SSLUtil (REST API SDK 1.2.9 API)

java.lang.Object
- com.paypal.base.SSLUtil

public abstract class SSLUtil
extends Object

Class SSLUtil

Constructor Summary

Constructors
Constructor and Description

SSLUtil()

Constructors
Constructor and Description
`SSLUtil()`

Method Summary

Methods
Modifier and Type	Method and Description
`static long`	`crc32(String data)` Generates a CRC 32 Value of String passed
`static InputStream`	`downloadCertificateFromPath(String urlPath)` Downloads Certificate from URL
`static Collection<X509Certificate>`	`getCertificateFromStream(InputStream stream)` Generate Collection of Certificate from Input Stream
`static SSLContext`	`getSSLContext(KeyManager[] keymanagers)` Returns a SSLContext
`static SSLContext`	`setupClientSSL(String certPath, String certPassword)` Create a SSLContext with provided client certificate
`static boolean`	`validateCertificateChain(Collection<X509Certificate> clientCerts, Collection<X509Certificate> trustCerts, String authType)` Performs Certificate Chain Validation on provided certificates.
`static Boolean`	`validateData(Collection<X509Certificate> clientCerts, String algo, String actualSignatureEncoded, String expectedSignature, String requestBody, String webhookId)` Validates Webhook Signature validation based on https://developer.paypal.com/docs/integration/direct/rest-webhooks-overview/#event-signature Returns true if signature is valid

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - SSLUtil
```
public SSLUtil()
```
- Method Detail
  - getSSLContext
```
public static SSLContext getSSLContext(KeyManager[] keymanagers)
                                throws SSLConfigurationException
```
    Returns a SSLContext
    
    Parameters:
    keymanagers - KeyManager[] The key managers
    
    Returns:
    SSLContext with proper client certificate
    
    Throws:
    
    SSLConfigurationException
  - setupClientSSL
```
public static SSLContext setupClientSSL(String certPath,
                        String certPassword)
                                 throws SSLConfigurationException
```
    Create a SSLContext with provided client certificate
    
    Parameters:
    certPath -
    certPassword -
    
    Returns:
    SSLContext
    
    Throws:
    
    SSLConfigurationException
  - validateCertificateChain
```
public static boolean validateCertificateChain(Collection<X509Certificate> clientCerts,
                               Collection<X509Certificate> trustCerts,
                               String authType)
                                        throws PayPalRESTException
```
    Performs Certificate Chain Validation on provided certificates. The method verifies if the client certificates provided are generated from root certificates trusted by application.
    
    Parameters:
    clientCerts - Collection of X509Certificates provided in request
    trustCerts - Collection of X509Certificates trusted by application
    authType - Auth Type for Certificate
    
    Returns:
    true if client and server are chained together, false otherwise
    
    Throws:
    
    PayPalRESTException
  - downloadCertificateFromPath
```
public static InputStream downloadCertificateFromPath(String urlPath)
                                               throws PayPalRESTException
```
    Downloads Certificate from URL
    
    Parameters:
    urlPath -
    
    Returns:
    InputStream containing certificate data
    
    Throws:
    
    PayPalRESTException
  - getCertificateFromStream
```
public static Collection<X509Certificate> getCertificateFromStream(InputStream stream)
                                                            throws PayPalRESTException
```
    Generate Collection of Certificate from Input Stream
    
    Parameters:
    stream - InputStream of Certificate data
    
    Returns:
    Collection
    
    Throws:
    
    PayPalRESTException
  - crc32
```
public static long crc32(String data)
```
    Generates a CRC 32 Value of String passed
    
    Parameters:
    data -
    
    Returns:
    long crc32 value of input. -1 if string is null
  - validateData
```
public static Boolean validateData(Collection<X509Certificate> clientCerts,
                   String algo,
                   String actualSignatureEncoded,
                   String expectedSignature,
                   String requestBody,
                   String webhookId)
                            throws NoSuchAlgorithmException,
                                   SignatureException,
                                   InvalidKeyException
```
    Validates Webhook Signature validation based on https://developer.paypal.com/docs/integration/direct/rest-webhooks-overview/#event-signature Returns true if signature is valid
    
    Parameters:
    clientCerts - Client Certificates
    algo - Algorithm used for signature creation by server
    actualSignatureEncoded - Paypal-Transmission-Sig header value passed by server
    expectedSignature - Signature generated by formatting data with CRC32 value of request body
    requestBody - Request body from server
    webhookId - Id for PayPal Webhook created for receiving the data
    
    Returns:
    true if signature is valid, false otherwise
    
    Throws:
    
    NoSuchAlgorithmException
    
    SignatureException
    
    InvalidKeyException

Class SSLUtil

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

SSLUtil

Method Detail

getSSLContext

setupClientSSL

validateCertificateChain

downloadCertificateFromPath

getCertificateFromStream

crc32

validateData