Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-6174

Make X509CertificateBuilder a public API so that other product teams can use it

    Details

    • Type: Task
    • Status: Dev backlog
    • Priority: Blocker
    • Resolution: Unresolved
    • Affects Version/s: 7.0.0
    • Fix Version/s: 7.1.0
    • Component/s: common-repo, core apis, security
    • Labels:
      None

      Description

      The org.forgerock.opendj.security.X509CertificateBuilder class provides a simple stable API for constructing X509 certificates which could be useful outside of the DJ code-base. In particular, the AM team use BouncyCastle for generating key-pairs in unit tests, but these break frequently as a result of changes to BC's APIs. In addition the BC APIs are hard to use.

      It should be noted that the X509CertificateBuilder class only generates EC keys. We should be careful to keep this class relatively simple and lightweight.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                matthew Matthew Swift
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: