org.bouncycastle.oer.its.template.etsi102941

Class EtsiTs102941TypesAuthorizationValidation

java.lang.Object

org.bouncycastle.oer.its.template.etsi102941.EtsiTs102941TypesAuthorizationValidation

public class EtsiTs102941TypesAuthorizationValidation
extends java.lang.Object

Field Summary

Fields

Modifier and Type	Field and Description
static OERDefinition.Builder	AuthorizationValidationRequest AuthorizationValidationRequest ::= SEQUENCE { sharedAtRequest SharedAtRequest, ecSignature EcSignature, ...
static OERDefinition.Builder	AuthorizationValidationResponse AuthorizationValidationResponse ::= SEQUENCE { requestHash OCTET STRING (SIZE(16)), responseCode AuthorizationValidationResponseCode, confirmedSubjectAttributes CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}) OPTIONAL, ...
static OERDefinition.Builder	AuthorizationValidationResponseCode AuthorizationValidationResponseCode ::= ENUMERATED { ok(0), cantparse, -- valid for any structure badcontenttype, -- not encrypted, not signed, not permissionsverificationrequest imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm decryptionfailed, -- works for ECIES-HMAC and AES-CCM invalidaa, -- the AA certificate presented is invalid/revoked/whatever invalidaasignature, -- the AA certificate presented can't validate the request signature wrongea, -- the encrypted signature doesn't designate me as the EA unknownits, -- can't retrieve the EC/ITS in my DB invalidsignature, -- signature verification of the request by the EC fails invalidencryptionkey, -- signature is good, but the responseEncryptionKey is bad deniedpermissions, -- requested permissions not granted deniedtoomanycerts, -- parallel limit deniedrequest, -- any other reason? ...

Constructor Summary

Constructors

Constructor and Description
EtsiTs102941TypesAuthorizationValidation()

Method Summary

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

AuthorizationValidationResponseCode

public static final OERDefinition.Builder AuthorizationValidationResponseCode

AuthorizationValidationResponseCode ::= ENUMERATED { ok(0), cantparse, -- valid for any structure badcontenttype, -- not encrypted, not signed, not permissionsverificationrequest imnottherecipient, -- the "recipients" of the outermost encrypted data doesn't include me unknownencryptionalgorithm, -- either kexalg or contentencryptionalgorithm decryptionfailed, -- works for ECIES-HMAC and AES-CCM invalidaa, -- the AA certificate presented is invalid/revoked/whatever invalidaasignature, -- the AA certificate presented can't validate the request signature wrongea, -- the encrypted signature doesn't designate me as the EA unknownits, -- can't retrieve the EC/ITS in my DB invalidsignature, -- signature verification of the request by the EC fails invalidencryptionkey, -- signature is good, but the responseEncryptionKey is bad deniedpermissions, -- requested permissions not granted deniedtoomanycerts, -- parallel limit deniedrequest, -- any other reason? ... }

AuthorizationValidationRequest

public static final OERDefinition.Builder AuthorizationValidationRequest

AuthorizationValidationRequest ::= SEQUENCE { sharedAtRequest SharedAtRequest, ecSignature EcSignature, ... }

AuthorizationValidationResponse

public static final OERDefinition.Builder AuthorizationValidationResponse

AuthorizationValidationResponse ::= SEQUENCE { requestHash OCTET STRING (SIZE(16)), responseCode AuthorizationValidationResponseCode, confirmedSubjectAttributes CertificateSubjectAttributes (WITH COMPONENTS{..., certIssuePermissions ABSENT}) OPTIONAL, ... } (WITH COMPONENTS { responseCode (ok), confirmedSubjectAttributes PRESENT } | WITH COMPONENTS { responseCode (ALL EXCEPT ok), confirmedSubjectAttributes ABSENT } )

Constructor Detail

EtsiTs102941TypesAuthorizationValidation

public EtsiTs102941TypesAuthorizationValidation()