如何以编程方式将 pkcs12 文件导入 Java 密钥库
[英]How to programmatically import a pkcs12 file to a Java keystore
问题描述
I have pkcs12 file (keypair.p12 ).
我有 pkcs12 文件(keypair.p12)。 With keytool I can import (merge) this with a Java keystore:使用 keytool 我可以使用 Java 密钥库导入(合并)它:
keytool -importkeystore \
-deststorepass [changeit] -destkeypass [changeit] -destkeystore server.keystore \
-srckeystore server.p12 -srcstoretype PKCS12 -srcstorepass some-password \
-alias [some-alias]
How to do the same programmatically?如何以编程方式做同样的事情?
2 个解决方案
解决方案1
0 2021-03-01 13:25:45
You can look up the source as it is Open Source for instance here .您可以在此处查找源代码,因为它是开源的。 There is a method that should show you what is needed to be done:有一种方法可以告诉您需要做什么:
private void doImportKeyStore() throws Exception {
if (alias != null) {
doImportKeyStoreSingle(loadSourceKeyStore(), alias);
} else {
if (dest != null || srckeyPass != null) {
throw new Exception(rb.getString(
"if.alias.not.specified.destalias.and.srckeypass.must.not.be.specified"));
}
doImportKeyStoreAll(loadSourceKeyStore());
}
/*
* Information display rule of -importkeystore
* 1. inside single, shows failure
* 2. inside all, shows sucess
* 3. inside all where there is a failure, prompt for continue
* 4. at the final of all, shows summary
*/
}
解决方案2
0 2021-05-20 23:30:21
The key to importing a.p12 certificate file is that it's already a "keystore".导入 a.p12 证书文件的关键是它已经是一个“密钥库”。 This means that it can be loaded as "pkcs12" keystore and then copied to another "jks" keystore.这意味着它可以作为“pkcs12”密钥库加载,然后复制到另一个“jks”密钥库。
public void importP12Certificate(String filePathP12, String passwordP12, String filePathJks, String passwordJKS) throws Exception {
KeyStore p12Store = loadKeystore(filePathP12, passwordP12, "pkcs12");
KeyStore jksStore = loadKeystore(filePathJks, passwordJKS, "jks");
Enumeration aliases = p12Store.aliases();
while (aliases.hasMoreElements()) {
String alias = (String)aliases.nextElement();
if (p12Store.isKeyEntry(alias)) {
System.out.println("Adding key for alias " + alias);
Key key = p12Store.getKey(alias, passwordP12.toCharArray());
Certificate[] chain = p12Store.getCertificateChain(alias);
jksStore.setKeyEntry(alias, key, passwordJKS.toCharArray(), chain);
}
}
storeKeystore(jksStore,filePathJks,passwordJKS);
}
private KeyStore loadKeystore(String keyStoreFile, String keystorePassword, String keystoreType) throws IOException, KeyStoreException, CertificateException, NoSuchAlgorithmException {
File file = new File(keyStoreFile);
InputStream inputStream = new FileInputStream(file);
KeyStore keystore = null;
if(keystore == null){
keystore = KeyStore.getInstance(KeyStore.getDefaultType());
}else{
keystore = KeyStore.getInstance(keystoreType);
}
keystore.load(inputStream, keystorePassword.toCharArray());
return keystore;
}
private void storeKeystore(KeyStore keystore, String keyStoreFile, String keystorePassword) throws IOException, CertificateException, NoSuchAlgorithmException, KeyStoreException {
File file = new File(keyStoreFile);
FileOutputStream out = new FileOutputStream(file);
keystore.store(out, keystorePassword.toCharArray());
out.close();
}
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
如何将PKCS12证书导入Java密钥库? - How do I import a PKCS12 certificate into a java keystore?
如何从 PKCS12 文件为 Java 创建密钥库和信任库? - How to create keystore and truststore for Java from a PKCS12 file?
如何在Java中以编程方式解析PKCS12文件? - How to parse a PKCS12 file programmatically in Java?
将 PEM 转换为 PKCS12 并导入到 Java 密钥库 - Converting PEM to PKCS12 and import to Java Keystore
如何以编程方式将java jks密钥库转换为pkcs12证书? - how to convert java jks keystore to pkcs12 certificate programatically?
Java KeyStore- PKCS12的处理 - Java KeyStore-Handling of PKCS12
如何创建一个 PKCS12 密钥库? - How to create a create a PKCS12 keystore?
如何以编程方式从pkcs12文件导出公钥 - How to export public key from pkcs12 file programmatically
确定密钥库类型是 pkcs12 还是 jks(以编程方式) - Determine if keystore type is pkcs12 or jks (programmatically)
在 Java 密钥库中导入 pkcs12 (.p12) 客户端证书文件时,CertificateChain 为空 - CertificateChain is null when importing pkcs12 (.p12) client-certificate file in Java Keystore
相关标签