import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.security.Key;
import java.security.KeyStore;
import java.security.cert.Certificate;
import java.util.Enumeration;
import org.apache.commons.lang.ArrayUtils;
/**
* jks pfx 证书转换
* @author HEQIANG537
* @date 2011.02.18
*
*/
public class ConventPFX {
public static final String PKCS12 = "PKCS12";
public static final String JKS = "JKS";
// public static final String PFX_KEYSTORE_FILE = "D:/BIS工作记录/bis1.2.1/EXV_BIS_IFRONT_PCIS_XYZ_001_PRD.pfx";
public static final String PFX_KEYSTORE_FILE = "EXV_BIS_IFRONT_PCIS_XINGLI_001_STG.pfx";
public static final String KEYSTORE_PASSWORD = "XXXXXX";
public static final String JKS_KEYSTORE_FILE = "EXV_BIS_IFRONT_PCIS_PTPTAOBAO_001_STG.jks";
public static void coverTokeyStore() {
try {
KeyStore inputKeyStore = KeyStore.getInstance("PKCS12");
FileInputStream fis = new FileInputStream(PFX_KEYSTORE_FILE);
char[] nPassword = null;
if ((KEYSTORE_PASSWORD == null)
|| KEYSTORE_PASSWORD.trim().equals("")) {
nPassword = null;
} else {
nPassword = KEYSTORE_PASSWORD.toCharArray();
}
inputKeyStore.load(fis, nPassword);
fis.close();
KeyStore outputKeyStore = KeyStore.getInstance("JKS");
outputKeyStore.load(null, KEYSTORE_PASSWORD.toCharArray());
Enumeration enums = inputKeyStore.aliases();
while (enums.hasMoreElements()) { // we are readin just one
// certificate.
String keyAlias = (String) enums.nextElement();
System.out.println("alias=[" + keyAlias + "]");
if (inputKeyStore.isKeyEntry(keyAlias)) {
Key key = inputKeyStore.getKey(keyAlias, nPassword);
Certificate[] certChain = inputKeyStore
.getCertificateChain(keyAlias);
outputKeyStore.setKeyEntry(keyAlias, key, KEYSTORE_PASSWORD
.toCharArray(), certChain);
}
}
FileOutputStream out = new FileOutputStream(JKS_KEYSTORE_FILE);
outputKeyStore.store(out, nPassword);
out.close();
} catch (Exception e) {
e.printStackTrace();
}
}
public static void coverToPfx() {
try {
KeyStore inputKeyStore = KeyStore.getInstance("JKS");
FileInputStream fis = new FileInputStream(JKS_KEYSTORE_FILE);
char[] nPassword = null;
if ((KEYSTORE_PASSWORD == null)
|| KEYSTORE_PASSWORD.trim().equals("")) {
nPassword = null;
} else {
nPassword = KEYSTORE_PASSWORD.toCharArray();
}
inputKeyStore.load(fis, nPassword);
fis.close();
KeyStore outputKeyStore = KeyStore.getInstance("PKCS12");
outputKeyStore.load(null, KEYSTORE_PASSWORD.toCharArray());
Enumeration enums = inputKeyStore.aliases();
while (enums.hasMoreElements()) { // we are readin just one
// certificate.
String keyAlias = (String) enums.nextElement();
System.out.println("alias=[" + keyAlias + "]");
if (inputKeyStore.isKeyEntry(keyAlias)) {
Key key = inputKeyStore.getKey(keyAlias, nPassword);
Certificate[] certChain = inputKeyStore
.getCertificateChain(keyAlias);
outputKeyStore.setKeyEntry(keyAlias, key, KEYSTORE_PASSWORD
.toCharArray(), certChain);
}
}
FileOutputStream out = new FileOutputStream(PFX_KEYSTORE_FILE);
outputKeyStore.store(out, nPassword);
out.close();
} catch (Exception e) {
e.printStackTrace();
}
}
private static String[] idtypes = {"1","2","3","5","6","7","8","A","B","C","D","E","F","G","H","I","J","K","L"};
private static String[] sexcodes = {"F","M"};
public static void main(String[] args) {
System.out.println("hello");
//coverToPfx(); // jks to pfx
coverTokeyStore(); // pfx to jks
//System.out.println(ArrayUtils.contains(idtypes, "1"));
}
}
分享到:
相关推荐
由于生成的证书是jks格式,nginx不能直接用,需要要转成PEM格式,这要用到jks2pfx工具进行转换。 jks2pfx的命令格式:JKS2PFX.bat keystore password alias exportname keystore:KeyStore文件绝对路径 password:...
利用OpenSSL命令进行SSL证书格式转换(Certificates Formats).docx
用于将X509PEM证书转证PVK及SPC格式
https证书格式转换(bks bksv-1 cer jks) 使用Demo 编写
keystoke证书转换nginx证书工具,jdk keytool.exe生成的.keystore格式证书通过他可以转换为.key、.pfx、.crt证书,用于配置https证书
[PKI]常见证书格式和转换[PKI]常见证书格式和转换[PKI]常见证书格式和转换[PKI]常见证书格式和转换[PKI]常见证书格式和转换[PKI]常见证书格式和转换[PKI]常见证书格式和转换
3.证书格式转换操作记录 openssl生成的pem格式证书转换为p12(pfx/pkcs12)、jks格式证书 keytool生成的jks证书转换为 p12(pfx/pkcs12)、pem格式证书 4。证书安全说明 常用crt/cer、pem、p12/pfx、jks解释说明
SSL证书生成软件、包括转换证书格式
https证书格式转换(bks bksv-1 cer jks) 各种证书的生成,比如P12证书转BKS证书。BKS证书转P12
各种证书的生成,证书格式之间转换,比如P12证书转BKS证书。
java 生成的有私钥的证书导入IE,或者把IE导出的证书导入java的KeyStore
"极简":证书格式转换 模块四:Tomcat 服务 1-1. "极简":部署 Nginx ,实现访问控制和自动跳转 1-2. "效率":利用 Ansible 实现证书的申请与分发 2-1. "极简":利用 Nginx 实现镜像站点的负载均衡 3-1. "极简":...
IIS Crypto软件是一款专门为电脑服务器打造的智能管理工具,使管理员能够在Windows Server 2008、2012和2016上启用或禁用协议、密码、散列和密钥交换算法。...同时提供证书格式转换,CSR,证书链,SSL配置生成等。
本资源是个各种数字证书查看工具,以及各种证书转换工具,将keystore拆成crt和key
<自信ZXCA证书工具>,类似于puttygen,用于生成各种格式证书和证书格式转换,不支持国密
pkcs1与pkcs8证书互相转换
超星pdz格式转换pdf方法
keytool -import -alias mycert -file d:\def.cer -keystore mykeystore.jks (导入证书到keystore) 2. JKS——>cer格式 keytool -import -alias mycert- keystore mykeystore.jks -file d:\def.cer (从keystore...
1、转换各种PEM(XML)格式公私钥,可以根据私钥获取公钥(pkcs8一般java用,xml格式一般C#用) 2、签名数据 3、验签并获取签名前的数据 3、公私钥格式加密或去密(支持大量对称算法,包括淘汰的) 4、生成RSA公私钥...