CRLVerifier
, LtvVerifier
, OCSPVerifier
public class RootStoreVerifier extends CertificateVerifier
KeyStore
containing trusted anchors.Modifier and Type | Field | Description |
---|---|---|
protected static Logger |
LOGGER |
The Logger instance
|
protected KeyStore |
rootStore |
A key store against which certificates can be verified.
|
onlineCheckingAllowed, verifier
Constructor | Description |
---|---|
RootStoreVerifier(CertificateVerifier verifier) |
Creates a RootStoreVerifier in a chain of verifiers.
|
Modifier and Type | Method | Description |
---|---|---|
void |
setRootStore(KeyStore keyStore) |
Sets the Key Store against which a certificate can be checked.
|
List<VerificationOK> |
verify(X509Certificate signCert,
X509Certificate issuerCert,
Date signDate) |
Verifies a single certificate against a key store (if present).
|
setOnlineCheckingAllowed
protected static final Logger LOGGER
protected KeyStore rootStore
public RootStoreVerifier(CertificateVerifier verifier)
verifier
- the next verifier in the chainpublic void setRootStore(KeyStore keyStore)
keyStore
- a root storepublic List<VerificationOK> verify(X509Certificate signCert, X509Certificate issuerCert, Date signDate) throws GeneralSecurityException, IOException
verify
in class CertificateVerifier
signCert
- the certificate to verifyissuerCert
- the issuer certificatesignDate
- the date the certificate needs to be validVerificationOK
objects.
The list will be empty if the certificate couldn't be verified.GeneralSecurityException
IOException
Copyright © 2018. All rights reserved.