Enum CertificateBuilder.ExtendedKeyUsage
java.lang.Object
java.lang.Enum<CertificateBuilder.ExtendedKeyUsage>
io.netty.pkitesting.CertificateBuilder.ExtendedKeyUsage
- All Implemented Interfaces:
Serializable, Comparable<CertificateBuilder.ExtendedKeyUsage>
- Enclosing class:
CertificateBuilder
public static enum CertificateBuilder.ExtendedKeyUsage
extends Enum<CertificateBuilder.ExtendedKeyUsage>
The extended key usage field specify what the certificate and key is allowed to be used for.
A certificate can have many key usages. For instance, some certificates support both client and server usage for TLS connections.
The key usage must be checked by the opposing peer receiving the certificate, and reject certificates that do not permit the given usage.
For instance, if a TLS client connects to a server that presents a certificate without the server-authentication usage, then the client must reject the server certificate as invalid.
-
Enum Constant Summary
Enum ConstantsEnum ConstantDescriptionThe certificate can be used for Kerberos client authentication.The certificate can be used for Microsoft smartcard logins.The certificate can be used on the client-side of a TLS connection.The certificate can be used for code signing.The certificate can be used for protecting email.The certificate can be used to sign OCSP replies.The certificate can be used on the server-side of a TLS connection.The certificate can be used for time-stamping. -
Method Summary
Modifier and TypeMethodDescriptiongetOid()Returns the enum constant of this type with the specified name.static CertificateBuilder.ExtendedKeyUsage[]values()Returns an array containing the constants of this enum type, in the order they are declared.
-
Enum Constant Details
-
PKIX_KP_SERVER_AUTH
The certificate can be used on the server-side of a TLS connection. -
PKIX_KP_CLIENT_AUTH
The certificate can be used on the client-side of a TLS connection. -
PKIX_KP_CODE_SIGNING
The certificate can be used for code signing. -
PKIX_KP_EMAIL_PROTECTION
The certificate can be used for protecting email. -
PKIX_KP_TIME_STAMPING
The certificate can be used for time-stamping. -
PKIX_KP_OCSP_SIGNING
The certificate can be used to sign OCSP replies. -
KERBEROS_KEY_PURPOSE_CLIENT_AUTH
The certificate can be used for Kerberos client authentication. -
MICROSOFT_SMARTCARD_LOGIN
The certificate can be used for Microsoft smartcard logins.
-
-
Method Details
-
values
Returns an array containing the constants of this enum type, in the order they are declared.- Returns:
- an array containing the constants of this enum type, in the order they are declared
-
valueOf
Returns the enum constant of this type with the specified name. The string must match exactly an identifier used to declare an enum constant in this type. (Extraneous whitespace characters are not permitted.)- Parameters:
name- the name of the enum constant to be returned.- Returns:
- the enum constant with the specified name
- Throws:
IllegalArgumentException- if this enum type has no constant with the specified nameNullPointerException- if the argument is null
-
getOid
-