Delombok TrustRootsResult builder JavaDoc

emlun · emlun · commit 85a4148e0e52 · 2022-10-11T20:21:37.000+02:00
As of version 1.18.24, Lombok fails to copy JavaDoc from the source definition
to generated methods in a static inner class.
diff --git a/NEWS b/NEWS
@@ -36,6 +36,7 @@ Fixes:
 * Moved version constraints for test dependencies from meta-module
   `webauthn-server-parent` to unpublished test meta-module.
 * `yubico-util` dependency removed from downstream compile scope.
+* Fixed missing JavaDoc on `TrustRootsResult` getters and builder setters.
 
 
 `webauthn-server-attestation`:
diff --git a/webauthn-server-core/src/main/java/com/yubico/webauthn/attestation/AttestationTrustSource.java b/webauthn-server-core/src/main/java/com/yubico/webauthn/attestation/AttestationTrustSource.java
@@ -198,6 +198,100 @@ public TrustRootsResultBuilder trustRoots(@NonNull Set<X509Certificate> trustRoo
           return new TrustRootsResultBuilder().trustRoots(trustRoots);
         }
       }
+
+      /**
+       * A set of attestation root certificates trusted to certify the relevant attestation
+       * statement. If the attestation statement is not trusted, or if no trust roots were found,
+       * this should be an empty set.
+       */
+      // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+      public AttestationTrustSource.TrustRootsResult.TrustRootsResultBuilder trustRoots(
+          @NonNull final Set<X509Certificate> trustRoots) {
+        if (trustRoots == null) {
+          throw new java.lang.NullPointerException("trustRoots is marked non-null but is null");
+        }
+        this.trustRoots = trustRoots;
+        return this;
+      }
+
+      /**
+       * A {@link CertStore} of additional CRLs and/or intermediate certificates to use during
+       * certificate path validation, if any. This will not be used if {@link
+       * TrustRootsResultBuilder#trustRoots(Set) trustRoots} is empty.
+       *
+       * <p>Any certificates included in this {@link CertStore} are NOT considered trusted; they
+       * will be trusted only if they chain to any of the {@link
+       * TrustRootsResultBuilder#trustRoots(Set) trustRoots}.
+       *
+       * <p>The default is <code>null</code>.
+       */
+      // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+      public AttestationTrustSource.TrustRootsResult.TrustRootsResultBuilder certStore(
+          final CertStore certStore) {
+        this.certStore$value = certStore;
+        certStore$set = true;
+        return this;
+      }
+
+      /**
+       * Whether certificate revocation should be checked during certificate path validation.
+       *
+       * <p>The default is <code>true</code>.
+       */
+      // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+      public AttestationTrustSource.TrustRootsResult.TrustRootsResultBuilder
+          enableRevocationChecking(final boolean enableRevocationChecking) {
+        this.enableRevocationChecking$value = enableRevocationChecking;
+        enableRevocationChecking$set = true;
+        return this;
+      }
+
+      /**
+       * If non-null, the PolicyQualifiersRejected flag will be set to false during certificate path
+       * validation. See {@link
+       * java.security.cert.PKIXParameters#setPolicyQualifiersRejected(boolean)}.
+       *
+       * <p>The given {@link Predicate} will be used to validate the policy tree. The {@link
+       * Predicate} should return <code>true</code> if the policy tree is acceptable, and <code>
+       * false
+       * </code> otherwise.
+       *
+       * <p>Depending on your <code>"PKIX"</code> JCA provider configuration, this may be required
+       * if any certificate in the certificate path contains a certificate policies extension marked
+       * critical. If this is not set, then such a certificate will be rejected by the certificate
+       * path validator from the default provider.
+       *
+       * <p>Consult the <a
+       * href="https://docs.oracle.com/en/java/javase/17/security/java-pki-programmers-guide.html#GUID-3AD41382-E729-469B-83EE-CB2FE66D71D8">Java
+       * PKI Programmer's Guide</a> for how to use the {@link PolicyNode} argument of the {@link
+       * Predicate}.
+       *
+       * <p>The default is <code>null</code>.
+       */
+      // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+      public AttestationTrustSource.TrustRootsResult.TrustRootsResultBuilder policyTreeValidator(
+          final Predicate<PolicyNode> policyTreeValidator) {
+        this.policyTreeValidator$value = policyTreeValidator;
+        policyTreeValidator$set = true;
+        return this;
+      }
+    }
+
+    /**
+     * A set of attestation root certificates trusted to certify the relevant attestation statement.
+     * If the attestation statement is not trusted, or if no trust roots were found, this should be
+     * an empty set.
+     */
+    // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+    @NonNull
+    public Set<X509Certificate> getTrustRoots() {
+      return this.trustRoots;
+    }
+
+    /** Whether certificate revocation should be checked during certificate path validation. */
+    // TODO: Let this auto-generate (investigate why Lombok fails to copy javadoc)
+    public boolean isEnableRevocationChecking() {
+      return this.enableRevocationChecking;
     }
   }
 }
