TimeStampCoherenceVerifier.java example

/*
 * XAdES4j - A Java library for generation and verification of XAdES signatures.
 * Copyright (C) 2010 Luis Goncalves.
 *
 * XAdES4j is free software; you can redistribute it and/or modify it under
 * the terms of the GNU Lesser General Public License as published by the Free
 * Software Foundation; either version 3 of the License, or any later version.
 *
 * XAdES4j is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
 * FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more
 * details.
 *
 * You should have received a copy of the GNU Lesser General Public License along
 * with XAdES4j. If not, see <http://www.gnu.org/licenses/>.
 */
package xades4j.verification;

import java.util.Collection;
import xades4j.properties.AllDataObjsTimeStampProperty;
import xades4j.properties.IndividualDataObjsTimeStampProperty;
import xades4j.properties.QualifyingProperty;
import xades4j.properties.SignatureTimeStampProperty;
import xades4j.utils.DataGetter;

/**
 *
 * @author Luís
 */
class TimeStampCoherenceVerifier implements CustomSignatureVerifier
{
    @Override
    public void verify(
            XAdESVerificationResult verificationData,
            QualifyingPropertyVerificationContext ctx) throws TimeStampCoherenceException
    {
        DataGetter<QualifyingProperty> propsGetter = verificationData.getPropertiesFilter();
        Collection<SignatureTimeStampProperty> sigTimeStamps = propsGetter.getOfType(SignatureTimeStampProperty.class);
        Collection<AllDataObjsTimeStampProperty> allDataObjsTimeStamps = propsGetter.getOfType(AllDataObjsTimeStampProperty.class);
        Collection<IndividualDataObjsTimeStampProperty> indivDataObjsTimeStamps = propsGetter.getOfType(IndividualDataObjsTimeStampProperty.class);

        // XAdES G.2.2.16.1.3 Checking SignatureTimeStamp:
        // "Check for coherence in the values of the times indicated in the time-stamp
        // tokens. They have to be posterior to the times indicated in the time-stamp
        // tokens contained within AllDataObjectsTimeStamp or IndividualDataObjectsTimeStamp,
        // if present."
        //
        // I use Date.before() because the time-stamps may be equal (same second).

        for (SignatureTimeStampProperty sigTs : sigTimeStamps)
        {

            for (IndividualDataObjsTimeStampProperty indivDObjTs : indivDataObjsTimeStamps)
            {
                if (sigTs.getTime().before(indivDObjTs.getTime()))
                    throw new TimeStampCoherenceException(SignatureTimeStampProperty.PROP_NAME, "time-stamp not posterior to data objects time-stamps");
            }

            for (AllDataObjsTimeStampProperty allDObjTs : allDataObjsTimeStamps)
            {
                if (sigTs.getTime().before(allDObjTs.getTime()))
                    throw new TimeStampCoherenceException(SignatureTimeStampProperty.PROP_NAME, "time-stamp not posterior to data objects time-stamps");
            }
        }

    }
}