java source code of MerlinWithCRLDistributionPointsExtension

Project: eet-client (GitHub Link)

eet-client-master
- src
  - main
    - resources
      - certificates
        rca15_rsa.der
        2qca16_rsa.der
        README.md
      - schema
        EETXMLSchema.xsd
        EETServiceSOAP.wsdl
        bindings.xml
    - java
      - cz
        tomasdvorak
        eet
        client
        security
        ClientPasswordCallback.java
        WSS4JEetInInterceptor.java
        WSS4JEetOutInterceptor.java
        SecureEETCommunication.java
        ClientKey.java
        SecurityCodesGenerator.java
        MerlinWithCRLDistributionPointsExtension.java
        ServerKey.java
        JavaCryptographyExtension.java
        SignatureFaultInterceptor.java
        timing
        TimingReceiveInterceptor.java
        TimingSendInterceptor.java
        dto
        SubmitResult.java
        WebserviceConfiguration.java
        DnsResolver.java
        ResponseCallback.java
        utils
        NumberUtils.java
        StringJoiner.java
        DateUtils.java
        CertificateUtils.java
        CertExpirationChecker.java
        IOUtils.java
        ExceptionUtils.java
        StringUtils.java
        concurency
        CompletedFuture.java
        EETClientImpl.java
        EETClient.java
        config
        SubmissionType.java
        CommunicationMode.java
        EndpointType.java
        binding
        BigDecimalAdapter.java
        XmlDateAdapter.java
        EETServiceFactory.java
        exceptions
        DnsLookupFailedException.java
        DataSigningException.java
        ResponseWithErrorException.java
        InvalidFormatException.java
        InvalidKeystoreException.java
        CommunicationException.java
        DnsTimeoutException.java
        RequestSerializationException.java
        CommunicationTimeoutException.java
        networking
        DnsLookup.java
        InetAddressDnsResolver.java
        DnsLookupWithTimeout.java
        errors
        EetErrorType.java
        EetErrorConverter.java
        persistence
        RequestSerializer.java
        logging
        WebserviceLogging.java
    - assembly
      - zip.xml
  - site
    - site.xml
  - test
    - resources
      - keys
        CZ1212121218.p12
        CZ00000019.p12
        crls-prod-cert.pem
        README.md
        crls-demo-cert.pem
        CZ683555118.p12
      - log4j2.xml
      - requests
        CZ683555118.valid.v3.1.xml
        CZ00000019.valid.v3.1.xml
        README.md
    - java
      - cz
        tomasdvorak
        eet
        client
        security
        SecurityCodesGeneratorTest.java
        DemoRequestHolder.java
        MerlinWithCRLDistributionPointsExtensionTest.java
        ServerKeyTest.java
        ClientKeyTest.java
        utils
        StringJoinerTest.java
        CertExpirationCheckerTest.java
        StringUtilsTest.java
        CertificateUtilsTest.java
        NumberUtilsTest.java
        IOUtilsTest.java
        ExceptionUtilsTest.java
        ErrorRetrievalIntegrationTest.java
        ResendIntegrationTest.java
        IntegrationTest.java
        EETClientTest.java
        AsyncIntegrationTest.java
        BackwardsCompatibilityTest.java
        binding
        BigDecimalAdapterTest.java
        XmlDateAdapterTest.java
        networking
        DnsLookupWithTimeoutTest.java
        persistence
        RequestSerializerTest.java
- pom.xml
- .travis.yml
- README.md
- scripts
  - deploy-pages.sh
  - update-version.sh
- .gitignore
- LICENSE.txt
- pmd-rules.xml

package cz.tomasdvorak.eet.client.security;

import org.apache.wss4j.common.crypto.Merlin;
import org.apache.xml.security.Init;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import java.security.Security;

class MerlinWithCRLDistributionPointsExtension extends Merlin {

    private static final Logger logger = LoggerFactory.getLogger(MerlinWithCRLDistributionPointsExtension.class);

    public MerlinWithCRLDistributionPointsExtension() {
        configureSystemProperties();
    }

    private void configureSystemProperties() {
        Init.init();

        final boolean crlDownloadEnabled = Boolean.getBoolean("com.sun.security.enableCRLDP");
        final boolean checkRevocationEnabled = Boolean.getBoolean("com.sun.net.ssl.checkRevocation");
        final String value = Security.getProperty("com.sun.security.onlyCheckRevocationOfEECert");
        final boolean onlyCheckRevocationOfEECert = (value != null) && value.equalsIgnoreCase("true");

        if (!crlDownloadEnabled || !checkRevocationEnabled || !onlyCheckRevocationOfEECert) {
            logger.info("System properties will be configured to enable certificate revocation checks.");
            System.setProperty("com.sun.security.enableCRLDP", "true");
            System.setProperty("com.sun.net.ssl.checkRevocation", "true");
            Security.setProperty("com.sun.security.onlyCheckRevocationOfEECert", "true"); // verify only revocation of the last cert in path (the EET cert)
        }
    }
}