All Classes and Interfaces
Class
Description
5.2.8 Signature acceptance validation (SAV) This building block covers any
additional verification to be performed on the signature itself or on the
attributes of the signature ETSI EN 319 132-1
The class contains a general logic for alert handling
Processes the LOTL/TL validation job (download - parse - validate)
This class is used to read an ASiC Container and to retrieve its content files
The abstract class for an ASiC container validation
Abstract class used to build an instance of
ASiCContent.Builds a relevant
GetDataToSignASiCWithCAdESHelper for ASiC container dataToSign creationThis class contains common methods for ASiC filename factory.
The abstract class containing the main methods for ASiC signature creation/extension
This class contains common code for ASiC with CAdES container merger classes.
This class contains common code for ASiC with XAdES container merger classes.
The abstract class implementing the "5.3 Validation process for Basic Signatures" process
The abstract class containing basic methods for handling the
Result implementationsThe abstract cache DTO
An abstract builder of a Cache DTO
Abstract class containing util classes helping to configure a Factory or a Validator
The abstract class containing common code for CRL parsing
The abstract cryptographic check
Abstract class to perform cryptographic validation
Performs cryptographic validation
Get DataToSign DTO request
Abstract code for DetailedReport builder
The abstract implementation of a
DSSFontContains methods for dealing with textual visual signature creation
Abstract class to build a secure builder instance
This class contains a common code to be processed as a part of a "5.2.2 Format Checking" building block
for validation of signatures and timestamps.
This class is used to get DataToSign for ASiC-S container
An abstract class to generate a DataToSign with ASiC-S with CAdES
Represents an abstract class helping to extract a data to be signed for ASiC containers
The abstract implementation of an IText (OpenPDF) signature drawer
Abstract JAdES signature builder
Generic JAXB Facade which contains basic marshalling/unmarshalling
operations.
The abstract class for a JWS signature validation
Abstract class for JWS signature validation against JSON schemas
The keyStore token connection
The abstract class to build a Manifest for ASiC with CAdES
Abstract class to check if the given value is one of the allowed values by ValidationPolicy
An abstract implementation of
OtherTSLPointerPredicateAbstract parsing result
Abstract class to parse a LOTL/TL
Abstract class containing the main logic for PastSignatureValidation result check
Contains a list of common XML xpaths
The abstract implementation of PDFBox signature drawer
An abstract implementation of
PdfDssDictAn abstract class for PDF lock dictionary validation
An abstract implementation of IPdfObjFactory allowing to set the configuration options
The abstract implementation of a PDF signature service
Abstract validation process executor
The abstract remote signature service
This class is a container for all reports generated by the validation
process: diagnostic data, detailed report and simple report.
Abstract class used to create OutputStream to be used across DSS code
Abstract revocation check class
Runnable facade to Processes the LOTL/TL validation job (download - parse - validate)
Parameters for a Signature creation/extension
The abstract SignatureIdentifier builder
Parameters for a Signature creation/extension
An abstract class to build a signature parameters instance
The abstract implementation of
SignaturePolicyValidatorThe abstract class for
SignatureScope findingThe abstract class containing the main methods for a signature creation/extension
The abstract implementation of a remote token connection
Contains common code for signature tokens (signature or timestamps).
Sign Document DTO request
The abstract alert class to define a handler for the
Status processingTimestamp document request DTO
This an abstract class performing analysis if a valid timestamp from the given set is present
Contains a set of
TimestampTokens found in a DefaultAdvancedSignature objectThis class verifies a presence of a time-stamp token in a signature of the given time-stamp type
Abstract class for DSS internal identifier
An abstract representation of a validation object
The abstract implementation of a transform
Abstract class verifying the validity of the Trusted List
Deprecated.
since DSS 5.13.
Abstract filter defining the main logic of filters
Checks if the value is allowed
Checks if the signature's basic validation result is acceptable
Checks if a result of a Basic Signature Validation process for a timestamp token is acceptable
Verifies whether the BasicBuildingBlock's validation succeeded
Verifies whether the validation of a List of Trusted Lists is conclusive
Checks if the mimetype file is acceptable
Checks if an acceptable revocation data is found
Verifies whether the validation of aTrusted Lists is conclusive
Verifies whether acceptable Trusted Lists have been found
Checks if the zip comment is acceptable
Accepts all trusted lists
Java class for ActionType complex type.
Java class for ActivationLimitDurationType complex type.
Java class for ActivationLimitSessionType complex type.
Java class for ActivationLimitType complex type.
Java class for ActivationLimitUsagesType complex type.
Java class for ActivationPinType complex type.
Java class for AdditionalInformationType complex type.
Java class for AdditionalMetadataLocationType complex type.
This enumeration represents an AdditionalServiceInformation element content present in a Trusted List
Java class for AdditionalServiceInformationType complex type.
Java class for AdditionalValidationReportDataType complex type.
Java class for AddressType complex type.
Checks whether AdES signature validation as per EN 319 102-1 succeeded
Provides an abstraction for an Advanced Electronic Signature.
Java class for AdviceType complex type.
Java class for AffiliationDescriptorType complex type.
Java class for AgreementMethodType complex type.
The certificate source requesting issuer certificates by AIA
Interface that allows loading of issuing certificates
by defined AIA URI within a
eu.europa.esig.dss.model.x509.CertificateTokenThe interface to handle alert detection and execution
The interface used to detect on object if the alert must be executed
Exception to be thrown by a DSSExceptionAlert
Executes a process on an object
Java class for Algo complex type.
Java class for AlgoExpirationDate complex type.
Checks if all certificates in the path have the corresponding signing certificate references
This class allows to create a XAdES content-timestamp which covers all documents (AllDataObjectsTimeStamp).
Checks if all files are signed inside an ASiC container
This predicate is used as a default implementation and accepts all keys.
Java class for AlphabetType complex type.
This class allows to inject alternative urls to collect revocation data.
This class defines a PDF annotation dimension and position (note, shape, signature field, etc.)
Java class for AnyType complex type.
Java class for AnyType complex type.
Java class for AnyType complex type.
Java class for AnyType complex type.
Java class for AnyType complex type.
Java class for AnyType complex type.
Apache Commons implementation of Utils
Class provides an API for MacOS Keychain access.
Represents an ArchiveTimeStampChain object incorporated within an Evidence Record
Checks if an archive-time-stamp attribute is present
Represents an Evidence Record's ArchiveTimeStamp object.
Java class for ArchiveTimeStampSequenceType complex type.
Java class for anonymous complex type.
Different types of archive timestamps.
Java class for ArchiveTimeStampType complex type.
Parses the
ArchiveTimestampTypeJava class for ArtifactResolveType complex type.
Java class for ArtifactResponseType complex type.
DiagnosticDataBuilder for an ASiC container
This class is used to verify a possibility to merge ASiC containers and
merge them in a single container, when possible.
This class is used to load relevant
eu.europa.esig.dss.asic.common.merge.ASiCContainerMerger
for given eu.europa.esig.dss.model.DSSDocument containers or
eu.europa.esig.dss.asic.common.ASiCContentsDefines possible types for an ASiC container
Parses the
ASiCContainerTypeThis class is an implementation to validate ASiC containers with CAdES signature(s)
This class returns a relevant validator for an ASiC with CAdES container validation
This class is an implementation to validate ASiC containers with XAdES signature(s)
This class returns a relevant validator for an ASiC with XAdES container validation
Contains grouped documents representing an ASiC container's content
The class contains methods for document extraction in order to create a counter signature
This class is used to generate the ASiCArchiveManifest.xml content (ASiC-E)
Sample:
This class is used to merge ASiC-E with CAdES containers.
This class is used to generate the ASiCManifest.xml content (ASiC-E)
Sample:
Deprecated.
since DSS 5.13.
This class is used to merge ASiC-E with XAdES containers.
This class is used to build the manifest.xml file (ASiC-E).
This class parses the ASiC with XAdES manifest document and produces a
ManifestFileRepresents a collection of attributes defined in ASiC XSD schema
ASiC XSD elements
This class contains constants for ASiC and its namespace.
Parses ASiC Manifest file and produces a
ManifestFileContains paths for an ASiC scheme
Java class for ASiCManifestType complex type.
Defines a type of data object associated with the ASiCManifest file
Contains utils for dealing with ASiC Manifest
Performs validation of an ASiC Manifest entries
This class regroups the signature parameters related to ASiC form.
This class is used to merge ASiC-S with CAdES containers.
This class is used to merge ASiC-S with XAdES containers.
Contains utils for working with ASiC containers
Builds
ASiCContent for an ASiC with CAdES containerThe interface defining common parameters for an ASiC with CAdES container for signature/timestamp creation
The class is used to extract the content (documents) embedded into an ASiC with CAdES container
This class is used to load a relevant merger for an ASiC with CAdES containers
The class contains useful methods for ASiC with CAdES counter signature creation
Builds a relevant
GetDataToSignASiCWithCAdESHelper for ASiC with CAdES dataToSign creationThe DiagnosticData builder for an ASiC with CAdES container
This interface is used to provide filenames for newly created ZIP-entries
during a signature creation or extension for an ASiC with CAdES containers.
This class is used to extend an ASiC with CAdES signatures to LTA-level
Deprecated.
since DSS 5.13.
The service containing the main methods for ASiC with CAdES signature creation/extension
Builds a
GetDataToSignASiCWithCAdESHelper for a signature creationThis class is used to extend an ASiC with CAdES signature
This class is used to create a Manifest file for a signature creation
Defines SignatureParameters to deal with ASiC with CAdES signature creation/extension
This class is used to create a
GetDataToSignASiCWithCAdESHelper for timestamp creationThis class is used to create a Manifest file for a timestamp creation
Defines TimestampParameters to deal with ASiC with CAdES timestamp creation
This class is used to find a timestamp source for a detached timestamp within an ASiC with CAdES container
This class is used to create a timestamp covering signer files
The abstract validator for an ASiC with CAdES timestamp
Class containing utils methods for dealing with ASiC with CAdES container
Builds
ASiCContent for an ASiC with CAdES containerThe class is used to extract the content (documents) embedded into an ASiC with XAdES container
This class is used to load a relevant merger for an ASiC with XAdES containers
The class contains useful methods for ASiC with XAdES counter signature creation
Builds a relevant
GetDataToSignASiCWithXAdESHelper for ASiC with XAdES dataToSign creationThis interface is used to provide filenames for newly created ZIP-entries
during a signature creation or extension for an ASiC with XAdES containers.
The service containing the main methods for ASiC with XAdES signature creation/extension
Defines SignatureParameters to deal with ASiC with XAdES signature creation/extension
Trusted List assert list
See TS 119 612
Java class for AssertionIDRequestType complex type.
Java class for AssertionType complex type.
Assert parserChecks if at least one covered data object has been found
Java class for AttributeAuthorityDescriptorType complex type.
Java class for AttributeBaseType complex type.
Java class for AttributeConsumingServiceType complex type.
Java class for AttributedNonEmptyURIType complex type.
Java class for AttributeQueryType complex type.
Java class for Attributes complex type.
Java class for anonymous complex type.
Java class for AttributeStatementType complex type.
Java class for AttributeType complex type.
Java class for AudienceRestrictionType complex type.
Java class for AuthenticatorBaseType complex type.
Java class for AuthenticatorTransportProtocolType complex type.
Java class for AuthnAuthorityDescriptorType complex type.
Java class for AuthnContextComparisonType.
Java class for AuthnContextDeclarationBaseType complex type.
Java class for AuthnContextType complex type.
Java class for AuthnMethodBaseType complex type.
Java class for AuthnQueryType complex type.
Java class for AuthnRequestType complex type.
Java class for AuthnStatementType complex type.
Checks if the authority information access urls are present
4.2.2.1.
4.2.1.1.
Java class for AuthzDecisionQueryType complex type.
Java class for AuthzDecisionStatementType complex type.
Transforms a reference content to its base64 representation
NOTE: Not compatible with:
- other transformations;
- isEmbed(true) parameter;
- Manifest signature;
- Enveloped signatures.
Java class for BaseIDAbstractType complex type.
This class is used to retrieve the used certificates for a signature from the user parameters.
Checks conformance of a signature to the requested baseline format
The default implementation of a time dependent interval
Default implementation, checks only the hash of the policy
Note : this implementation is not registered as a service to allow overriding
Definition of signature Basic Building Blocks as per EN 319 102-1
5.2 Basic building blocks
4.2.1.9.
This check verifies if the certificate contains BasicConstraint.cA attribute and its value is set to true
This check verifies whether the certificate path depth of the current certificate is conformant
with BasicConstraints.pathLenConstraint value defined within intermediate CA certificates precessing in the chain
Group of common checks for any kind of signed token (signature, timestamp or revocation data)
Signature validation process at validation time as per EN 319 102-1 ch.
Checks whether the validation result of EN 319 102-1 ch.
Verifies time-stamp's basic building block and returns its identifier within additional info
Verifies if the Basic Signature Validation Process succeeds
Checks if the best-signature-time is in the certificate's validity range
Checks if the best-signature-time is before certificate's expiration
Checks if best-signature-time is before the suspension date (onHold)
If best-signature-time is before the issuance date of the signing
certificate, the process shall return the indication FAILED with the
sub-indication NOT_YET_VALID.
Reads
InputStream and writes the data to OutputStreamThis class is used to define common b-level parameters for a signature creation
Java class for Body complex type.
Java class for booleanType.
Used to compare two byte arrays.
This class represents a ByteRange of a PDF Revision
This class verifies if all signatures and document timestamps present in a PDF are valid
This class verifies the applicability of the /ByteRange field extracted from a corresponding PDF revision
Checks if the current signature /ByteRange does not collide with other signature byte ranges
Reads InputStream according to the given
ByteRangeAccesses a cache records by the specified key
Builds the classes to deal with the cache
The class is used to clean outdated cache entries
Contains information for a Cache entry
Defines a cached entry
Wraps an exception for a cache record
This interface is used to define a cached result for a single job
Defines a key for a cache record
The interface defines the different possible transitions from a CacheState to
another one
Contains states for a cache record
Defines a list of possible Cache Types
Represents a CAdES attribute, part of AttributeTable
Represents a unique identifier for an attribute from a CAdES signature
Performs checks according to EN 319 122-1 v1.1.1
"6.3 Requirements on components and services"
CertificateSource that retrieves items from a CAdES Signature
The class to build a CAdES counter signature
Parameters for a CAdES counter-signature creation
The CRL source for a CAdES signature
DiagnosticDataBuilder for a CMS signature
This class holds the CAdES-B signature profile; it supports the inclusion of the mandatory signed
id_aa_ets_sigPolicyId attribute as specified in ETSI TS 101 733 V1.8.1, clause 5.8.1.
This class holds the CAdES-LT signature profiles
This class holds the CAdES-A signature profiles; it supports the later, over time _extension_ of a signature with
id-aa-ets-archiveTimestampV2 attributes as defined in ETSI TS 101 733 V1.8.1, clause 6.4.1.
Extracts the necessary information to compute the CAdES Archive Timestamp V3.
This class holds the CAdES-T signature profile; it supports the inclusion of the mandatory unsigned
id-aa-signatureTimeStampToken attribute as specified in ETSI TS 101 733 V1.8.1, clause 6.1.1.
The OCSP source for a CAdES signature
CAdES implementation of DocumentSignatureService
CAdES Signature class helper
Builds a SignatureIdentifier for CAdES signature
Validates integrity of a CAdES signature
Defines SignatureParameters to deal with CAdES signature creation/extension
Builds a SignaturePolicyStore for a CAdES signature
Finds
SignatureScopes for a CAdES signatureRepresents the CAdES Signed attributes
Represents a list of
CAdESAttributesBuilds timestamped data binaries for a CAdES signature
Defines TimestampParameters to deal with CAdES timestamp creation
The timestamp source for a CAdES signature
Represents the CAdES Unsigned attributes
This class holds the list of the candidates for the signing certificate of the main signature.
Java class for CanonicalizationMethodType complex type.
Java class for CanonicalizationMethodType complex type.
Performs a canonicalization transform on XML NodeSet
Checks whether there are CA/QC TrustServices
Filters TrustServices by CA/QC type
An interface representing a certificate entity with essential properties.
This interface represents a repository for CertEntity objects.
This class represents the revocation information for a certificate.
Java class for CertIDListType complex type.
Java class for CertIDListType complex type.
Java class for CertIDListType complex type.
Java class for CertIDType complex type.
Java class for CertIDType complex type.
Java class for CertIDType complex type.
5.2.8 Signature acceptance validation (SAV) This building block covers any
additional verification to be performed on the signature itself or on the
attributes of the signature ETSI EN 319 132-1
Java class for CertificateChainType complex type.
Group of checks related to a certificate
Contains information about MRA equivalence mapping
Java class for CertificateContentReferenceEquivalenceType complex type.
Java class for CertificateContentReferencesEquivalenceListType complex type.
Builds the DiagnosticData for a CertificateToken validation
Abstract implementation of a certificate extension
Contains enumeration of certificate extensions supported by the application
This class contains a set of certificate extensions processed by the application
This class contains utility methods for extraction certificate extension (whether critical or not)
This class verifies if the certificate does not contain forbidden certificate extensions
Checks if there are consistent by QC TrustServices issues the certificate in question at control time
Checks if there are consistent by QSCD TrustServices issues the certificate in question at control time
Checks if the certificate has been issued to a legal person
Checks if the certificate has been issued to a natural person
This class verifies if the certificate's issuer distinguished name matches
the subject distinguished name of the issuer
Checks if the QCEuRetentionPeriod constraint
Checks the minimal allowed QC transaction limit for the certificate
This check verifies the validity of the certificate in regard to "Name constraint"
certificate extension's value in its certificate chain.
Checks if the certificate is not on hold
Checks if the certificate is not revokek
Checks if the certificate is not self-signed
Possible origin types for a certificate
Parses the
CertificateOriginDescribes a certificate status in the current pivot
4.2.1.4.
Certificate policies enumeration, as in ETSI TS 101 456
The class represents a certificate policy
Contain util methods for certificate policy identifiers checks
Checks if the certificate policy ids are acceptable
Checks if the certificate policies contain a Qualified identifier(s)
Checks if the certificate has a is a supported by QSCD policy identifier
This check verifies if the certificate has a valid policy tree according to its certification path in regard to RFC 5280
Processes a certificate validation
Checks the certificate's QcPS2D Id
Checks the certificate's QcPS2D Name
Checks the certificate's QcPS2D Role
Checks if the country code or set of country codes defined in QcCCLegislation is supported by the policy
Checks if the certificate is QC Compliant (has the id-etsi-qcs-QcCompliance statement)
Checks the minimal allowed QCLimitValue statement is defined with an acceptable currency
Checks the defined PDS locations for the certificate
Checks if the certificate is supported by QCSD (has the id-etsi-qcs-QcSSCD statement)
Checks the certificate's QcType(s)
Available certificate qualification types
This class verifies the final qualification of a certificate,
processing its validation at issuance and validation time
This class is used to determine certificate's qualification based on its content and
the given
TrustServiceWrapperParses the
CertificateQualificationDefines the qualification status of a certificate
This class represents a Certificate Reference entry extracted from a signature
An identifier for a certificate token reference
Lists the supported origin types for a certificate references
Parses the
CertificateRefOriginRepresents a certificate reference wrapper
Reorders a certificate collection to the corresponding certificate chain
This class is a container for all reports generated by the certificate
validation process: diagnostic data, detailed report and simple report.
The DTO representing the validation response result
This class validates revocation data for a given certificate and returns the latest valid entry
This class verifies the result of a
CertificateRevocationSelectorComplete revocation wrapper, containing detailed certificate revocation and common information
Checks if the certificate is self-signed
Checks the QCStatement SemanticsIdentifier value
Checks if the certificate's signature is valid
The validation of a certificate requires to access some other certificates from multiple sources (Trusted List, Trust
Store, the signature itself).
Standard sources for a certificate.
Parses the
ArchiveTimestampTypeDefines the certificate revocation status
Parses the
ArchiveTimestampTypeVerifies if the certificate does not contain any of the certificate extensions listed within
a list of unsupported certificate extensions
Whenever the signature validation process encounters an
This class encapsulates some frequently used information: a certificate comes from a certain context (Trusted List, CertStore, Signature), has revocation data...
X509Certificate a certificateToken
is created.This class encapsulates some frequently used information: a certificate comes from a certain context (Trusted List, CertStore, Signature), has revocation data...
This class is used to obtain a unique id for CertificateToken
This class is used to verify if a given
CertificateToken matches a CertificateRefThe DTO representing the certificate validation request
Contains a list of possible certificate types
Checks if the certificate type has been successfully identified at best signing time
Checks if the certificate type has been identified at the given time
Verifies if a TrustService(s) issuing the certificate have been found
Validates a CertificateToken
This class stores the information about the validity of the signing certificate.
Checks if the certificate is not expired
Java class for CertificateValuesType complex type.
Java class for CertificateValuesType complex type.
Java class for CertificateValuesType complex type.
Provides information on the sources to be used in the validation process in
the context of a signature.
Builds a copy of CertificateVerifier
Provides a user-friendly interface of dealing with JAXB
XmlCertificateThis enumeration is used to set the allowed level of permission for PDF modifications.
Parses
CertificationPermissionBasic support of ETSI EN 319 122-1 V1.1.1 chapter 5.2.6.1
Checks if the certified roles are acceptable
Java class for CertifiedRolesListType complex type.
Java class for CertifiedRolesListType complex type.
Java class for CertifiedRolesListType complex type.
Verifies certificate's qualification at the given time
This class is used to determine the certificate qualification based on the given qualification parameters
CertSubjectDNAttribute
Presence: This field is optional.
Java class for CertSubjectDNAttributeType complex type.
This class is part of the design pattern "Chain of responsibility".
This class is an item of the
Chain class.Checks if the SubXCV validation result is valid
Java class for CipherDataType complex type.
Java class for CipherReferenceType complex type.
Checks if the claimed roles are acceptable
Java class for ClaimedRolesListType complex type.
Java class for ClaimedRolesListType complex type.
Java class for ClaimedRolesListType complex type.
CMS certificate source
CRLSource that retrieves information from a
CMSSignedData container.Validation of CMS document
Checks if the document is supported and creates a relevant validator for the provided document
This class is used to verify conformance of a CMSSignedData to be incorporated to a PDF as a PAdES signature
OCSPSource that retrieves information from a
CMSSignedData container.Builds a CMSSignedData
A document composed by a CMSSignedData
This class is used to build an instance of
org.bouncycastle.cms.SignerInfoGeneratorThe utils for dealing with CMS object
Contains utils to convert
Color to RemoteColor object and vice versaThis class is used to define a CommitmentTypeQualifier to be incorporated within a signature
Represents the CommitmentType qualifying property
Defined in ETSI TS 119 172-1 Annex B
This class represents the commitment type indication identifiers extracted from the signature.
Checks if the commitment type indications are acceptable
Java class for CommitmentTypeIndicationType complex type.
Java class for CommitmentTypeIndicationType complex type.
Java class for CommitmentTypeIndicationType complex type.
Java class for CommitmentTypeQualifiersListType complex type.
Java class for CommitmentTypeQualifiersListType complex type.
Java class for CommitmentTypeQualifiersListType complex type.
This class is the common class for all
CertificateSource.This class provides the different sources used to verify the status of a certificate using the trust model.
This class provides a basic implementation of
CommitmentType providing a possibility
to create a customized CommitmentType signed property.This class implements the default methods.
Checks if the certificate's common name is acceptable
This class provides a basic implementation of
ObjectIdentifier providing a possibility
to create a customized ObjectIdentifierType signed property.The default PDF Modification object
Implementation of DataLoader for any protocol.
This is a default implementation of
HttpClientResponseHandler<byte[]> to be used within
eu.europa.esig.dss.service.http.commons.CommonsDataLoader.This class represents the simple list of trusted certificates.
The common implementation of
X509URLCertificateSource retrieving X.509 certificates by the given URIJava class for CompleteCertificateRefsType complex type.
Java class for CompleteCertificateRefsType complex type.
Java class for CompleteCertificateRefsType complex type.
Java class for CompleteRevocationRefsType complex type.
Java class for CompleteRevocationRefsType complex type.
Java class for CompleteRevocationRefsType complex type.
Java class for ComplexAuthenticatorType complex type.
Transform processed by Apache
XMLSignatureInput utilsThis class allows to retrieve a AIA with different sources.
The class allows to define multiple
AlertHandlers to processCondition resulting of the matchingCriteriaIndicator of other Conditions
This class allows to retrieve a RevocationToken with different sources.
This class allows to retrieve a timestamp with different sources.
Represents a condition defined in the trusted list on a certificate.
Java class for ConditionAbstractType complex type.
This class is a DTO representation for qualifier and conditions
Java class for ConditionsType complex type.
Filters TrustServices by qualifier and additional service information consistency
Filters TrustServices by QC consistency
Filters TrustServices by QSCD consistency
Filters TrustServices by status consistency
Root element for the DSS validation policy : that allows customization of the validation process : add/remove checks and set its criticality.
Defines ConstraintStatus type
Java class for ConstraintStatusType complex type.
Java class for ContactType complex type.
Java class for ContactTypeType.
ASiC specific constraints
This SignatureScope represents a content of a package.zip container file for an ASiC-S container
Represents an entry within a ZIP archive, containing its metadata and file's content.
Contains information about an ASiC container
This Signature Scope represents a "package.zip" container for ASiC-S signatures
Checks if the container type is acceptable
Checks if the content hints are acceptable
Checks if the content identifier is acceptable
Checks if a content timestamp is present
Checks if a collection of content timestamps is not empty
Checks if the content type is acceptable
Defines signature validation context
Parses the
ContextThe XAdES CounterSignatureBuilder used to create a counter signature
signing a SignatureValue of a parent signature
Checks if a counter signature is present for the signature
Resolver for a counter signature only.
This signature scope is used to refer a counter-signed SignatureValue
This interface
CounterSignatureService provides operations for a counter-signature creationJava class for CounterSignatureType complex type.
Java class for CounterSignatureType complex type.
Java class for CounterSignatureType complex type.
This class is a DTO to transfer required objects to execute counterSignSignature method
It's only possible to transfer an object by POST and REST.
Checks if the country's name is acceptable
This application can be used to create a certificate keyStore
This class is used to convert a list of
CriteriaListType to ConditionJava class for CriteriaListType complex type.
This interface represents a CRL token
This class represents DER encoded CRL Binary identifier
4.2.1.13.
This class fetches firstly CRL response, if not available, tries OCSP and returns the first succeeded result
This class initializes a
CRLFirstRevocationDataLoadingStrategy.Java class for CRLIdentifierType complex type.
Java class for CRLIdentifierType complex type.
Java class for CRLIdentifierType complex type.
Reference to a X509CRL
Java class for CRLRefsType complex type.
Java class for CRLRefsType complex type.
Java class for CRLRefsType complex type.
Java class for CRLRefType complex type.
Java class for CRLRefType complex type.
Java class for CRLRefType complex type.
Typed sub-interface which allows collection of
CRLToken(s).This class represents a CRL and provides the information about its validity.
This class is used to match a CRL with a reference
The utils for dealing with CRLs
The DSS implementation of
ICRLUtilsThe implementation of
ICRLUtils with java.security classesThis class encapsulates all information related to the validity of a CRL.
Java class for CRLValuesType complex type.
Java class for CRLValuesType complex type.
Java class for CRLValuesType complex type.
The cryptographic check
Runs the cryptographic validation
Validates the result of a cryptographic checker
Group of constraints related to cryptographic usage
The wrapper for cryptographic information retrieved from a validation policy
Defines CryptographicInformation element content
Defines type of the cryptographic information content
Java class for CryptographicInformationType complex type.
Java class for anonymous complex type.
5.2.7 Cryptographic verification
This building block checks the integrity of the signed data by performing the cryptographic verifications.
Verifies if the format Cryptographic Verification process as per clause 5.2.7 succeeded
Java class for CryptoInformationType complex type.
Contains information for a cache record state
Checks if the current state is PASSED
ContentSigner using a provided pre-computed signature
Represents a
DigestCalculatorProvider for a message-digest calculationThe DSS identifier for a SignedData
Component that allows to retrieve the data using any protocol: HTTP, HTTPS, FTP, LDAP.
This is an internal class used to model the couple data and url used to obtain this data.
Builds
eu.europa.esig.dss.xades.dataobject.DSSDataObjectFormat objects.Java class for DataObjectFormatType complex type.
Java class for DataObjectFormatType complex type.
Java class for DataObjectFormatType complex type.
Java class for DataObjectReferenceType complex type.
This class is a DTO to transfer required objects to execute getDataToBeCounterSigned method
It's only possible to transfer an object by POST and REST.
An abstract class to generate a DataToSign with ASiC-E with CAdES
An abstract class to generate a DataToSign with ASiC-E with XAdES
A class to generate a DataToSign with ASiC-S with CAdES from an existing archive
A class to generate a DataToSign with ASiC-S with CAdES from a files to be signed
This class is used to get DataToSign for ASiC-S with XAdES container
Represents a DataTransferObject containing the required parameters for creation of DTBS (Data To Be Signed)
to be used for CMS for PAdES signature creation.
This class is a DTO to transfer required objects to execute getDataToSign method
It's only possible to transfer an object by POST and REST.
This class is a DTO to transfer required objects to execute getDataToSign method
It's only possible to transfer an object by POST and REST.
A class to generate a DataToSign for an OpenDocument signing
DTO for getDataToSign(..) method call for an XML Trusted List creation.
Represents a validation request DTO
This class is an adapter for java.util.Date in SOAP WS
Parses a date
Contains utils to parse a date
Java class for DCEValueType complex type.
Generates a prints a report of the current cache state
Java class for DecisionType.
A common implementation of
AdvancedSignatureThe class is used to download issuer certificates by AIA from remote sources
This class provides a default implementation of
ASiCWithCAdESFilenameFactory
used within basic configuration of DSS for creation of filenames for new container entries.This class provides a default implementation of
ASiCWithXAdESFilenameFactory
used within basic configuration of DSS for creation of filenames for new container entries.Executes a certificate validation
This class is used to load a relevant
eu.europa.esig.dss.asic.common.merge.ASiCContainerMerger
in order merge content of given containers.Default representation of an Evidence Record
Contains the util methods used by the
eu.europa.esig.dss.pdf.pdfbox.visible.defaultdrawer.DefaultPdfBoxVisibleSignatureDrawerThe default PDFBox signature drawer.
Default implementation used to find differences in pages between two PDF revisions.
Default implementation used to find the differences between two provided PDF revisions.
Loads a relevant
SignaturePolicyValidator based on the policy contentThis class executes a signature validation process and produces
SimpleReport, DetailedReport and ETSI Validation report
Resolver for detached signature only.
This class finds a timestamp scope for a detached timestamp
Performs processing of detached timestamps
Detached CMS TimestampToken Validator
Returns a validator for a detached timestamp document
Java class for detail complex type.
This class represents the detailed report built during the validation process.
Builds a DetailedReport for a signature validation
Contains methods for DetailedReport generation
Builds a DetailedReport for a certificate validation
The class is used to collect all messages for a token validation by a defined type from a DetailedReport
Contains the cached copies of relevant schema/templates for DetailedReport generation
Java class for DeviceTypeType.
This class represents all static data extracted by the process analysing the signature.
Contains a common code for DiagnosticData building
This class is used to marshall/unmarshal DiagnosticData report
This class is used to provide an XSD schema for a DiagnosticData and templates
Container for a Digest and his algorithm
Java class for DigestAlgAndValueType complex type.
Java class for DigestAlgAndValueType complex type.
Java class for DigestAlgAndValueType complex type.
Supported Algorithms
Check DigestAlgorithm at validation time
Parses the
DigestAlgorithmCheck if DigestAlgorithm is acceptable
Checks the digest algorithm
Validates Digest cryptographic constraint
Digest representation of a
DSSDocument.Represent the Digest DTO
Verifies the
DigestAlgorithmClass used to verify a DigestMatcher
Defines available types of DigestMatchers (signed data origins)
Parses the
DigestMatcherTypeJava class for DigestMethodType complex type.
Java class for DigestMethodType complex type.
Java class for DigestMethodType complex type.
The Signature Scope defines a Digest document
Represents a Sequence/partialHashTree object, containing digest values of data objects
Checks if the digest value matches for a signing certificate reference
Checks if the digest value is present for a signing certificate reference
Java class for DigitalIdentityListType complex type.
The class is used to extract
CertificateTokens from a DigitalIdentityListTypeJava class for DigitalIdentityType complex type.
Wrapper for a list of
eu.europa.esig.dss.diagnostic.jaxb.XmlDistinguishedNamesVerifies a signature according to given permissions for the document in /DocMDP
Java class for DocumentationReferencesType complex type.
Java class for DocumentationReferencesType complex type.
Java class for DocumentationReferencesType complex type.
This class is used to build a
DocumentBuilderFactoryProcesses a document validation
This interface
DocumentSignatureService provides operations for the signature creation and for its extension.Checks if a document-time-stamp is present
This is the interface to be used when implementing different signature validators.
This interface defines the factory to create a
DocumentValidator for
a given DSSDocumentThe utils for dealing with
org.w3c.dom objectsThe DownloadCache to store files
The download record DTO
Builds
DownloadCacheDTODefines a download result record
Contains util methods for DPI processing
Java class for DSAKeyValueType complex type.
Utility class that contains some ASN1 related method.
The XML attribute interface
Contains a map of occurred exceptions to different URL calls
This class represents a
<xades:DataObjectFormat> element as part of <xades:SignedDataObjectProperties>Contains utils for a DSS dictionary content extraction
Interface representing a DSS document.
The XML element
The default
ErrorHandler used to collect the occurred during
the validation errorsThe default
DSSErrorHandler alert.Exception to be thrown in case of error during DSS framework processing
The exception to be thrown in case of an external error arisen during a data loader requests
This alert is used to throw a
eu.europa.esig.dss.spi.exception.DSSExternalResourceException
when the corresponding check failsThe Font created from a file
Loads files
Defines a font used for a visual signature creation with text
Performs operations on a Font object corresponding the used implementation
Represent the JAVA implementation of the DSSFont
Utility class for working with JSON objects
This predicate allows filtering of
DSSPrivateKeyEntry within a SignatureTokenConnection
(see AbstractKeyStoreTokenConnection#getKeys).This class contains a digest algorithm and a digest value for message-digest computation.
This class is used to compute
DSSMessageDigest based on the provided inputDefines the namespaces
The native font used in PDF libraries
Allows creation of custom ds:Object element
Utils to retrieve public key size
Provides an interface to a token connection with an exposed (accessible) private key entry.
Interface for a PrivateKey.
Defines a ds:Reference element to be built
Exception to be thrown in case of Remote Service error
Exception to be thrown in case of JAXB Report marshaling or unmarshaling error
This class is used to create objects required for a document signing process
(e.g.
This class builds a new instance of
DSSResourcesHandlerUtility class used to manipulate revocation data (OCSP, CRL)
Default
SecureRandomProvider used in DSS,
returning org.bouncycastle.crypto.prng.FixedSecureRandom instanceThe default security provider
Defines a transform used for a reference transformations
Represents an
XMLSignatureInput wrapperSet of common utils
The DSS implementation of
ErrorListener
Logs errors according to its levelUtility class that contains some XML related method.
Contains metadata for a ZIP-container entry
Contains metadata for a ZIP-container entry
Contains utils to convert signature creation DTOs
Group of checks related to Trusted Lists
Contains EIDAS Utils
Java class for ElectronicAddressType complex type.
This class verifies whether the elliptic curve key size used to create the signature corresponds to
the defined within 'alg' header of the JWA signature as per RFC 7518.
This class covers the case of empty signature policies (no asn1,...
Java class for EncapsulatedPKIDataType complex type.
Java class for EncapsulatedPKIDataType complex type.
Java class for EncapsulatedPKIDataType complex type.
This class is used to create a unique identifier for a revocation data binaries
This class is used to find a signature scope for an embedded timestamp
from a collection of
SignatureScope candidates, extracted from a signatureJava class for EncryptedDataType complex type.
Java class for EncryptedElementType complex type.
Java class for EncryptedKeyType complex type.
Java class for EncryptedType complex type.
Supported signature encryption algorithms.
Check EncryptionAlgorithm at validation time
Parses the
EncryptionAlgorithmCheck if EncryptionAlgorithm is acceptable
Java class for EncryptionInfo complex type.
Java class for anonymous complex type.
Java class for EncryptionMethodType complex type.
Java class for EncryptionPropertiesType complex type.
Java class for EncryptionPropertyType complex type.
Defines available types of a SignerRole element
Parses the
EndorsementTypeJava class for EndpointType complex type.
This class tests the xpath expression against injection.
Java class for EntitiesDescriptorType complex type.
Java class for EntityDescriptorType complex type.
Represents a deterministic identifier of a certificate entity object
This class is used to obtain a unique id for Public key
Java class for Envelope complex type.
Used for Enveloped Signature
Note: must be followed up by a
CanonicalizationTransformRepresents an item of the 'etsiU' header array
This class encapsulates the constraint file that controls the policy to be used during the validation process.
Builds the ETSI Validation report
This class is a predicate which selects OtherTSLPointerType(s) with a defined
type equals to EUlistofthelists.
This class is a predicate which selects OtherTSLPointerType(s) with a defined
type equals to EUgeneric.
Representation of an Evidence Record
Extracts and returns certificate tokens embedded within an Evidence Record structure
Group of constraints on the evidence record
Extracts and returns CRL tokens embedded within an Evidence Record structure
Creates unique identifier for an evidence record
Builds an
eu.europa.esig.dss.model.identifier.Identifier
for an eu.europa.esig.dss.evidencerecord.common.validation.DefaultEvidenceRecordRepresents an Evidence Record object
Extracts and returns OCSP tokens embedded within an Evidence Record structure
Parses an Evidence Record document and produces an ordered list of
ArchiveTimeStampChainObject elementsPOE provided by an evidence record
Extracts evidence record scopes representing the covered archival data objects
Performs validation of all evidence records provided to the validator
Builds an identifier for a time-stamp encapsulated within an evidence record
Finds timestamped scopes for evidence record time-stamps
This class performs a verification of complete Evidence Record Archive Time-Stamp Sequence
This class is used for extraction and validation of time-stamps incorporated within an Evidence Record
Verifies a time-stamp of an Evidence Record
Java class for EvidenceRecordType complex type.
Defines supported Evidence Record types
Parses the
eu.europa.esig.dss.enumerations.EvidenceRecordTypeEnumVerifies validity of the performed evidence record validation process
Performs Evidence Record validation as per clause 5.6.3 "Validation Process for Signatures providing
Long Term Availability and Integrity of Validation Material", step 1) 5.6.3.4 "Processing"
Abstract class containing the basic logic for an Evidence Record validation,
as well as containing a loader for an Evidence Record validation of the given format.
This interface defines the factory to create a
EvidenceRecordValidator for
a given DSSDocumentProvides a user-friendly interface for dealing with JAXB
eu.europa.esig.dss.diagnostic.jaxb.XmlEvidenceRecord objectJava class for EvidenceType complex type.
The class throws an exception on a
Status eventAllows skipping expired or invalid trusted lists
This class is a DTO to transfer required objects to execute extendDocument method
It's only possible to transfer an object by POST and REST.
The KeyPurposeId object.
Checks if the extended key usage is acceptable
ExtendedKeyUsage
Presence: This field is optional.
This class is used to filter private key predicates based on the certificate ExtendedKeyUsage attribute value
4.2.1.12.
Java class for ExtendedKeyUsageType complex type.
Builds XAdES signature extension
Java class for ExtensionOnlyType complex type.
Java class for ExtensionsListType complex type.
Java class for ExtensionsListType complex type.
Java class for ExtensionsType complex type.
Java class for ExtensionsType complex type.
Java class for ExtensionType complex type.
Java class for ExtensionType complex type.
Java class for ExtensionType complex type.
This service is used to generate a CMSSignedData used for incorporation
within a PDF document for a PAdES signature creation.
This class allows to provide a CRL source based on the list of external CRL(s).
This class is used to provide a collection of OCSP tokens by the user.
Fault reporting structure
Verifies a signature according to given permissions for the document in /FieldMDP
Internal class that is used for performance purposes, accessing ZIP-archive entries on request,
instead of loading all files into memory.
This class provides some caching features to handle the resources.
Document implementation stored on file-system.
This class is used to create a meaningful name for document depending
on its original name and the signing operation.
Filters files by extension
Determines the final qualification of a certificate giver two qualifications at issuance and best-signature-time
Checks if the signature format is acceptable
Verifies if the format checking process as per clause 5.2.2 succeeded
Handles method logic to process
XmlFoundCertificates and returns wrappersHandles method logic to process
XmlFoundRevocations and returns wrappersRepresents a FULL Pdf signature scope (signature/timestamp covers a complete PDF file)
Checks if the signature covers FULL scope documents
Marker class meaning that the signature covers the whole document.
Represents a general name element (see RFC 5280)
Represents possible types of a GeneralName
Parses the
eu.europa.esig.dss.enumerations.GeneralNameTypeRepresents a general subtree element (see "4.2.1.10.
Java class for anonymous complex type.
Java class for GenericTimeStampType complex type.
The interface defining a helper to create a
ToBeSigned data for an ASiC with CAdESThe interface defining a helper to create a
ToBeSigned data for an ASiC with XAdESChecks if the certificate's given name are acceptable
Google Guava implementation of Utils
Java class for GoverningAgreementRefType complex type.
Java class for GoverningAgreementsType complex type.
Filters TrustServices by 'granted' status (before and after eIDAS)
Verifies of the certificate has related TrustServices which have been 'granted'
at the given validation time
Verifies if the certificate has TrustServices with a 'granted' status
Filters TrustServices by 'granted' property (supports pre- and post- eIDAS)
Java class for HashDataInfoType complex type.
Java class for HashTreeType complex type.
Java class for anonymous complex type.
Java class for Header complex type.
This object defines a configuration details for HTTP connection to the given host
The class represents an HTTP Header to be signed
See ETSI TS 119 182-1 "5.2.8.2 Mechanism HttpHeaders"
The class shall be used only for JAdES detached
SigDMechanism.HTTP_HEADERS mechanismAn HTTP message body, which 'Digest' representation is being signed with 'sigD' HTTP_HEADERS mechanism
The signature scope used to define the HTTPHeader message body
The signature scope used to define the signed payload with HTTPHeader SigD Mechanism
Builds payload binaries from HTTPHeaderDocuments for the 'sigD' HttpHeaders mechanism
Internalization provider
The interface for dealing with CRLs
Verifies if the identification of the signing certificate (as per clause 5.2.3) succeeded
5.2.3 Identification of the signing certificate
This building block is responsible for identifying the signing certificate that will be used to validate the
signature.
Java class for IdentificationType complex type.
This class is used to obtain a unique id for an object
Defines the object having an identifier (e.g.
Builds a
eu.europa.esig.dss.model.identifier.IdentifierJava class for IdentifierType complex type.
Java class for IdentifierType complex type.
Java class for IdentifierType complex type.
Java class for IDPEntryType complex type.
Checks if the certificate has ocsp-no-check extension and not expired in validation time
Java class for IDPListType complex type.
Java class for IDPSSODescriptorType complex type.
This class allows to avoid downloading resources.
This exception indicates that a provided by the user input or file is not valid for a particular operation
iText drawer used for image only visible signature creation
Image horizontal and vertical resolution
Contains utils for the image rotation
This class defines an enumeration that can be used to define the image scaling behavior
for signature fields with a fixed size
Static utilities for image creation and processing
Java class for IncludeType complex type.
Java class for IncludeType complex type.
Java class for IndexedEndpointType complex type.
The list of possible values for indications.
Parses the
IndicationJava class for IndividualValidationConstraintReportType complex type.
Describes a state of a record
4.2.1.14.
In memory representation of a document
This class represents an in-memory implementation of
DSSResourcesFactory.This class creates an
InMemoryResourcesHandler to create in-memory objects
NOTE: This implementation is used by defaultJava class for IntegerListType complex type.
Java class for IntegerListType complex type.
Java class for IntegerListType complex type.
Java class for InternationalNamesType complex type.
The class is used to extract language based values
Integer value check : follows the specified level behavior when the checked element is compliant with the defined constraint value
Throwed if an invalid password has been provided
Loads the relevant implementation of
PDFSignatureServiceChecks whether the validator was able to select one TrustService
(in condition that there is no conflict with other TrustServices)
Verifies if there is no conflict in certificate qualification determination result
based on a use of different TrustServices
Checks if the issuer serial matches for a signing certificate reference
The IText (OpenPdf) implementation of
IPdfObjFactoryDefault implementation for IText (OpenPDF) to load a relevant visual signature drawer
The IText (OpenPdf) implementation of
PdfDocumentReaderThe IText (OpenPDF) implementation of Font metrics
The IText (OpenPDF) native font
Implementation of PDFSignatureService using iText
IText (OpenPDF) visual signature drawer
Loads the relevant visual signature drawer for the IText (OpenPDF) implementation
The interface contains the common methods to be used within the DSS core
Represents the JAdES header
Represents an identifier of a JAdES Attribute (or 'etsiU' component)
Performs checks according to EN 119 182-1 v1.1.1
"6.3 Requirements on JAdES components and services"
Builds a JAdES signature
Contains utils for a certificate reference extraction
Extracts and stores certificates from a JAdES signature
Builds JWS Compact Signature
Creates a JAdES Counter signature
Parameters to create a JAdES counter-signature
Extracts and stores CRLs from a JAdES signature
DiagnosticDataBuilder for a JWS signature
Loads the relevant Validator to process a given JAdES signature
Represents the list of components present inside the unprotected 'etsiU' header
The abstract class allowing the signature extension
Defines a list of JAdES header names as in ETSI TS 119 182-1
The class builds a JOSE header according to EN 119-182
JAdES extension
Creates an LT-level of a JAdES signature
Creates an LTA-level of a JAdES signature
Creates a T-level of a JAdES signature
Extracts and stores OCSPs from a JAdES signature
The JAdES reference validation result
Contains utils to extract revocation references
Builds a JWS JSON Serialization signature
Contains methods for JAdES signature creation/extension
Represents the JAdES signature
The DSS identifier for a JAdES signature
Checks the integrity of a JAdES SignatureValue
The parameters to create/extend a JAdES signature
The builder used to incorporate a
SignaturePolicyStore to a
JAdESSignature documentFinds a SignatureScope for a JAdES signature
Represents a list of JAdES signed properties (protected header)
Builds the message-imprint digest for JAdES timestamps
The parameters to create a JAdES timestamp
Extracts timestamps from a JAdES signature
Contains utils for JAdES signature validation against JSON schemas
Contains font metrics for a Java font
Represents a JAXB implementation of a
CertEntity.Builds a
JAXBCertEntity objectJAXB PKI implementation of
CertEntityRepositoryBuilds
JAXBCertEntity objects from the provided XML PKI configuration and stores the result in JAXBCertEntityRepositoryThe class represents a JDBC cached AIA Source
Represents an AIA record extracted from the SQL database table
This class executes calls to a
javax.sql.DataSourceCRLSource that retrieve information from a JDBC datasource
Represents a CRL record extracted from the SQL database table
OCSPSource that retrieve information from a JDBC data-source.
Represents an OCSP record extracted from the SQL database table
Abstract class to retrieve token from a JDBC datasource
This application prints information about each entry of a given certificate keyStore
Class holding all Java KeyStore file access logic.
Represents a merged strategy to extract pseudo information, accepting the certificate's pseudo attribute and
custom German pseudo processing algorithm
Represents a wrapper of a Map with JsonObject methods
Extension of a JSON web Signature according to RFC 7515
Validates a JWS Compact signature
The class is used to parse a Compact JWS
Defines JSON headers for a JWS Signature (RFC 7515)
Contains utils for a JAdES signature format conversion
Crates a JWS Serialization signature
A container with JWS signature attributes
The Parser used to create a
JWSJsonSerializationObject from a document{
"payload":"payload contents",
"signatures":[
{"protected":"integrity-protected header 1 contents",
"header":non-integrity-protected header 1 contents,
"signature":"signature 1 contents"},
...
Represents JWS types defined in RFC 7515, 3.
Contains utils for JWS signature validation against JSON schemas
Java class for KeyActivationType complex type.
Java class for KeyDescriptorType complex type.
TSPSource implementation allowing to configure issuance of a time-stamp using a local
KeyStoreVerifies whether a value of the signed attribute 'kid' (key identifier), when present, matches
the signing-certificate sued to create the signature
This class verifies whether a 'kid' (key identifier) header parameter is present within
the protected header of a signature
Java class for KeyInfoConfirmationDataType complex type.
Java class for KeyInfoType complex type.
Builds a key pair given the provided
EncryptionAlgorithm and key sizeJava class for KeySharingType complex type.
Java class for KeyStorageType complex type.
Implements a CertificateSource using a KeyStore (PKCS12, JKS,...).
Connection to a key store
Java class for KeyTypes.
4.2.1.3.
KeyUsage bit values
KeyUsage ::= BIT STRING {
digitalSignature (0),
nonRepudiation (1),
keyEncipherment (2),
dataEncipherment (3),
keyAgreement (4),
keyCertSign (5),
cRLSign (6),
encipherOnly (7),
decipherOnly (8)
}
Parses the
KeyUsageBitJava class for KeyUsageBitType complex type.
Checks if the certificate's key usage are acceptable
Condition based on the certificate key usage
This class is used to filter private key predicates based on the certificate KeyUsage attribute value
Java class for KeyUsageType complex type.
Java class for KeyValueType complex type.
The certificate source containing a map of certificates by KIDs
Wrapper of a PrivateKeyEntry coming from a KeyStore.
Contains util methods for dealing with LDAP protocol urls
Java class for LengthType complex type.
Java class for level.
Boolean check : follows the specified level behavior in case of failure
Java class for ListAlgo complex type.
This class operates on several
CertificateSource with the composite
design pattern.This class allows to handle a list
OfflineRevocationSourceJava class for localizedNameType complex type.
Java class for localizedURIType complex type.
Implementation of
AlertHandler which logs the object with the
specified LevelWarns on the LOTL location change
Warns on the LOTL Official Journal URL change
The class logs a message on
Status alertJava class for LogoutRequestType complex type.
Warns on the TL expiration
Warns on TL parsing error
Warns on TL validation error
Verifies and returns the latest acceptable revocation data for a long-term validation process
Checks if the long-term validation check is acceptable
The class to process events on LOTL
Runs the job for a LOTL analysis
Applies changes in the LOTL cache
The identifier for a LOTL
Computes summary for a List of Trusted Lists processing result
Detects the change of a LOTL location
Parsed LOTL result
Parses a LOTL and returns
LOTLParsingResultThe predicate to filter the LOTL signing certificates scheme information URI
Represent a List of Trusted Lists source
Runs the job for a LOTL with pivots analysis
Verifies if there is at least one valid LTA-level timestamp
Java class for ManageNameIDRequestType complex type.
The enumeration of Manifest attributes
This class builds a ds:Manifest element
The Manifest element enumeration
Defines a references document entry of a ManifestFile
Checks if a manifest entry is present
This SignatureScope represents a Manifest entry document
Represents a parsed Manifest File object
Checks if the manifest file is present inside an ASiC container
This class contains constants for Manifest and its namespace.
Path expressions for a Manifest
The Signature Scope represents a Manifest document
Java class for ManifestType complex type.
This class validates a ds:Manifest element against external files
Mask generation function.
Parses the
ArchiveTimestampTypeUsed to limit the size of fetched data.
Java class for mediumType.
Defines a map between URL and document to load the data from offline source
Represents the Message returned in the validation process
Checks if message-digest (CAdES/PAdES) or SignedProperties (XAdES) is present
Verifies the message-imprint cryptographic constraints
Verifies cryptographical validity of a DigestAlgorithm used for message-imprint creation
Verifies whether the result of
MessageImprintDigestAlgorithmValidation is validContains message describing the occurred event
Contains a list of possible message tags.
Defines possible levels for messages returned by the validation process
Identifies a file MimeType and its attributes
Contains default MimeType enumerations
Contains methods to extract
MimeTypeEnumsChecks if a mimetype file is present
This class is used to load an enumeration(s) of
eu.europa.esig.dss.enumerations.MimeType interfaceThis predicate allows filtering of TSL pointers by a MimeType
Java class for Model.
Boolean check : follows the specified validation model
This object contains information extracted from the MutualRecognitionAgreementInformation element
of a Mutual Recognition Agreement schema
This class verifies whether the certificate content equivalence information has been applied for the certificate
This class is used to convert JAXB
MutualRecognitionAgreementInformationType to Java MRAIt identifies the context of the machine processable declarative statement whose reference implementation(s) used by the
pointing contracting party is (are) declared in the CertificateContentDeclarationPointingParty element and
whose equivalent implementation(s) used by the pointed contracting party is (are) declared in the
CertificateContentDeclarationPointedParty element.
Performs marshalling/unmarshalling operation for a TrustedList XML with applied MRA scheme
It specifies the current status of the MRA for the corresponding
trust service type identified in the TrustServiceLegalIdentifier field.
MRA Utils
Class holding all MS CAPI API access logic.
Java class for MultiLangNormStringType complex type.
Java class for MultiLangStringType complex type.
This class is used to obtain a requested digest from a stored binary array
This interface
MultipleDocumentsSignatureService provides operations for the signature creation and for its
extension.This interface allows to retrieve all revocation data for a given
certificate.
Multi-values check : follows the specified level behavior if the checked element is not present in the list.
Mutable list of time-dependent values.
Java class for MutualRecognitionAgreementInformationType complex type.
4.2.1.10.
Java class for NameIDMappingRequestType complex type.
Java class for NameIDMappingResponseType complex type.
Java class for NameIDPolicyType complex type.
Java class for NameIDType complex type.
A class for namespace context management.
The call of native java DataLoader using the java.net.URL class.
Implementation of native java DataLoader using the java.net.URL class.
Available HTTPMethods
The native PDFBox signature drawer.
Checks if the nextUpdate is present
Java class for NextUpdateType complex type.
This class covers the case of non ASN1 signature policies (e.g.
Interface which allows to produce Nonce value.
Java class for NonEmptyMultiLangURIListType complex type.
The class is used to extract non-empty URI language based values
Java class for NonEmptyMultiLangURIType complex type.
Filters non-empty TrustServices
Java class for NonEmptyURIListType complex type.
Java class for NoticeReferenceType complex type.
Java class for NoticeReferenceType complex type.
Java class for NoticeReferenceType complex type.
Java class for NsPrefixMappingType complex type.
Java class for nymType.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.asic.manifest.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.detailedreport.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.diagnostic.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.pki.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.policy.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.simplecertificatereport.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.dss.simplereport.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.assertion package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.authn.context package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.dce package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.ecp package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.metadata.algsupport package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.metadata package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.saml.jaxb.protocol package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.soap.jaxb.envelope package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.trustedlist.jaxb.ecc package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.trustedlist.jaxb.mra package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.trustedlist.jaxb.tsl package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.trustedlist.jaxb.tslx package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.validationreport.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xades.jaxb.xades111 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xades.jaxb.xades122 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xades.jaxb.xades132 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xades.jaxb.xades141 package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xmldsig.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xmlenc.jaxb package.
This object contains factory methods for each
Java content interface and Java element interface
generated in the eu.europa.esig.xmlers.jaxb package.
Represents an identifier type with the following properties :
- identifier (URI for XAdES and/or OID for CAdES);
- identifier qualifier (URI or URN encoding);
- description;
- document references;
Declares type of the defines identifier
Used in XAdES
Parses the
ObjectIdentifierQualifierJava class for ObjectIdentifierType complex type.
Java class for ObjectIdentifierType complex type.
Java class for ObjectIdentifierType complex type.
This object represents a modification occurred in a PDF document
Implementation of a
Status interface, containing a list of concerned objects' identifiers and
their corresponding errorsDefines object types
Java class for ObjectType complex type.
This interface represents an OCSP token
Represents a Source of certificates embedded into an OCSP Token
Implementation of DataLoader using HttpClient.
This class fetches firstly OCSP token response, if not available, tries CRL and returns the first succeeded result
NOTE: This implementation is use by default for revocation retrieving
This class initializes a
OCSPFirstRevocationDataLoadingStrategy.Java class for OCSPIdentifierType complex type.
Java class for OCSPIdentifierType complex type.
Java class for OCSPIdentifierType complex type.
RFC 6960.
Reference an OCSPResponse
An identifier used for an OCSP token reference
Java class for OCSPRefsType complex type.
Java class for OCSPRefsType complex type.
Java class for OCSPRefsType complex type.
Java class for OCSPRefType complex type.
Java class for OCSPRefType complex type.
Java class for OCSPRefType complex type.
The binary of an OCSP response token
This enum encapsulates constants defined by BouncyCastle and offers a method to parse an int without exception
This validator is used to verify integrity of the OCSP token signature
Typed sub-interface which allows collection of
OCSPToken(s).OCSP Signed Token which encapsulate BasicOCSPResp (BC).
The class is used to check OCSP token reference
Java class for OCSPValuesType complex type.
Java class for OCSPValuesType complex type.
Java class for OCSPValuesType complex type.
Filters the Official Journal Scheme information URI
This class checks if the String is an official registration identifier as
specified in ETSI TS 119 612 (ch 5.4.2)
This class if a basic skeleton that is able to retrieve needed CRL data from
the contained list.
Abstract class that helps to implement an OCSPSource with an already loaded list of BasicOCSPResp
Represents a revocation sources for a data obtained from an offline source (e.g.
Contains the used OIDs
Interface has joined attributes between OID and URI enums
The interface represent an OID-based property
The interface represent an OID-based property with a description
Contains a map between OIDs and their corresponding descriptions
Detects a change of the OJ URL change
Java class for OneTimeUseType complex type.
Deprecated.
since DSS 5.13.
Deprecated.
since DSS 5.13.
Online CRL repository.
Online OCSP repository.
Deprecated.
since DSS 5.13.
Deprecated.
since DSS 5.13.
Class encompassing a RFC 3161 TSA, accessed through HTTP(S) to a given URI
Contains utils for OpenDocument processing
Java class for OperationalProtectionType complex type.
Checks if the certificate's organization name is acceptable
Java class for OrganizationType complex type.
Checks if the certificate's organization unit is acceptable
Returns the original hash-based calculated
java.lang.String identifier for the given tokenWrapper class for XML orphan certificate
Wrapper for orphan certificate token extracted from a document (signature/timestamp)
Wrapper class for XML orphan revocation data
Wrapper for document embedded revocation data
Represents a wrapper class for an XML orphan token
Java class for OtherCertStatusRefsType complex type.
Java class for OtherCertStatusRefsType complex type.
Java class for OtherCertStatusRefsType complex type.
Java class for OtherCertStatusValuesType complex type.
Java class for OtherCertStatusValuesType complex type.
Java class for OtherCertStatusValuesType complex type.
Java class for OtherTimeStampType complex type.
Contains certificates for the url location
Builds
OtherTSLPointerThe class is used to convert
OtherTSLPointerType to OtherTSLPointerA predicate allowing to filter TSL pointers
Java class for OtherTSLPointersType complex type.
Java class for OtherTSLPointerType complex type.
Performs checks according to EN 319 142-1 v1.1.1
"6.3 PAdES baseline signatures"
CertificateSource that will retrieve the certificate from a PAdES Signature
Defines a list of common PAdES parameters between signature and timestamps
This class defines the DSS dictionary constants.
CRLSource that will retrieve the CRL from a PAdES Signature
DiagnosticDataBuilder for a PDF signature
The service is used to obtain a validation data for signatures/timestamps within a PDF file and
incorporate it on the LT-level of the document (create a DSS dictionary revision)
OCSPSource that retrieves the OCSPResp from a PAdES Signature
This class is used to accelerate signature creation process for PAdES.
PAdES implementation of the DocumentSignatureService
Implementation of AdvancedSignature for PAdES
Builds a signature identifier for a PAdES signature
Parameters to create/extend a PAdES signature
The class finds a signer data for a PAdESSignature /
PdfSignatureOrDocTimestampInfo instance
Parameters for a PAdES timestamp creation
Finds a scope for a PDF document timestamp
The service to timestamp a PDF
Extracts timestamps from a PAdES document
Utils for dealing with PAdES
This service contains methods for a PAdES signature creation using an external CMS provider.
This class is used to build a DiagnosticData for a PDF document validation,
including the validation result against the PDF/A specification
Contains results of TL/LOTL/pivot parsings
The parsing record DTO
Builds
ParsingCacheDTORepresents a parsing result record
Contains utils for LOTL/TL parsing
Represents a partial PDF signature scope, when a signature/timestamp's byte range does not cover the whole document
This Callback is created in order to retrieve the password from the user when accessing the Key Store.
Java class for PasswordType complex type.
Validates certificate in a past
Checks if the Past Certificate Validation result is acceptable
Checks if an acceptable revocation data is found
Performs the "5.6.2.4 Past signature validation building block"
Filters revocation data on a "Past Signature Validation" process
Verifies the validation result of a
PastSignatureValidationCertificateRevocationSelectorChecks if the past signature validation result is acceptable
Checks if timestamp's past validation is acceptable
Checks if an acceptable revocation data is present for a Past Signature Validation process
This class checks whether the input document is a compliant according to the determined PDF/A format
A group of constraints used for a PDF document validation against a PDF/A specification.
Validator used for PDF/A document validation
Loads a PDF/A validator for a PDF document
Contains relative information about a PDF annotation
Verifies if a PDF contains annotations overlapping
This class is used to check whether a determined PDF/A profile of the input document is acceptable.
The usage of this interface permit the user to choose the underlying PDF library use to created PDF signatures.
Util class used for a PDF validation against a PDF/A specification
This class represents a validation result against PDF/A specification
The PDFBox default implementation of
IPdfObjFactory
Creates an image for a text signature contentLoads the default PDFBox signature drawer
The PDFBox implementation of
PdfDocumentReaderContains font metrics for a PDFBox font
Maps Java Fonts and PDFBox fonts
The PDFBox native implementation of a Font
The PDFBox native implementation of
IPdfObjFactory
Creates text content in its native representationLoads the native PDFBox signature drawer
The PDFBox signature drawer
Loads a relevant signature drawer for a PDFBox implementation
Implementation of PDFSignatureService using PDFBox
Contains a set of utils for PdfBox implementation
Internal representation of a PDF document.
The signature scope represents a signed PDF byte range
Represents a source of CRL tokens extracted from a PDF's CMS
Represents a source of OCSP tokens extracted from a PDF's CMS
Defines a PDF revision containing a CMS data (signature/timestamp)
Represents a merged result of extracted certificate sources from /DSS revisions of a PDF document
Represents a merged result of extracted CRL binaries from different /DSS revisions of a PDF document
This class represents a merged result of all /DSS dictionaries' content extracted from a PDF document
Represents a merged result of extracted OCSP binaries from different /DSS revisions of a PDF document
The usage of this interface permit the user to choose the underlying PDF
library use to created PDF signatures.
This interface is used to encounter differences in pages between given PDF revisions.
This class represents an LT-level PDF revision containing a DSS dictionary
Signature timestamp representation
This class is only used in case of Document Timestamp (not signature-timestamp from CAdES/CMS)
Reads the PDF Document
Validation of PDF document.
Loads a relevant validator for a PDF document
Represents the DSS dictionary
The certificate source extracted from a DSS dictionary
The CRL source extracted from a DSS dictionary
The OCSP source extracted from a DSS dictionary
Represents a DataTransferObject containing the required parameters for computation of message-digest
of the prepared PDF signature revision (to be used for PAdES signature creation with an external CMS provider).
Represents a DataTransferObject containing the required parameters for creation of a PAdES signature by enveloping
the externally provided CMS signature within computed PDF signature revision.
A name which, in conjunction with Fields, indicates the set of fields that should be locked.
Parses a
PdfLockActionThis interface contains information about the occurred modifications in a PDF
The class contains necessary information about a PDF visual or structure modifications
Contains a collection of
ObjectModifications categorized by different groupsUsed to categorize
ObjectModifications to four different categories.This class is used to find and return all object modifications occurred between two PDF document revisions.
Specifies a modification origin kind
Parses a
PdfObjectModificationTypeRepresents a PDF object chain from a root to the current object
This predicate allows filtering of TSL pointers by a PDF MimeType
Verifies if a PDF contains difference between page amount in different revisions
This class is used to verify permissions of a PDF document and to check whether modifications are allowed
The usage of this interface permit the user to choose the underlying PDF library use to created PDF signatures.
An abstract class to find a PdfRevision scope
Extracts a timestamp from a single
PdfRevisionContains user-friendly methods to extract information from an
eu.europa.esig.dss.diagnostic.jaxb.XmlPDFRevisionDefines the executing PDF service modes
The default implementation of
PdfSignatureDictionaryThis class is used as a DTO containing cached data to be used to accelerate the signature creation process
Contains PDF signature dictionary information
This class verifies whether the corresponding signature dictionary is consistent across PDF revisions.
This comparator is used to sort signatures by ByteRange
Object of this interface represents a PDF Signature field
This class is used to verify the correctness of a new signature field placement within a PDF document
Represents a PDF revision for an electronic signature
The usage of this interface permits the user to choose the underlying PDF library used to create PDF signatures.
Specific class for a PDF TimestampToken
Builds an
eu.europa.esig.dss.spi.x509.tsp.TimestampTokenIdentifier
for a eu.europa.esig.dss.pades.validation.timestamp.PdfTimestampTokenA PDF implementation if
ValidationDataContainer containing a validation data
to be incorporated within a PDF documentVerifies if a PDF has visual difference between revisions
Represents a VRI dictionary
This class extracts special information from a VRI dictionary
Java class for PDPDescriptorType complex type.
PdsLocation::= SEQUENCE {
url IA5String,
language PrintableString (SIZE(2))} --ISO 639-1 language code
This class is used to convert PEM encoded binaries (CRL, Cert) to DER encoded representation
Java class for PGPDataType complex type.
Java class for anonymous complex type.
The identifier for a Pivot
Contains information about a pivot
Processes a pivot analysis
This class contains the pivot and its introduced signing certificates for the
LOTL or the next pivot
The Pivot scheme information URI filter predicate
PKCS11 token with callback
Class holding all PKCS#12 file access logic.
Implementation of
AIASource used to return a list of CA issuers for the provided CertificateToken,
available in the current PKI CertEntityRepository.An implementation of the CRLSource interface that provides methods to obtain Certificate Revocation Lists (CRLs)
for certificate revocation checks.
The PkiOCSPSource class implements the OCSPSource interface for obtaining revocation tokens.
Enumeration with the possible encoding for PKI encapsulation.
Represents an error state occurred within a PKI factory processing
This class is used to marshall/unmarshal Pki report
Utils class, containing a list of JAXB PKI properties
This class is used to provide an XSD schema for a PKI and templates
The PkiOCSPSource class implements the OCSPSource interface for obtaining revocation tokens.
A class that represents a PKI Time Stamp Protocol (TSP) source extending the KeyEntityTSPSource.
Contains Proof Of Existence for validation objects
The class compares two
POE instances, by its production time, origin and covered context
The class returns the following values:
-1 if the poe1 is preferred over poe2
0 of the POEs are equal
1 if the poe2 is preferred over poe1Checks if a POE exists before the control time
Checks if the POE exists
This check verifies if the set of POEs contains a POE for the certificate after the issuance date and
before the expiration date of that certificate.
5.6.2.3 POE extraction
5.6.2.3.1 Description
This building block derives POEs from a given time-stamp.
This class verifies if there is a POE for the revocation information of the signer certificate
at (or before) the revocation time of the CA certificate
Java class for POEProvisioningType complex type.
Java class for POEType complex type.
Java class for PoliciesListType complex type.
This class allows defining the signature policy.
4.2.1.11.
Checks if a certificate has a specific policy OID.
Objects based on this class are instantiated from trusted list or by SignedDocumentValidator for QCP and QCPPlus
Objects based on this class are instantiated from trusted list or by SignedDocumentValidator for QCP and QCPPlus
Java class for PolicyOrLegalnoticeType complex type.
Represents a valid_policy_tree node (leaf) as per RFC 5280
Java class for PostalAddressListType complex type.
Java class for PostalAddressType complex type.
This class allows to provide digest values without original document
Class that hold a simple password.
Performs pretty-print transformations on an XML signature
Java class for PrincipalAuthenticationMechanismType complex type.
Java class for PrivateKeyProtectionType complex type.
This interface allows to define how the validation process should be carried out.
Provides the executor for a validation process
This class manages the internal variables used in the process of creating of a signature and which allows to
accelerate the signature generation.
A utility class to load properties from a properties file named "pki.properties".
Checks if the certificate chain is trusted
Checks if the certificate's chain is trusted
Thrown when the document is protected (the requested operation is not permitted)
This alert is used to throw a
eu.europa.esig.dss.pades.exception.ProtectedDocumentException
when the corresponding check failsThis enum lists all network protocols that can be used during the signature creation or validation: OCSP, CRL, AIA, TSL...
This class is a DTO which contains the proxy configuration (HTTP and/or HTTPS)
This class is a DTO which contains proxy properties for HTTP or HTTPS
Java class for ProxyRestrictionType complex type.
The wrapper provides a user-friendly interface for dealing with
XmlPSD2QcInfoRepresents a PSD-2-QC type
Extracts pseudo String defined in X500 Attributes for the certificate
Extract pseudo information for German certificates
Checks if the certificate's pseudonym is acceptable
A strategy to extract a pseudo
String from a given certificateChecks if the certificate's pseudo usage is acceptable
Check if public key size is acceptable
Check if EncryptionAlgorithm is public key size is known
Java class for PublicKeyType complex type.
Defines limits of transactions for a given certificate (QcStatement)
The class provides a user-friendly API for dealing with
XmlQCEuLimitValueDefines QCStatements based on ETSI EN 319 412-5
This class contains an information extracted for a certificate equivalence condition
Java class for QcStatementInfoType complex type.
Java class for QcStatementListType complex type.
This objects represents a collection of properties extracted from an MRA condition
This class contains the QcStatement information based on ETSI EN 319 412-1/5 and ETSI TS 119 495
Java class for QcStatementType complex type.
A utils class to retrieve qc-statement from a certificate token
Defines QC Type OID identifiers
Defines QC type identifiers based on ETSI EN 319 412-5
This class is used to check whether the given certificate contains qualification identifiers
Checks whether the certificate has been for QSCD at signing time
Checks whether the certificate was for QSCD at validation time
Defines if the certificate is QSCD
Used to extract QSCD status
Used to obtain a
QSCDStrategy for the given certificate and a TrustServiceChecks of the certificate used to issue a timestamp is QTST
Filters TrustServices by TSA/QTST type
Java class for QualificationElementType complex type.
Extract the qualification status for a certificate
Gets a
QualificationStrategy to detect qualification strategy for a certificateJava class for QualificationsType complex type.
Checks whether the certificate is qualified at certificate issuance time
Checks whether the certificate is qualified at signing time
Checks whether the certificate is qualified at validation time
Java class for QualifierEquivalenceListType complex type.
Java class for QualifierEquivalenceType complex type.
Java class for QualifiersType complex type.
Java class for QualifierType complex type.
Java class for QualifyingPropertiesReferenceType complex type.
Java class for QualifyingPropertiesReferenceType complex type.
Java class for QualifyingPropertiesReferenceType complex type.
Java class for QualifyingPropertiesType complex type.
Java class for QualifyingPropertiesType complex type.
Java class for QualifyingPropertiesType complex type.
Reads the relevant cache by the given key
The class prevents reading of other records but the one with defined key
Creates, validates references and processes defined transformations
Checks if the referenced data is found
Checks if only hashes of only provided archive data objects are present at the first level of the reduced hash tree
Checks if the referenced data is intact
This class is used to generate a deterministic reference identifier
Java class for ReferenceInfoType complex type.
Java class for anonymous complex type.
Defines possible output types of a transform/reference
Contains methods for processing
eu.europa.esig.dss.xades.reference.DSSReferenceChecks if the references are not ambiguous (only one document is retrieved)
Java class for ReferenceType complex type.
Java class for ReferenceType complex type.
This class is used to store individual reference validations.
This class is used to verify the validity of the
eu.europa.esig.dss.xades.reference.DSSReferences setupWrapper for a
XmlRelatedCertificate objectWrapper for a
XmlRelatedRevocation objectThis class verifies whether MRA enacted trusted services are present
Java class for RelayStateType complex type.
The common parameters used for a b-level signature creation
DTO containing certificateToken binaries
Contains utils to convert
CertificateToken to RemoteCertificate and vice versaThe webService for a Certificate validation
DTO for a
Color objectThis class is used to transport a DSSDocument with SOAP and/or REST
Contains utils to convert
DSSDocument to RemoteDocument and vice versaThis interface
RemoteDocumentSignatureService provides operations for the signature creation and for its
extension.The remote signature service implementation
The remote validation service
This service is used for developing a REST/SOAP API for CMS signature generation
conformant to PAdES signature format.
WebService for CMS signature creation compatible for PAdES signature creation
(enveloping within /Contents of a PDF signature revision).
The DTO representing a Key entry
This interface
RemoteMultipleDocumentsSignatureService provides operations for the signature creation.WebService for multiple document signing
This service is used for developing a REST/SOAP API for PAdES signing using an external CMS signature provider.
WebService for PAdES signature creation using an external CMS signature provider
Defines signature field box for a visual PDF signature/timestamp creation
The parameters to be used for a PDF visual signature creation
The signature parameters for text image creation
The parameters for a signature creation
The interface used for a remote signing
Default implementation of a remote signing service
Parameters for a timestamp creation
The remote service representing a timestamping service
DTO used to define customizable parameters for a Trusted List signing
NOTE : other basic parameters are pre-configured for a Trusted List signing
Service to be used for a simplified straight-forward signing of a Trusted List
Implementation of a Trusted List signing service
This class is a container for all reports generated by the signature validation
process: diagnostic data, detailed report and simple report.
Abstract repository AIA source
Allows storing and retrieving of revocation data to/from a repository
(e.g.
Java class for RequestAbstractType complex type.
Java class for RequestedAttributeType complex type.
Java class for RequestedAuthnContextType complex type.
Java class for RequestType complex type.
Gets the absolute path for the defined class
This class represents a ResponderId extracted from an OCSP response
Java class for ResponderIDType complex type.
Java class for ResponseType complex type.
Java class for ResponseType complex type.
This REST interface provides operations for the validation of certificate.
The default implementation of
RestCertificateValidationServiceThis REST interface provides operations for the signature creation and for its extension.
REST implementation of the remote signature service
This REST interface provides operations for the validation of signature.
REST implementation of the validation service
This REST interface provides a possibility of CMS signature creation suitable for PAdES signing
REST implementation of the remote CMS signature generation suitable for PAdES signature creation
This REST interface provides operations for the signature creation and for its extension.
REST implementation of the remote multiple signature service
This REST interface provides a possibility of PAdES signature creation using an external CMS signature provider
REST implementation of the remote PAdES signature with external CMS service
Java class for RestrictedLengthType complex type.
Java class for RestrictedPasswordType complex type.
The server signing service for REST webService
The REST implementation of server signing
This REST interface provides operations for the timestamp creation.
The REST implementation of the timestamping service
This REST interface provides operations for the XML Trusted List signing.
REST implementation of the remote trusted list signing service
Java class for RetrievalMethodType complex type.
This interface represents a revocation data
Checks if the revocation is acceptable and can be used
Verifies if the RAC result is valid
5.2.8 Signature acceptance validation (SAV) This building block covers any
additional verification to be performed on the signature itself or on the
attributes of the signature ETSI EN 319 132-1
Performs basic validation of a revocation data
Checks if the revocation's certHash matches
Checks if the revocation's certHash is present
Represents a certificate source present into a revocation token
Checks if the revocation is consistent and can be used for the given certificate
Group of constraints on the revocation data
Verifies the result of a basic revocation validation process
Checks if a revocation data is available for the certificate
Checks if the revocation data is fresh
Checks if the revocation data is fresh against its ThisUpdate and NextUpdate time interval
Checks if the revocation status is known
This class allows retrieving of Revocation data from CRL or OCSP sources, based on the defined strategy
NOTE: The implemented object does not require setting of OCSP/CRL/RevocationDataVerifier sources
on instantiation from the user.
This interface is used to initialize a new
RevocationDataLoadingStrategy.This class is used to verify acceptance of a revocation data for the following validation process,
whether the revocation data has been extracted from a document or obtained from an online source.
Checks if the revocation date is after best-signature-time
5.2.5 Revocation freshness checker This building block checks that a given
revocation status information is "fresh" at a given validation time.
Checks if the revocation freshness checker's result is valid
Contains information about the performed revocation freshness check
Checks if the revocation access points are present in the certificate
RevocationInfoArchival ::= SEQUENCE {
crl [0] EXPLICIT SEQUENCE of CRLs, OPTIONAL
ocsp [1] EXPLICIT SEQUENCE of OCSP Responses, OPTIONAL
otherRevInfo [2] EXPLICIT SEQUENCE of OtherRevInfo, OPTIONAL
}
This class verifies if the issuance date of the revocation status information is before control time
Checks if the revocation data is available for the revocation issuer's certificate
This class checks if the provided certificate token is trusted
This class verifies if a validation time is in the validity range of the certificate of the issuer of
the revocation information
List of possible revocation data origins
Parses the
RevocationOriginThis enum is used to get String value of CRLReason
The CRLReason enumeration.
Parses the
RevocationReasonThis class represents an extracted revocation reference from a signature
An identifier for a revocation reference
List of possible revocation reference origins
Parses the
RevocationRefOriginRepresents a revocation data wrapper
This method verifies whether the ResponderId property of an OCSP response matches
the found certificate used to sign the OCSP response.
This interface allows revocation data retrieving for a given certificate.
This interface provides a method to retrieve a revocation data with a list of alternative URL access points
Java class for RevocationStatusInformationType complex type.
Represents a revocation data token
An identifier for a revocation token
This class is used to validate a revocation reference against a revocation token
Defines a type of revocation data response
Parses the
RevocationTypeJava class for RevocationValuesType complex type.
Java class for RevocationValuesType complex type.
Java class for RevocationValuesType complex type.
Revocation wrapper containing common revocation information
Java class for RoleDescriptorType complex type.
Object Identifier for roles of payment service providers
RoleOfPspOid ::= OBJECT IDENTIFIER -- Object Identifier arc for roles of
payment service providers -- defined in the present document etsi-psd2-roles
OBJECT IDENTIFIER ::={ itu-t(0) identified-organization(4) etsi(0)
psd2(19495) id-roles(1) }
Java class for RSAKeyValueType complex type.
Converts
TimeConstraint from a policy into the corresponding long time valueJava class for SACertIDListType complex type.
Java class for SACertIDType complex type.
Java class for SACommitmentTypeIndicationType complex type.
Java class for SAContactInfoType complex type.
Java class for SACounterSignatureType complex type.
Java class for SACRLIDType complex type.
Java class for SADataObjectFormatType complex type.
Java class for SADSSType complex type.
Java class for SAFilterType complex type.
Java class for SAMessageDigestType complex type.
Contains a SAML namespace definition
SAML Assertion Utils
Java class for SANameType complex type.
Customized Initialization of Santuario.
Java class for SAOCSPIDType complex type.
Java class for SAOneSignerRoleType complex type.
Java class for SAReasonType complex type.
Java class for SARevIDListType complex type.
Java class for SASignatureProductionPlaceType complex type.
Java class for SASignerRoleType complex type.
Java class for SASigningTimeType complex type.
Java class for SASigPolicyIdentifierType complex type.
Java class for SASubFilterType complex type.
Java class for SATimestampType complex type.
Checks if an acceptable revocation data exists
Java class for SAVRIType complex type.
Builds a
SchemaFactoryPredicate to filter scheme information by language
The predicate is used to filter certain TLs by the accepted country codes
Java class for ScopingType complex type.
Java class for SecretKeyProtectionType complex type.
The default implementation of
ZipContainerHandler, providing
utilities to prevent a denial of service attacks, such as zip-bombingDefault implementation of a builder,
building a new instance of
eu.europa.esig.dss.asic.common.SecureContainerHandlerThis class produces nonce values based on a SecureRandom.
The class is used to provide a
SecureRandom to be used for encrypted PDF signing/extensionJava class for SecurityAuditType complex type.
This exception is used to catch and re-throw an exception caused by a security feature/attribute definition
Checks if the certificate in question is not present in the OCSP's certificate chain
ETSI EN 319 412-1 V1.1.1
-- Semantics identifiers
id-etsi-qcs-semantics-identifiers OBJECT IDENTIFIER ::= { itu-t(0)
identified-organization(4) etsi(0) id-cert-profile(194121) 1 }
The interface contains the common methods for counter signature parameters
The interface defines signature parameters
The common interface for timestamp parameters
Checks if the certificate's serial number is present
Allowed services are :
cert type T1 = ASi T1
cert type T1 = ASi T2 + QCForXXX T2 (overrule)
This class is used to filter trusted services by country code(s).
This filter is used to filter TrustServices that have been valid at the given time
This class filters Trusted Services with MRA enacted value
This class fitlers Trusted Services by the related MRA equivalence starting date
This class is used to filter trusted services by the TL Url.
Checks if the Trusted Service is consistent
Java class for ServiceDigitalIdentityListType complex type.
This class represents a wrapper for TrustServiceEquivalenceInformation element from MRA scheme
Builder class used to build a
ServiceEquivalence objectJava class for ServiceHistoryInstanceType complex type.
Java class for ServiceHistoryType complex type.
Implementation of IPdfObjFactory which looks for in the registered services and uses the first found instance.
Contains qualification statuses for TrustServices
Java class for ServiceSupplyPointsType complex type.
Contains information extracted from TrustServiceTSLType element
Service type identifier (ETSI TS 119 612 V2.1.1)
It specifies the identifier of the service type.
This element indicates that the Principal has been
authenticated by a challenge-response protocol utilizing shared secret
keys and symmetric cryptography.
This Enumeration defines a list of algorithm described in ETSI TS 119 182-1
for incorporation of 'sigD' dictionary (see 5.2.8 The sigD header parameter)
Verifies a signature according to given permissions for the signature field in /SigFieldLock
This class defines a list of restrictions imposed to a PDF document modifications
by the current signature/field
5.2.8 Signature acceptance validation (SAV) This building block covers any
additional verification to be performed on the signature itself or on the
attributes of the signature ETSI EN 319 132-1
Checks if the signature validation result is acceptable
Verifies if the format Signature Acceptance Validation process as per clause 5.2.8 succeeded
Supported signature algorithms.
Defines a child of "signed-signature-properties" or "unsigned-signature-properties" element
Identifies uniquely an unsigned attribute of a signature
Java class for SignatureAttributesType complex type.
Builds a XAdES signature of the defined format
The advanced signature contains a list of certificate that was needed to validate the signature.
Group of constraints for the signature(s) (signed/unsigned properties, coverage,...)
Contains a result if a signature cryptographic validation
A signature reference element references a specific electronic signature.
Interface which is responsible to draw the visible signature
Factory of
SignatureDrawerClass SignatureECDSARIPEMD160
Extends the level of AdES signature of a document.
Interface to build a
SignatureFieldBox
The interface is used for a SignatureField position validation on a signature/timestamp/empty field creationDefines visual signature field appearance parameters
Builds a
SignatureFieldDimensionAndPosition for visual signature creationParameters which allow to create a new signature field in a PDF document
Different signature forms.
5.2.2 Format Checking
This building block shall check that the signature to validate is conformant
to the applicable base format (e.g.
Parses the
SignatureLevelThe DSS Signature identifier
Builds a deterministic Signature Identifier for the produced reports
Java class for SignatureIdentifierType complex type.
Parameters for a visible signature creation
This class allows to custom text generation in the PAdES visible signature
Checks if the signature value is intact
Checks if the signature is intact for the given token, with a difference
that provides the token's Id to the additional information
Checks signature integrity among a provided list of signing certificate candidates
Signature profiles (form+level) handled by the SD-DSS framework.
Java class for SignatureMethodType complex type.
Checks if the signature can be identifier
Packaging method of the signature
A helper interface to hide complexity of a configuration for particular usages
and simplify the signature creation
Represents the values of a SignaturePolicy
Checks if signature policy identifier is present and the hash matched
Checks if signature policy identifier is present and the policy is identified
Checks if the signature policy identifier is acceptable
Java class for SignaturePolicyIdentifierType complex type.
Java class for SignaturePolicyIdentifierType complex type.
Java class for SignaturePolicyIdentifierType complex type.
Java class for SignaturePolicyIdType complex type.
Java class for SignaturePolicyIdType complex type.
Java class for SignaturePolicyIdType complex type.
The class is used to retrieve a policy by its SignaturePolicyIdentifier
Represents the SignaturePolicyStore
Builds a XAdES SignaturePolicyStore
Checks if a SignaturePolicyStore is present
Defines available signature policy types
Contains results of a
SignaturePolicy validationPerforms a validation of a SignaturePolicy
Loads a relevant
SignaturePolicyValidator for the provided SignaturePolicyChecks if the signature policy identifier is a zero-hash
This class represents the information concerning the signature production place.
Java class for SignatureProductionPlaceType complex type.
Java class for SignatureProductionPlaceType complex type.
Java class for SignatureProductionPlaceType complex type.
XAdES signature creation profile
Defined a "signed-signature-element" or "unsigned-signature-element" of a signature
Java class for SignaturePropertiesType complex type.
Java class for SignaturePropertyType complex type.
Defines available signature qualification types
Performs the qualification verification for a signature
Parses the
SignatureQualificationJava class for SignatureQualityType complex type.
Java class for SignatureReferenceType complex type.
This class is used to verify if the signature can be created according to the provided requirements
in a signature parameters instance
Class SignatureECDSARIPEMD160
This class describes the scope of the signature
Builds a list of
SignatureScopes from an AdvancedSignatureDefines the used SignatureScope types
Parses the
SignatureScopeTypeThe signature scope with the performed transforms
Defines a signature scope covering a signature
Contains signatures concerned by an occurred event and corresponding information about them
Checks if a signature-time-stamp attribute is present
Builds an identifier for a time-stamp token encapsulated within a signature
The timestamp source of a signature
Connection through available API to the QSCD (SmartCard, MSCAPI, PKCS#12)
Type of API supported by the application
Java class for SignatureType complex type.
During the validation of a signature, the software retrieves different X509 artifacts like Certificate, CRL and OCSP
Response.
Java class for SignatureValidationPolicyType complex type.
Defines SignatureValidationProcessID
Java class for SignatureValidationProcessType complex type.
Java class for SignatureValidationReportType complex type.
Java class for SignatureValidatorType complex type.
Defines result of signature validation for a token
The SignatureValue
This class is used to verify whether the given
SignatureValue is valid and
corresponds to the target SignatureAlgorithm.Represents a SignatureValue DTO
Java class for SignatureValueType complex type.
Contains user-friendly methods to extract information from an
XmlSignature
SignedAssertion ::= SEQUENCE {
signedAssertionID SIGNED-ASSERTION.&id,
signedAssertion SIGNED-ASSERTION.&Assertion OPTIONAL
}
SIGNED-ASSERTION::= CLASS {
&id OBJECT IDENTIFIER UNIQUE,
&Assertion OPTIONAL }
WITH SYNTAX {
SIGNED-ASSERTION-ID &id
[SIGNED-ASSERTION-TYPE &Assertion] }
SignedAssertions ::= SEQUENCE OF SignedAssertion
Group of constraints on the signed attributes/properties
Java class for SignedDataObjectPropertiesType complex type.
Java class for SignedDataObjectPropertiesType complex type.
Java class for SignedDataObjectPropertiesType complex type.
The common class for DiagnosticData creation from a signed/timestamped document
Validates a signed document.
Checks if signed file are present in an ASiC container
Java class for SignedInfoType complex type.
Java class for SignedPropertiesType complex type.
Java class for SignedPropertiesType complex type.
Java class for SignedPropertiesType complex type.
Java class for SignedSignaturePropertiesType complex type.
Java class for SignedSignaturePropertiesType complex type.
Java class for SignedSignaturePropertiesType complex type.
Basic support of ETSI EN 319 122-1 V1.1.1 chapter 5.2.6.1
Based on org.bouncycastle.asn1.esf.SignerAttribute
Note : signedAssertions are not supported
Quote ETSI : The definition of specific signedAssertions is outside of the scope of the present document
Wraps the
XmlSignerDataRepresents an ASN.1 SignerId DTO
Checks if only one SignatureInformationStore is present for a PAdES signature
Java class for SignerInformationType complex type.
This class represents the information concerning
the signature production place.
Checks if the signer's location attribute is present
This class represents the signer roles extracted from the signature.
Java class for SignerRoleType complex type.
Java class for SignerRoleType complex type.
Java class for SignerRoleType complex type.
Java class for SignersDocumentType complex type.
Enum to define the more line text horizontal alignment
Enum to define where to add a signer text inside a signature field relatively
to an image
Enum to define image from text vertical alignment in connection with the
image
Checks if the signing certificate reference is present
Verifies a DigestAlgorithm used for a signing-certificate-reference
Verifies if the X.509 Certificate Validation as per clause 5.2.6 did not return
INDETERMINATE/REVOKED_NO_POE indication
Checks if a signing certificate is identified
This class verifies whether a used
eu.europa.esig.dss.enumerations.DigestAlgorithm
for a signing-certificate-reference signing-attribute is reliable and acceptable at validation timeChecks if a signing certificate reference is present and valid
(all signingCertificate references refer the signature certificate chain)
Java class for SigningMethodType complex type.
Defines the performing signature operation
Checks if the claimed signing time is present
Checks if a claimed signing time is present
Represents a DataTransferObject containing the required parameters for creation of a CMS signature (CMSSignedData)
suitable for PAdES signing (to be enveloped within PDF signature revision).
This class is a DTO to transfer required objects to execute signDocument method
It's only possible to transfer an object by POST and REST.
This class is a DTO to transfer required objects to execute signDocument method
It's only possible to transfer an object by POST and REST.
DTO to be used for the method signDocument(..) for Trusted List signing.
How to sign using MS-CAPI.
Java class for SigPolicyQualifiersListType complex type.
Java class for SigPolicyQualifiersListType complex type.
Java class for SigPolicyQualifiersListType complex type.
Builds a signature qualification result based on the given parameters
Java class for SigReferenceType complex type.
Implementation of
AlertHandler which does nothingThe class is used to process an alert silently (do nothing)
The class to process a
Status alert silentlyThis class provides a simple way to define custom names for file entries created within an ASiC with CAdES container,
by using set and get methods.
This class provides a simple way to define custom names for file entries created within an ASiC with XAdES container,
by using set and get methods.
A SimpleCertificateReport holder to fetch values from a JAXB SimpleCertificateReport.
Contains methods to generate Certificate SimpleReport
Contains cached certificate simple report schemas and templates
A SimpleReport holder to fetch values from a JAXB SimpleReport.
This class builds a SimpleReport XmlDom from the diagnostic data and detailed validation report.
Contains methods to generate SimpleReport
Builds a SimpleReport for a certificate validation
Contains cached simple report schemas and templates
This class is a representation of a DSS (Document Security Store) Dictionary embedded in a PDF file.
The validation web service allow to validate the provided certificate.
The default implementation of
SoapCertificateValidationServiceInterface for the Contract of the Signature Web Service.
SOAP implementation of the remote signature service
The validation web service allow to validate the signature inside a signed file.
SOAP implementation of the validation service
SOAP envelop utils
This SOAP interface provides a possibility of CMS signature creation suitable for PAdES signing
SOAP implementation of the remote CMS signature generation suitable for PAdES signature creation
Interface for the Contract of the Signature Web Service.
SOAP implementation of the remote multiple signature service
This SOAP interface provides a possibility of PAdES signature creation using an external CMS signature provider
SOAP implementation of the remote PAdES signature with external CMS service
The server signing service for SOAP webService
The SOAP implementation of server signing
The SOAP web service allows timestamp creation.
The SOAP implementation of the timestamping service
SOAP interface provides services for XML Trusted List signing
SOAP implementation for XML Trusted List signing service
This is a special transform to be used exclusively within a xades:SignaturePolicyId
to define special digest computation rules.
Represents a "SpDocSpecification" element
Java class for SPKIDataType complex type.
Java class for SPSSODescriptorType complex type.
Java class for SPUserNoticeType complex type.
Java class for SPUserNoticeType complex type.
Java class for SPUserNoticeType complex type.
Represents a stateless query to be made to an SQL database
Contains result of a record extraction from an SQL database
A select query containing logic to extract records from a
ResultSetThe data loader which includes server webpage certificates to the response context
Use the method getCertificates(url) to extract the data
Java class for SSODescriptorType complex type.
Java class for StatementAbstractType complex type.
Contains information about the occurred event
Typed
Alert with a Status objectJava class for StatusCodeType complex type.
Java class for StatusDetailType complex type.
The class is used to detect a custom event associated with token(s) processing
Java class for StatusResponseType complex type.
Java class for StatusType complex type.
Checks if the structural validation of the signature succeeds
Defines the validation sub context
Sub indication values
Source ETSI EN 319 102-1
Parses the
SubIndication4.2.1.6.
Java class for SubjectConfirmationDataType complex type.
Java class for SubjectConfirmationType complex type.
4.2.1.2.
Java class for SubjectLocalityType complex type.
Java class for SubjectQueryAbstractType complex type.
Java class for SubjectType complex type.
The sub X509 certificate validation
Initializes the SunPKCS11 Provider
Java class for SupportingInformationType complex type.
Java class for anonymous complex type.
Checks if the certificate's surname is acceptable
Defines a behaviour for a trusted certificate source synchronization
Synchronizes all caches for the given key
Java class for TakenOverByType complex type.
Java class for TechnicalProtectionBaseType complex type.
This resources factory stores temporary documents to a unique file within filesystem.
This class creates a
TempFileResourcesHandlerBuilder storing temporary objects to temporary filesystem documentsJava class for TerminateType complex type.
Utility class to fit arbitrary text into a text box.
The result of a text fitting operation.
iText drawer used for visual signature creation with text data only
This enumeration defines a set of possibilities for text wrapping within a signature field with
a fixed width and height for a PDF visual signature creation
Handler which throws an
AlertExceptionTime based check : follows the specified level behavior if the checked element is over the time limit
Valid in a specific time interval.
Immutable list of time-dependent values, with the latest value first.
5.2.8 Signature acceptance validation (SAV) This building block covers any
additional verification to be performed on the signature itself or on the
attributes of the signature ETSI EN 319 132-1
Performs Time-stamp validation building block as per clause 5.4
This class contains only a binary representation of a timestamp
A timestamp CMS certificate source
Checks if the timestamp's order is coherent
Group of constraints on the timestamps
Used for a detached timestamping service
CRLSource that retrieves information embedded to a
TimeStampTokenImplementation of DataLoader using HttpClient to request a timestamp server.
Checks if the claimed signing time + timestamp's delay is after the best-signature-time
DTO to transfer a TimestampToken over REST/SOAP webServices
Defines possible object types to be timestamped
Parses the
TimestampedObjectTypeThis class stocks the timestamped reference, which is composed of: - the
timestamp reference category
TimestampReferenceCategory; - object id
in the case where the reference apply to the signature.This class performs "5.2.2 Format Checking" building block execution for a document or container timestamp
This class verifies if the generation time of a content timestamp is not after the certificate's expiration time
Checks if the generation time of a content timestamp is not after the expiration time
of cryptographic constraints concerned by the failure
This class checks if the generation time of a content timestamp is not after
the revocation time of a signature's signing certificate
Builds an
eu.europa.esig.dss.spi.x509.tsp.TimestampTokenIdentifier
for the provided eu.europa.esig.dss.spi.x509.tsp.TimestampToken.This class represents XAdES Include tag in case of IndividualDataObjectsTimeStamp
DTO to represent timestamped references for a XAdES IndividualDataObjectsTimeStamp
Builds message-imprint digest to be timestamped
Checks message-imprint validity for a timestamp token
This class checks a timestamp's message-imprint and returns an Id of the provided token
Request DTO to timestamps a list of documents
OCSPSource that retrieves information embedded to a
TimeStampTokenThis class is a DTO that contains a set of parameters needed for a single document timestamping
It's only possible to transfer an object by POST and REST.
This class represents the parameters provided when generating specific timestamps in a signature, such as an
AllDataObjectsTimestamp or an
IndividualDataObjectsTimestamp.
POE provided by a time-stamp token
Defines possible timestamp qualification types
Verifies timestamp's qualification at the given time
The class performs a qualification verification for a timestamp
Parses the
TimestampQualificationThe DTO representing a response of a timestamp service
This interface is used to find a signature scope for a timestamp
The interface for handling validation data extracted from timestamps
This class is used to perform validation for all available timestamps,
as well as to extract POE information for valid entries
SignedToken containing a TimeStamp.
Compares
TimestampTokensContains utils to convert
TimestampDTO to TimestampToken and vice versaIdentifier for a timestamp token
The class used to compare production time of
TimeStampTokens
Class checks the production time of timestamps and their covered data
The method compare() returns
-1 if the timeStampTokenOne was created before timeStampTokenTwo
0 if TimeStampTokens were created in the same
1 if the timeStampTokenOne was created after timeStampTokenTwoType of timestamp
Java class for TimeStampType complex type.
Java class for TimeStampType complex type.
Java class for TimeStampType complex type.
Java class for anonymous complex type.
Parses the
TimestampTypeChecks whether the validation of timestamp with a Past Signature Validation process succeed.
The interface to be used for timestamp validation
Compares
TimestampValidatorsProvides a user-friendly interface for dealing with JAXB
XmlTimestamp objectJava class for TimeSyncTokenType complex type.
Java class for TimeUnit.
The class to process events on TL
Runs the job for a TL analysis
Forces an update of a TL validation
Verifies if there is at least one valid T-level timestamp
Detects an expiration of a TrustedList
Verifies whether the Trusted List is fresh
Computes summary for a single Trusted List processing result
Checks if the Trusted List is defined with MRA
Verifies whether the Trusted List is not expired
Detects an error on TL parsing
Parsed TL result
Parses a TL and returns
TLParsingResultThis class provides utils for creation of common
Predicates used
for TLSource/LOTLSource configuration.Detects if an error in a TL validation occurred
Represent a Trusted List source
Builds a list of
TLSourcesThis class is used to perform validation of a Trusted List
The main class performing the TL/LOTL download / parsing / validation tasks
The class to process alerts on TLValidationJob
Computes summary for TLValidationJob
This class allows to validate TL or LOTL.
Checks whether the version of the Trusted List is acceptable
Checks whether signature of Trusted List is valid
Represents the ToBeSigned data
The DTO used to transfer ToBeSigned data
This is the base class for the different types of tokens (certificate, OCSP,
CRL, Timestamp) used in the process of signature validation.
Represents a source of certificates embedded in a token (signature, timestamp, ocsp response)
This class is used to compare and sort tokens by their DSS identifier
Defines a representation of tokens in the DiagnosticData (as binaries or digests)
This class is used to obtain a unique id for Token
Generates a String identifier for a given token (e.g.
This class is used to select an issuer of the provided
TokenInterface providing user-friendly API for dealing with JAXB objects from a DiagnosticData
Contains tokens concerned by an occurred event and corresponding information about them
Java class for TokenType complex type.
Predicate which filter official registration identifiers
Builds a
TransformerFactoryBuilds a user-friendly description for the provided 'ds:Transforms' element
Java class for TransformsType complex type.
Java class for TransformsType complex type.
Java class for TransformType complex type.
Checks if the ServiceDigitalIdentifier of the TrustService matches the TrustService name
Loads trusted certificate source
Performs marshalling/unmarshalling operation for a TrustedList XML
The identifier for a TL
Checks whether a Trusted List has been reached for the given certificate chain
This class allows injection of trusted certificates from Trusted Lists
Creates Signature parameters for a Trusted List creation
NOTE: the same instance of SignatureParameters shall be used on calls
DocumentSignatureService.getDataToSign(...) and DocumentSignatureService.signDocument(...)Trusted Lists Utils
Deprecated.
since DSS 5.13.
Deprecated.
since DSS 5.13.
Contains the Trust properties for certificates
This class is a DTO representation for a TSL service
Builds
TrustServiceChecks if a corresponding Trust Service found valid at control time
Contain util method to check validity of the
TrustServiceWrapperChecks whether the TrustService is valid
The class converts
TSPServiceType to TrustServiceThis class is used to extract MRA equivalence scheme for a Trusted List
Java class for TrustServiceEquivalenceHistoryInstanceType complex type.
Java class for TrustServiceEquivalenceHistoryType complex type.
Java class for TrustServiceEquivalenceInformationType complex type.
Used to filter acceptable Trust Services to be used during qualification determination process
The predicate allowing TrustServices filtering
This class is a DTO representation for a trust service provider
Builds
TrustServiceProviderFilters TrustServicesProviders by TSP name
The class is used to convert
TSPType to TrustServiceProviderJava class for TrustServiceProviderListType complex type.
TrustServiceProvider filtering predicate
Verifies status of a trusted service created after eIDAS
Verifies whether type qualifiers and additional service information are consistent for pre-eIDAS trusted service
Verifies whether the applicable qualifiers are known and can be processed by the application
Checks if a trust service corresponding to the certificate type has been found
Creates a
TrustServiceFilterETSI TS 119 612 V2.2.1
Defines information for a TrustService
Builds
TrustServiceStatusAndInformationExtensionsChecks if the certificate's usage time in the validity range of a TrustService with the accepted status
Verifies status of a trusted service created before eIDAS
Java class for TrustServiceTSLQualificationExtensionEquivalenceListType complex type.
Java class for TrustServiceTSLQualificationExtensionNameType complex type.
Java class for TrustServiceTSLStatusEquivalenceListType complex type.
Java class for TrustServiceTSLStatusEquivalenceType complex type.
Java class for TrustServiceTSLStatusList complex type.
Java class for TrustServiceTSLTypeEquivalenceListType complex type.
Java class for TrustServiceTSLTypeListType complex type.
Java class for TrustServiceTSLTypeType complex type.
Checks if the certificate's usage time in the validity range of a TrustService with the accepted type
Wraps an extracted information from a Trusted Service
Java class for TrustStatusListType complex type.
Checks if the TSTInfo.tsa field is present
Checks if the TSTInfo.tsa field value matches the timestamp's issuer distinguishing name
Checks if the TSTInfo.tsa field value matches the timestamp's issuer distinguishing name
Java class for TSLSchemeInformationType complex type.
Defines a TSLType element of a Trusted List
Defines common TSLType values supported by the implementation
Java class for TSPInformationType complex type.
Java class for TSPServiceInformationType complex type.
Java class for TSPServicesListType complex type.
Java class for TSPServiceType complex type.
Abstraction of a Time Stamping authority which delivers RFC 3161 Time Stamp Responses containing tokens, from Time
Stamp Requests.
Java class for TSPType complex type.
Java class for TypedDataType complex type.
Defines a TypeOfProof
Allows TSL filtering by TSLType
Strategy to extract certificate usage type for a certificate
Creates a
TypeStrategyThis class checks whether a document contains undefined object modifications
Checks if the only one reference to the signing certificate reference is present
This class is used to select a TrustService that is unambiguous and does not have conflicts with other TrustServices.
Group of constraints on the unsigned attributes/properties
Java class for UnsignedDataObjectPropertiesType complex type.
Java class for UnsignedDataObjectPropertiesType complex type.
Java class for UnsignedDataObjectPropertiesType complex type.
Java class for UnsignedPropertiesType complex type.
Java class for UnsignedPropertiesType complex type.
Java class for UnsignedPropertiesType complex type.
Java class for UnsignedSignaturePropertiesType complex type.
Java class for UnsignedSignaturePropertiesType complex type.
Java class for UnsignedSignaturePropertiesType complex type.
Defines an enumeration containing a URI
Parser for different uri-based values
This class represents a user credentials object used to authenticate to a remote host
Creates an identifier for a given token by the template:
TOKEN-CommonCertName-CreationDate-id(optional)
Examples:
SIGNATURE-JohnConner-20201015-2045
CERTIFICATE-CryptoSign-20151014-1425
This class may be used to define a User Notice signature policy qualifier.
Contains common utils
This class stores validation information for processed files
The validation record DTO
Builds
ValidationCacheDTOJava class for ValidationConstraintsEvaluationReportType complex type.
This interface allows the implementation of the validators for: certificates, timestamps and revocation data.
5.2.4 Validation context initialization This building block initializes the
validation constraints (chain constraints, cryptographic constraints,
signature elements constraints) and parameters (X.509 validation parameters
including trust anchors, certificate validation data) that will be used to
validate the signature.
Verifies if the Validation Context Initialization as per clause 5.2.4 succeeded
Contains a validation data to be included into the signature
Contains a
ValidationData for a list of signatures/timestampsChecks if a validation-data-refs-only-time-stamp attribute is present
Checks if a validation-data-time-stamp attribute is present
Java class for ValidationDataType complex type.
Validation result record
Builds a
TLValidationJobSummaryThe target validation level as per EN 319 102-1
NOTE: the validation process "stops" processing on the chosen level
Java class for ValidationObjectListType complex type.
Java class for ValidationObjectRepresentationType complex type.
Java class for ValidationObjectType complex type.
This class encapsulates the constraint file that controls the policy to be used during the validation process.
Used to read an XML validation policy
Contains cached the
JAXBContext and Schema for an XML validation policy5.6 Validation process for Signatures with Archival Data
5.5 Validation process for Signatures with Time and Signatures with Long-Term Validation Data
This class validates a timestamp with a provided archival data (POE)
Contains utils for a validation process
Java class for ValidationReportDataType complex type.
Performs marshalling/unmarshalling operation for an ETSI Validation report
Java class for ValidationReportType complex type.
Represents an ETSI Validation Report data source
ETSI Validation Report Utils
The validation task result
Java class for ValidationStatusType complex type.
Defines the used validation time types
Verifies if the result of X509CertificateValidation is not indication INDETERMINATE with the sub-indication
OUT_OF_BOUNDS_NO_POE or OUT_OF_BOUNDS_NOT_REVOKED
Java class for ValidationTimeInfoType complex type.
Parses the
ValidationTimePerforms Validation Time Sliding process
Filters revocation data on a "Validation Time Sliding" process
Checks if the Validation Time Sliding result is valid
Configures a provided
ValidatorThis predicate is used to filter keys based on the validity range of the certificate
Checks if an acceptable Trust Service for a qualified certificate issuance found
ETSI EN 319 412-1: "5.2.2 Validity Assured - Short Term"
This extension indicates that the validity of the certificate is assured because the certificate is a "short-term
certificate".
Value check : follows the specified level behavior if the checked element is not equals to the specified value
Visual signature horizontal position on the pdf page
Visual signature vertical position on the pdf page
Contains information about a visual SignatureField appearance
Rotation support
Java class for VOReferenceType complex type.
Builds a unique identifier for a time-stamp encapsulated within a VRI dictionary
The DTO representing the SOAP validation response result
Represents a validation response DTO, containing the reports
Builds an X500Name for a certificate to be generated
This class contain utility methods to extract String representation of a
X500Principal distinguishing nameBuilds a
eu.europa.esig.dss.model.x509.CertificateToken5.2.6 X.509 certificate validation
This building block validates the signing certificate at current time.
Verifies if the X.509 Certificate Validation as per clause 5.2.6 succeeded
The java.security.cert.X509CRL extension of
CRLValidityJava class for X509DataType complex type.
Java class for X509IssuerSerialType complex type.
Provides certificates to be extracted by a URL
Contains attributes of a certificate's distinguished name
The XAdES 1.1.1 attributes
The XAdES 1.1.1 elements
XAdES 1.1.1 paths
XAdES 1.1.1 schema utils
The XAdES 1.2.2 attributes
The XAdES 1.2.2 elements
XAdES 1.2.2 paths
XAdES 1.2.2 schema utils
The XAdES 1.3.2 attributes
Defines elements for a XAdES 1.3.2 schema
XAdES 1.3.2 paths
The XAdES 1.4.1 attributes
The XAdES 1.4.1 elements
XAdES 1.3.2 schema utils
Represents a XAdES attribute
Represents an identifier of a XAdES Attribute
Performs checks according to EN 319 132-1 v1.1.1
"6.3 Requirements on XAdES signature's elements, qualifying properties and services"
Builds a XAdES signature
Utils for a XAdES CertificateRef extraction
This class provides the mechanism to retrieve certificates contained in a XAdES signature.
Parameters for a XAdES counter-signature creation
Retrieves CRL values from an XAdES (-XL) signature.
Defines a XAdES element
Holds level A aspects of XAdES
Contains B level baseline profile for XAdES signature.
LT profile of XAdES signature
Holds level LTA aspects of XAdES
-T profile of XAdES signature
Contains XAdES-C profile aspects
This class represents the implementation of XAdES level -X extension.
XL profile of XAdES signature
Defines a list of used XAdES namespaces
Retrieves OCSP values from an XAdES (XL/LT) signature.
Contains a list of useful XAdES XPaths
This class is used to accelerate signature creation process for XAdES.
Contains information about a XAdES reference validation
Utils for a XAdES revocation refs extraction
XAdES implementation of DocumentSignatureService
Parse an XAdES signature structure.
This class implements all the necessary mechanisms to build each form of the XML signature.
Builds a DSS identifier for a XAdES signature
Verifies integrity of a XAdES signature
Defines SignatureParameters to deal with XAdES signature creation/extension
Enumeration defining ways to embed a signature
Represents a signature policy extracted from a XAdES (XML) signature
Java class for XAdESSignaturePtrType complex type.
Performs operations in order to find all signed data for a XAdES Signature
Java class for XAdESSignaturesType complex type.
Contains util methods for dealing with XAdES
Builds
XAdESSignedDataObjectPropertiesXAdES signed properties
Builds a message-imprint for XAdES timestamps
Parameters for a XAdES timestamp creation
Finds a timestamp scope for a XAdES encapsulated timestamps
The timestamp source for a XAdES signature
Java class for XAdESTimeStampType complex type.
Unsigned XAdES signature properties
Common XAdES schema utils
Java class for AbstractToken complex type.
Ths Xml Evidence Record representation of ArchiveTimeStampChain element
Ths Xml Evidence Record representation of ArchiveTimeStamp element
Java class for AuthorityInformationAccess complex type.
Java class for AuthorityKeyIdentifier complex type.
Java class for BasicBuildingBlocks complex type.
Java class for BasicConstraints complex type.
Java class for BasicSignature complex type.
Java class for BlockType.
Java class for ByteRange complex type.
Contains a set of method for canonicalization of
org.w3c.dom.NodeJava class for CC complex type.
Java class for Certificate complex type.
Java class for Certificate complex type.
Java class for Certificate complex type.
Java class for CertificateChain complex type.
Java class for CertificateChain complex type.
Java class for CertificateContentEquivalence complex type.
Java class for CertificateExtension complex type.
Java class for CertificatePolicies complex type.
Java class for anonymous complex type.
Java class for CertificatePolicy complex type.
Java class for CertificateRef complex type.
Java class for CertificateRevocation complex type.
Contains configuration of a single certificate token
Java class for anonymous complex type.
Java class for anonymous complex type.
Java class for ChainItem complex type.
Java class for CommitmentTypeIndication complex type.
Java class for Conclusion complex type.
Java class for Constraint complex type.
Java class for ConstraintsConclusion complex type.
Java class for ConstraintsConclusionWithControlTime complex type.
Java class for ConstraintsConclusionWithProofOfExistence complex type.
Java class for ContainerInfo complex type.
Java class for CRLDistributionPoints complex type.
Java class for CRS complex type.
Java class for CryptographicAlgorithm complex type.
Java class for CryptographicValidation complex type.
Java class for CV complex type.
Defines a date value.
Builds the objects for dealing with XML
Java class for DetailedReport complex type.
Java class for Details complex type.
Java class for Details complex type.
Java class for DiagnosticData complex type.
Java class for DigestAlgoAndValue complex type.
Java class for DigestAlgoAndValues complex type.
Java class for DigestMatcher complex type.
Java class for DistinguishedName complex type.
Java class for anonymous complex type.
Validator of XML Signed document
Loads the relevant validator for an XML document validation
Defines the download result
Downloads the document and returns a
XmlDownloadResultRepresents a collection of attributes defined in https://www.w3.org/TR/xmldsig-core1/
XMLDSig elements
Defines the namespace corresponding to the
<a href="https://www.w3.org/TR/xmldsig-core/xmldsig-core-schema.xsd">XMLDSig schema</a>Contains a list of "http://www.w3.org/2000/09/xmldsig#" xpaths
XMLDSIG schema utils
XML element signature scope
An element for unambiguous definition of TRUE values.
Java class for EncapsulationType.
XML Enc Utils
Represents a identifier uniquely identifying a certificate within the PKI.
Represents a collection of attributes defined in XMLERS XSD schema
XMLERS elements
Defines a list of used XMLERS namespaces
XMLERS Paths
Java class for EvidenceRecord complex type.
Java class for EvidenceRecord complex type.
XML Evidence Record implementations (RFC 6283)
Java class for EvidenceRecord complex type.
Performs marshalling/unmarshalling operation for a XML Evidence Records XML
Represents an element of Xml Evidence Record
This class is used to parse an XML Evidence Record
Java class for EvidenceRecords complex type.
Verifies ArchiveTimeStampSequence for an XML Evidence Record
This class is used to extract incorporated time-stamps from an XML Evidence Record
Common XML Evidence Records schema utils
Class for validation of an XML Evidence Record (RFC 6283)
Loads the relevant validator for an XML Evidence Record document validation
Java class for ExtendedKeyUsages complex type.
Java class for anonymous complex type.
Java class for FC complex type.
Java class for FoundCertificate complex type.
Java class for FoundCertificates complex type.
Java class for FoundEvidenceRecord complex type.
Java class for FoundRevocation complex type.
Java class for FoundRevocations complex type.
Java class for FoundTimestamp complex type.
Defines a full XML document signature scope
Java class for GeneralName complex type.
Java class for GeneralSubtree complex type.
Java class for IdPkixOcspNoCheck complex type.
Java class for InhibitAnyPolicy complex type.
Java class for ISC complex type.
Java class for IssuerSerial complex type.
Configuration of a certificate's key pair.
Java class for KeyUsages complex type.
Java class for anonymous complex type.
Java class for LangAndValue complex type.
Java class for ManifestFile complex type.
Java class for Message complex type.
Java class for Message complex type.
Java class for Message complex type.
Java class for Modification complex type.
Java class for ModificationDetection complex type.
Java class for MRACertificateMapping complex type.
Java class for MRATrustServiceMapping complex type.
Java class for NameConstraints complex type.
Java class for ObjectModification complex type.
Java class for ObjectModifications complex type.
Java class for OID complex type.
Java class for OriginalThirdCountryQcStatementsMapping complex type.
Java class for OriginalThirdCountryTrustServiceMapping complex type.
Java class for OrphanCertificate complex type.
Java class for OrphanCertificateToken complex type.
Java class for OrphanRevocation complex type.
Java class for OrphanRevocationToken complex type.
Java class for OrphanToken complex type.
Java class for anonymous complex type.
This predicate allows filtering of TSL pointers by an XML MimeType
Java class for PCV complex type.
Java class for PDFAInfo complex type.
Java class for PDFAInfo complex type.
Java class for PDFLockDictionary complex type.
Java class for PDFRevision complex type.
Java class for PDFSignatureDictionary complex type.
Java class for PDFSignatureField complex type.
The root element of the PKI factory
Java class for Policy complex type.
The class is used to validate a
SignaturePolicy and build a XmlPolicyJava class for PolicyConstraints complex type.
Java class for PolicyDigestAlgoAndValue complex type.
This class represents an extension of
Policy class allowing addition
of a custom list of DSSTransforms to build the ds:Transforms element
NOTE: The digest should be computed by the user and set through the
setDigestValue(digestValue) method
Use DSSXMLUtils.applyTransforms(document, transforms) in order obtain
policy binaries after transformsJava class for ProofOfExistence complex type.
Java class for PSD2QcInfo complex type.
Java class for PSV complex type.
Java class for anonymous complex type.
Java class for QcCompliance complex type.
Java class for QcEuLimitValue complex type.
Java class for QcSSCD complex type.
Java class for anonymous complex type.
Java class for QcStatements complex type.
This class is used to build a
XmlQcStatements object and enveloped objectsJava class for anonymous complex type.
Java class for Qualifier complex type.
Java class for RAC complex type.
Java class for RelatedCertificate complex type.
Java class for RelatedRevocation complex type.
Java class for Revocation complex type.
Java class for Revocation complex type.
Java class for RevocationBasicValidation complex type.
Java class for RevocationInformation complex type.
Java class for RevocationRef complex type.
Contains revocation status information for a revoked certificate.
Java class for RFC complex type.
Java class for RoleOfPSP complex type.
Defines a root XML document signature scope
Java class for SAV complex type.
Java class for Semantic complex type.
Java class for Semantic complex type.
Ths Xml Evidence Record representation of Sequence element
Java class for Signature complex type.
Java class for Signature complex type.
Java class for Signature complex type.
Java class for SignatureDigestReference complex type.
Java class for SignatureLevel complex type.
Java class for SignaturePolicyStore complex type.
Validates an XML Signature Policy
Java class for SignatureProductionPlace complex type.
Java class for SignatureScope complex type.
Java class for SignatureScope complex type.
Java class for SignerData complex type.
Java class for anonymous complex type.
Java class for SignerInfo complex type.
Java class for SignerRole complex type.
Java class for SigningCertificate complex type.
Java class for SimpleCertificateReport complex type.
Java class for SimpleReport complex type.
Java class for SPDocSpecification complex type.
Java class for Status.
Java class for StructuralValidation complex type.
Java class for Subject complex type.
Java class for SubjectAlternativeNames complex type.
Java class for SubjectKeyIdentifier complex type.
Java class for SubXCV complex type.
Java class for Timestamp complex type.
Java class for Timestamp complex type.
Java class for Timestamp complex type.
Java class for TimestampedObject complex type.
Java class for TimestampLevel complex type.
Java class for Timestamps complex type.
Java class for TLAnalysis complex type.
Java class for Token complex type.
Java class for TrustAnchor complex type.
Java class for TrustAnchor complex type.
Java class for TrustAnchors complex type.
Java class for TrustedList complex type.
Java class for TrustService complex type.
Java class for TrustServiceEquivalenceInformation complex type.
Java class for TrustServiceProvider complex type.
This class is used to build a
XmlTrustServiceProvider object instanceJava class for TSAGeneralName complex type.
Java class for UserNotice complex type.
Java class for ValAssuredShortTermCertificate complex type.
Java class for ValidationCertificateQualification complex type.
Java class for anonymous complex type.
Java class for ValidationPolicy complex type.
Java class for ValidationPolicy complex type.
Java class for ValidationProcessArchivalData complex type.
Java class for ValidationProcessArchivalDataTimestamp complex type.
Java class for ValidationProcessBasicSignature complex type.
Java class for ValidationProcessBasicTimestamp complex type.
Java class for ValidationProcessEvidenceRecord complex type.
Java class for ValidationProcessLongTermData complex type.
Java class for ValidationSignatureQualification complex type.
Java class for ValidationTimestampQualification complex type.
Java class for ValidationTimestampQualificationAtTime complex type.
Java class for VCI complex type.
Java class for VTS complex type.
Java class for XCV complex type.
Enveloped signature transformation by Filter 2.0.
Represents Filter 2.0 transform
The simple enveloped signature transform.
Builds an XPath expression
This class creates signatures that are being enveloped into the parent document
based on the defined (if any) XPath location.
The XPath transform
XPointer signature scope
Abstract class for XSD Utils
An exception to be thrown in case of XSD validation error(s)
The XSLT transform
Performs validation of a SignaturePolicy with zero-sigPolicyHash
See EN 319 122-1 "5.2.9 The signature-policy-identifier attribute and the SigPolicyQualifierInfo type"
Serializes
boolean as 0 or 1.Checks if the zip comment is present
The interface provides utilities for data extraction/creation of ZIP-archives
Builds a new instance of
ZipContainerHandlerThe class is used for processing (reading and creation) of ZIP archives
See zipContainerHandler