Package com.itextpdf.signatures
Class DefaultIssuingCertificateRetriever
- java.lang.Object
-
- com.itextpdf.signatures.DefaultIssuingCertificateRetriever
-
- All Implemented Interfaces:
IIssuingCertificateRetriever
class DefaultIssuingCertificateRetriever extends java.lang.Object implements IIssuingCertificateRetriever
EmptyIIssuingCertificateRetriever
implementation for compatibility with the older code.
-
-
Constructor Summary
Constructors Constructor Description DefaultIssuingCertificateRetriever()
CreatesDefaultIssuingCertificateRetriever
instance.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description java.security.cert.Certificate[]
getCrlIssuerCertificates(java.security.cert.CRL crl)
Retrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.java.security.cert.Certificate[][]
getCrlIssuerCertificatesByName(java.security.cert.CRL crl)
Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.java.security.cert.Certificate[]
retrieveMissingCertificates(java.security.cert.Certificate[] chain)
Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.void
setTrustedCertificates(java.util.Collection<java.security.cert.Certificate> certificates)
Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.
-
-
-
Constructor Detail
-
DefaultIssuingCertificateRetriever
public DefaultIssuingCertificateRetriever()
CreatesDefaultIssuingCertificateRetriever
instance.
-
-
Method Detail
-
retrieveMissingCertificates
public java.security.cert.Certificate[] retrieveMissingCertificates(java.security.cert.Certificate[] chain)
Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.- Specified by:
retrieveMissingCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
chain
- certificate chain to restore with at least signing certificate.- Returns:
- full chain of trust or maximum chain that could be restored in case missing certificates cannot be retrieved from AIA extension.
-
getCrlIssuerCertificates
public java.security.cert.Certificate[] getCrlIssuerCertificates(java.security.cert.CRL crl)
Retrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.- Specified by:
getCrlIssuerCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
crl
- CRL response to retrieve issuer for.- Returns:
- certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
-
getCrlIssuerCertificatesByName
public java.security.cert.Certificate[][] getCrlIssuerCertificatesByName(java.security.cert.CRL crl)
Description copied from interface:IIssuingCertificateRetriever
Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.- Specified by:
getCrlIssuerCertificatesByName
in interfaceIIssuingCertificateRetriever
- Parameters:
crl
- CRL response to retrieve issuer for.- Returns:
- certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
-
setTrustedCertificates
public void setTrustedCertificates(java.util.Collection<java.security.cert.Certificate> certificates)
Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.- Specified by:
setTrustedCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
certificates
- certificate list for getting missing certificates in chain or CRL response issuer certificates.
-
-