001/* 002 * Copyright 2021 Emmanuel Bourg 003 * 004 * Licensed under the Apache License, Version 2.0 (the "License"); 005 * you may not use this file except in compliance with the License. 006 * You may obtain a copy of the License at 007 * 008 * http://www.apache.org/licenses/LICENSE-2.0 009 * 010 * Unless required by applicable law or agreed to in writing, software 011 * distributed under the License is distributed on an "AS IS" BASIS, 012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 013 * See the License for the specific language governing permissions and 014 * limitations under the License. 015 */ 016 017package net.jsign.jca; 018 019import java.security.AccessController; 020import java.security.PrivilegedAction; 021import java.security.Provider; 022 023import net.jsign.DigestAlgorithm; 024 025/** 026 * JCA Provider using a signing service. 027 * 028 * <p>Example:</p> 029 * <pre> 030 * Provider provider = new SigningServiceJcaProvider(new AzureKeyVaultSigningService(vault, token)); 031 * KeyStore keystore = KeyStore.getInstance("AZUREKEYVAULT", provider); 032 * </pre> 033 * 034 * @since 4.0 035 */ 036public class SigningServiceJcaProvider extends Provider { 037 038 public SigningServiceJcaProvider(SigningService service) { 039 super(service.getName(), 1.0, service.getName() + " signing service provider"); 040 041 AccessController.doPrivileged((PrivilegedAction<Object>) () -> { 042 putService(new ProviderService(this, "KeyStore", service.getName().toUpperCase(), SigningServiceKeyStore.class.getName(), () -> new SigningServiceKeyStore(service))); 043 044 for (String alg : new String[]{"RSA", "ECDSA"}) { 045 for (DigestAlgorithm digest : DigestAlgorithm.values()) { 046 if (digest != DigestAlgorithm.MD5) { 047 String algorithm = digest.name() + "with" + alg; 048 putService(new ProviderService(this, "Signature", algorithm, SigningServiceSignature.class.getName(), () -> new SigningServiceSignature(algorithm))); 049 } 050 } 051 } 052 return null; 053 }); 054 } 055}