CryptoUtil.java

/**
 * <a href="http://www.openolat.org">
 * OpenOLAT - Online Learning and Training</a><br>
 * <p>
 * Licensed under the Apache License, Version 2.0 (the "License"); <br>
 * you may not use this file except in compliance with the License.<br>
 * You may obtain a copy of the License at the
 * <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache homepage</a>
 * <p>
 * Unless required by applicable law or agreed to in writing,<br>
 * software distributed under the License is distributed on an "AS IS" BASIS, <br>
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. <br>
 * See the License for the specific language governing permissions and <br>
 * limitations under the License.
 * <p>
 * Initial code contributed and copyrighted by<br>
 * frentix GmbH, http://www.frentix.com
 * <p>
 */
package org.olat.core.util.crypto;

import java.io.File;
import java.io.FileInputStream;
import java.security.Key;
import java.security.KeyStore;
import java.security.PrivateKey;
import java.security.cert.Certificate;
import java.security.cert.X509Certificate;
import java.util.Enumeration;

/**
 * 
 * Initial date: 16 févr. 2017<br>
 * @author srosse, stephane.rosse@frentix.com, http://www.frentix.com
 *
 */
public class CryptoUtil {

	/**
	 * 
	 * @param certificate
	 * @return
	 * @throws Exception
	 */
	public static X509CertificatePrivateKeyPair getX509CertificatePrivateKeyPairPfx(File certificate, String password) throws Exception {
		KeyStore keyStore;
		if(certificate.getName().equals("cacerts")) {
			keyStore = KeyStore.getInstance("JKS");
		} else  {
			keyStore = KeyStore.getInstance("PKCS12");
		}
		keyStore.load(new FileInputStream(certificate), password.toCharArray());

		PrivateKey privateKey = null;
        X509Certificate x509Cert = null;
		
		Enumeration<String> aliases = keyStore.aliases();
		while (aliases.hasMoreElements()) {
			String alias = aliases.nextElement();
			Certificate cert = keyStore.getCertificate(alias);
			if (cert instanceof X509Certificate) {
				x509Cert = (X509Certificate)cert;
				Key key = keyStore.getKey(alias, null);
				if(key instanceof PrivateKey) {
					privateKey = (PrivateKey)key;
				}
				break;
			}
		}

		return new X509CertificatePrivateKeyPair(x509Cert, privateKey);
	}
}