.java
        DefaultUserAccessorTest.java
        DefaultAuditUtilityTest.java
        DefaultConfigurationAccessorTest.java
        DefaultNotificationManagerTest.java
        DefaultAuthorizationUtilityTest.java
        DefaultCustomCertificateAccessorTest.java
        DefaultProviderTaskPropertiesAccessorTest.java
        DefaultDescriptorAccessorTest.java
        mock
        DefaultMockJPARepository.java
        MockSystemStatusRepository.java
        MockSettingsKeyRepository.java
        MockProviderTaskPropertiesRepository.java
        MockCustomCertificateRepository.java
        DefaultSettingsKeyAccessorTest.java
        DefaultAuthenticationTypeAccessorTest.java
  - build.gradle
  - Dockerfile
- Dockerfile
- settings.gradle
- .gitignore
- EULA.txt

/**
 * alert-common
 *
 * Copyright (c) 2020 Synopsys, Inc.
 *
 * Licensed to the Apache Software Foundation (ASF) under one
 * or more contributor license agreements. See the NOTICE file
 * distributed with this work for additional information
 * regarding copyright ownership. The ASF licenses this file
 * to you under the Apache License, Version 2.0 (the
 * "License"); you may not use this file except in compliance
 * with the License. You may obtain a copy of the License at
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing,
 * software distributed under the License is distributed on an
 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
 * KIND, either express or implied. See the License for the
 * specific language governing permissions and limitations
 * under the License.
 */
package com.synopsys.integration.alert.common.security;

import java.io.BufferedOutputStream;
import java.io.ByteArrayInputStream;
import java.io.File;
import java.io.FileOutputStream;
import java.io.IOException;
import java.io.OutputStream;
import java.net.URI;
import java.net.URISyntaxException;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.Certificate;
import java.security.cert.CertificateException;
import java.security.cert.CertificateFactory;
import java.util.Optional;

import org.apache.commons.lang3.StringUtils;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import com.synopsys.integration.alert.common.AlertProperties;
import com.synopsys.integration.alert.common.exception.AlertConfigurationException;
import com.synopsys.integration.alert.common.exception.AlertException;
import com.synopsys.integration.alert.common.persistence.model.CustomCertificateModel;

@Component
public class CertificateUtility {
    private final Logger logger = LoggerFactory.getLogger(CertificateUtility.class);
    private AlertProperties alertProperties;

    @Autowired
    public CertificateUtility(AlertProperties alertProperties) {
        this.alertProperties = alertProperties;
    }

    public synchronized void importCertificate(CustomCertificateModel customCertificate) throws AlertException {
        logger.debug("Importing certificate into trust store.");
        validateCustomCertificateHasValues(customCertificate);
        File trustStoreFile = getAndValidateTrustStoreFile();
        KeyStore trustStore = getAsKeyStore(trustStoreFile, getTrustStorePassword(), getTrustStoreType());

        try {
            Certificate cert = getAsJavaCertificate(customCertificate);
            trustStore.setCertificateEntry(customCertificate.getAlias(), cert);
            try (OutputStream stream = new BufferedOutputStream(new FileOutputStream(trustStoreFile))) {
                trustStore.store(stream, getTrustStorePassword());
            }
        } catch (IOException | CertificateException | NoSuchAlgorithmException | KeyStoreException e) {
            throw new AlertException("There was a problem storing the certificate.", e);
        }
    }

    public synchronized void removeCertificate(CustomCertificateModel customCertificate) throws AlertException {
        logger.debug("Removing certificate from trust store.");
        if (null == customCertificate) {
            throw new AlertException("The alias could not be determined from the custom certificate because it was null.");
        }
        removeCertificate(customCertificate.getAlias());
    }

    public synchronized void removeCertificate(String certificateAlias) throws AlertException {
        logger.debug("Removing certificate by alias from trust store.");
        if (StringUtils.isBlank(certificateAlias)) {
            throw new AlertException("The alias cannot be blank");
        }

        try {
            File trustStore = getAndValidateTrustStoreFile();
            KeyStore keyStore = getAsKeyStore(trustStore, getTrustStorePassword(), getTrustStoreType());
            if (keyStore.containsAlias(certificateAlias)) {
                keyStore.deleteEntry(certificateAlias);
                try (OutputStream stream = new BufferedOutputStream(new FileOutputStream(trustStore))) {
                    keyStore.store(stream, getTrustStorePassword());
                }
            }
        } catch (IOException | CertificateException | NoSuchAlgorithmException | KeyStoreException e) {
            throw new AlertException("There was a problem removing the certificate.", e);
        }
    }

    public synchronized KeyStore getAsKeyStore(File keyStore, char[] keyStorePass, String keyStoreType) throws AlertException {
        logger.debug("Get key store.");
        KeyStore.PasswordProtection protection = new KeyStore.PasswordProtection(keyStorePass);
        try {
            return KeyStore.Builder.newInstance(keyStoreType, null, keyStore, protection).getKeyStore();
        } catch (KeyStoreException e) {
            throw new AlertException("There was a problem accessing the trust store.", e);
        }
    }

    public synchronized File getAndValidateTrustStoreFile() throws AlertConfigurationException {
        logger.debug("Get and validate trust store.");
        Optional<String> optionalTrustStoreFileName = alertProperties.getTrustStoreFile();
        if (optionalTrustStoreFileName.isPresent()) {
            String trustStoreFileName = optionalTrustStoreFileName.get();
            File trustStoreFile;
            try {
                URI trustStoreUri = new URI(trustStoreFileName);
                trustStoreFile = new File(trustStoreUri);
            } catch (IllegalArgumentException | URISyntaxException ex) {
                logger.debug("Error getting Java trust store from file URI", ex);
                trustStoreFile = new File(trustStoreFileName);
            }

            if (!trustStoreFile.isFile()) {
                throw new AlertConfigurationException("The trust store provided is not a file: " + trustStoreFileName);
            }

            if (!trustStoreFile.canWrite()) {
                throw new AlertConfigurationException("The trust store provided cannot be written by Alert: " + trustStoreFileName);
            }

            return trustStoreFile;

        } else {
            throw new AlertConfigurationException("No trust store file has been provided.");
        }
    }

    public synchronized void validateCertificateContent(CustomCertificateModel customCertificateModel) throws AlertException {
        getAsJavaCertificate(customCertificateModel);
    }

    private void validateCustomCertificateHasValues(CustomCertificateModel customCertificate) throws AlertException {
        if (null == customCertificate) {
            throw new AlertException("The custom certificate cannot be null.");
        }

        if (StringUtils.isBlank(customCertificate.getAlias())) {
            throw new AlertException("The alias cannot be blank.");
        }

        if (StringUtils.isBlank(customCertificate.getCertificateContent())) {
            throw new AlertException("The certificate content cannot be blank.");
        }
    }

    private Certificate getAsJavaCertificate(CustomCertificateModel customCertificate) throws AlertException {
        try {
            CertificateFactory certFactory = CertificateFactory.getInstance("X.509");

            String certificateContent = customCertificate.getCertificateContent();
            try (ByteArrayInputStream certInputStream = new ByteArrayInputStream(certificateContent.getBytes())) {
                return certFactory.generateCertificate(certInputStream);
            }
        } catch (CertificateException | IOException e) {
            throw new AlertException("The custom certificate could not be read.", e);
        }
    }

    private String getTrustStoreType() {
        return alertProperties.getTrustStoreType().orElse(KeyStore.getDefaultType());
    }

    private char[] getTrustStorePassword() {
        return alertProperties
                   .getTrustStorePass()
                   .map(String::toCharArray)
                   .orElse(null);
    }

}