Oracle Security Engine 4-3 5. Add the full path and file names for all of the required jar and class files to the CLASSPATH. For example, your CLASSPATH might look like this: CLASSPATH; ORACLE_HOME\modules\oracle.osdt_11.1.1\osdt_core.jar; ORACLE_HOME\modules\oracle.osdt_11.1.1\osdt_cert.jar; 6. Click OK.

4.2.2.2 Setting the CLASSPATH on UNIX

To set your CLASSPATH on UNIX, set your CLASSPATH environment variable to include the full path and file name of all of the required jar and class files. For example: setenv CLASSPATH CLASSPATH: ORACLE_HOMEmodulesoracle.osdt_11.1.1osdt_core.jar: ORACLE_HOMEmodulesoracle.osdt_11.1.1osdt_cert.jar:

4.3 Core Classes and Interfaces

This section provides information and code samples for using the certificate facility classes of Oracle Security Engine. Oracle Security Engine also includes all of the classes provided with Oracle Crypto. See Chapter 3, Oracle Crypto for an overview of the core Oracle Crypto classes. Class Changes in OracleAS 11gR1 In OracleAS 11gR1, the oracle.security.crypto.cert.X509 class for certificate management has been replaced with java.security.cert.X509Certificate The Core Certificate Classes The core certificate facility classes are: ■ The oracle.security.crypto.cert.X500RDN Class ■ The oracle.security.crypto.cert.X500Name Class ■ The oracle.security.crypto.cert.CertificateRequest Class ■ The java.security.cert.X509Certificate Class

4.3.1 The oracle.security.crypto.cert.X500RDN Class

This class represents an X.500 Relative Distinguished Name RDN. This is the building block for X.500 names. A RDN consists of a set of attribute-value pairs. Typically, there is a single attribute-value pair in each RDN. Example 4–1 Code Example for Creating and Retrieving an X500RDN Object Create the X500RDN object X500RDN rdn = new X500RDNPKIX.id_at_commonName, Joe Smith; Retrieve the value X500Name n = Instance of oracle.security.crypto.cert.X500Name; String name = n.getAttributePKIX.id_at_commonName.getValue.getValue; 4-4 Oracle Fusion Middleware Reference for Oracle Security Developer Tools

4.3.2 The oracle.security.crypto.cert.X500Name Class

This class represents distinguished names as used in the X.500 series of specifications, defined in X.520. An X500Name object is made of X500RDN objects. An X500Name holds attributes defining an entity such as the common name, country, organization, and so on. To create an X500Name object, use the standard constructor and then populate the object with attributes. Once created, the object can then be DER-encoded to make it available to other processes: Example 4–2 Code Example for Creating an X500Name Object X500Name name = new X500Name; name.addComponentPKIX.id_at_commonName, Joe Smith; name.addComponentPKIX.id_at_countryName, USA; name.addComponentPKIX.id_at_stateOrProvinceName, NY; name.addComponentPKIX.id_at_localityName, New York; name.addComponentPKIX.id_at_organizationName, Oracle; name.addComponentPKIX.id_at_organizationalUnitName, Engineering; name.addComponentPKIX.emailAddress, joe.smithoracle.com; Make object DER-encoded so its available to other processes byte[] encodedName = Utils.toBytesname; X500Name n = new X500Namenew ByteArrayInputStreamencodedName; String name = n.getAttributePKIX.id_at_commonName.getValue.getValue; String email = n.getAttributePKIX.emailAddress.getValue.getValue;

4.3.3 The oracle.security.crypto.cert.CertificateRequest Class