com.entrust.toolkit.x509
Class CertVerifier
java.lang.Object
|
+--com.entrust.toolkit.x509.CertVerifier
- public class CertVerifier
- extends java.lang.Object
- implements ValidationInfo
The CertVerifier is used for validating certificates.
| Methods inherited from class java.lang.Object |
clone,
equals,
finalize,
getClass,
hashCode,
notify,
notifyAll,
toString,
wait,
wait,
wait |
CertVerifier
public CertVerifier(X509Certificate rootOfTrust,
LdapDirectory directory,
ClientSettings clientSettings)
getCertificateStore
public CollectionCS getCertificateStore()
- Specified by:
- getCertificateStore in interface ValidationInfo
getExtensionTester
public ExtensionTester getExtensionTester()
- Specified by:
- getExtensionTester in interface ValidationInfo
getRevocationStore
public CollectionRS getRevocationStore()
- Specified by:
- getRevocationStore in interface ValidationInfo
getDirectory
public LdapDirectory getDirectory()
- Specified by:
- getDirectory in interface ValidationInfo
setDirectory
public void setDirectory(LdapDirectory dir)
- Specified by:
- setDirectory in interface ValidationInfo
getRootOfTrust
public X509Certificate getRootOfTrust()
- Specified by:
- getRootOfTrust in interface ValidationInfo
getClientSettings
public ClientSettings getClientSettings()
- Specified by:
- getClientSettings in interface ValidationInfo
validate
public X509Certificate[] validate(X509Certificate certificate)
throws CertificationException
- Validates an X.509 certificate. The validation consists of three steps:
- Find a certificate chain from
certificate to the root
of trust
- Validate the chain with all certificate extensions
- Verify that no certificate in the chain is revoked
- Parameters:
certificate - the certificate to validate- Throws:
- CertificationException -