Generate Keystore with Java Program

import java.io.FileOutputStream;
import java.io.IOException;
import java.math.BigInteger;
import java.security.InvalidKeyException;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.NoSuchProviderException;
import java.security.SecureRandom;
import java.security.Security;
import java.security.SignatureException;
import java.security.KeyStore.PrivateKeyEntry;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.Date;

import org.bouncycastle.jce.X509Principal;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.x509.X509V3CertificateGenerator;

public class GenerateKeyStore {

public static void main(String[] args) throws NoSuchAlgorithmException,
NoSuchProviderException, InvalidKeyException, SecurityException,
SignatureException, IOException, KeyStoreException,
CertificateException {
System.out.println("Keystore generation...");
Security.addProvider(new BouncyCastleProvider());
String name = "Username";
KeyPairGenerator keyGen = KeyPairGenerator.getInstance("RSA");
SecureRandom random = SecureRandom.getInstance("SHA1PRNG", "SUN");
keyGen.initialize(1024, random);
KeyPair pair = keyGen.generateKeyPair();
X509V3CertificateGenerator v3CertGen = new X509V3CertificateGenerator();
int serial = new SecureRandom().nextInt();
v3CertGen.setSerialNumber(BigInteger.valueOf(serial < 0 ? -1 * serial
: serial));
v3CertGen.setIssuerDN(new X509Principal("CN=" + name
+ ", OU=None, O=None L=None, C=None"));
v3CertGen.setNotBefore(new Date(System.currentTimeMillis() - 1000L * 60
* 60 * 24 * 30));
v3CertGen.setNotAfter(new Date(System.currentTimeMillis() + 1000L * 60
* 60 * 24 * 365 * 10));
v3CertGen.setSubjectDN(new X509Principal("CN=" + name
+ ", OU=None, O=None L=None, C=None"));
v3CertGen.setPublicKey(pair.getPublic());
v3CertGen.setSignatureAlgorithm("MD5WithRSAEncryption");
X509Certificate PKCertificate = v3CertGen.generateX509Certificate(pair
.getPrivate());
FileOutputStream fos = new FileOutputStream(
"C:\\" + name + "_Cert.csr");
fos.write(PKCertificate.getEncoded());
fos.close();
KeyStore ks = KeyStore.getInstance(KeyStore.getDefaultType());
char[] password = "Mohsin".toCharArray();
ks.load(null, password);
PrivateKeyEntry entry = new PrivateKeyEntry(pair.getPrivate(),
new java.security.cert.Certificate[] { PKCertificate });
ks.setEntry(name, entry, new KeyStore.PasswordProtection(password));
fos = new FileOutputStream("C:\\" + name + "_keystore.pfx");
ks.store(fos, password);
fos.close();
}
}

Comments

Post a Comment

Popular posts from this blog

Edit/Modify existing PDF using Java(iText)

import java.io.FileOutputStream; import java.io.IOException; import com.itextpdf.text.DocumentException; import com.itextpdf.text.pdf.BaseFont; import com.itextpdf.text.pdf.PdfContentByte; import com.itextpdf.text.pdf.PdfReader; import com.itextpdf.text.pdf.PdfStamper; public class EditExistingPDF { public static void main(String[] args) throws IOException, DocumentException { PdfReader reader = new PdfReader("C:\\signed.pdf"); // input PDF PdfStamper stamper = new PdfStamper(reader,new FileOutputStream( "C:\\test.pdf")); // output PDF BaseFont bf = BaseFont.createFont(BaseFont.HELVETICA, BaseFont.CP1252, BaseFont.NOT_EMBEDDED); // set font // loop on pages (1-based) for (int i = 1; i // get object for writing over the existing content; // you can also use getUnderContent for writing in the bottom // layer PdfContentByte over = stamper.getOverContent(i); // write text over.beginText(); over.setFontAndSize(bf, 10); // set font and size over....
Read more

Verify Digital Signature in PDF using Java(iText) and cacerts

Jars Files: itext-2.1.7.jar itextpdf-5.4.2.jar bcprov-ext-jdk14-1.47.jar bcprov-1.39.jar ---------------------------------------------------------------- import java.io.FileNotFoundException; import java.io.IOException; import java.security.KeyStore; import java.security.KeyStoreException; import java.security.NoSuchAlgorithmException; import java.security.SignatureException; import java.security.cert.CertificateException; import java.util.ArrayList; import java.util.Calendar; import java.util.Enumeration; import com.lowagie.text.pdf.AcroFields; import com.lowagie.text.pdf.PdfPKCS7; import com.lowagie.text.pdf.PdfReader; public class VerifySignature { public static void main(String[] args) throws KeyStoreException, NoSuchAlgorithmException, CertificateException, FileNotFoundException, IOException, SignatureException { //loads all the keystore imported in cacerts. To load your certificate from cacerts, first it needs to be imported using k...
Read more

Steps to create SOAP Web service using Eclipse

Image
Step 1 : Go to File -> New -> Dynamic Web Project Step 2 : Enter Project name as “SOAPWebSErvice” as created in below screenshot. Step 3 : Create below packages under src folder: a. com.test.controller b. com.test.model Step 4 : Add Employee.java under package - com.test.model Add EmployeeController.java under package - com.test.controller. Employee.java package com.test.model; public class Employee { private String id; private String name; public String getId() { return id; } public String getName() { return name; } public void setId(String id) { this.id = id; } public void setName(String name) { this.name = name; } } ------------------------------------------------------------------------------------------------------------------ EmployeeController.java package com.test.controller; import com.test.model.Employee; public class EmployeeController { public Employee employee; public Employee setEmployee(...
Read more