Class DefaultIssuingCertificateRetriever

    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      java.security.cert.Certificate[] getCrlIssuerCertificates​(java.security.cert.CRL crl)
      Retrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.
      java.security.cert.Certificate[][] getCrlIssuerCertificatesByName​(java.security.cert.CRL crl)
      Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.
      java.security.cert.Certificate[] retrieveMissingCertificates​(java.security.cert.Certificate[] chain)
      Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.
      void setTrustedCertificates​(java.util.Collection<java.security.cert.Certificate> certificates)
      Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Method Detail

      • retrieveMissingCertificates

        public java.security.cert.Certificate[] retrieveMissingCertificates​(java.security.cert.Certificate[] chain)
        Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.
        Specified by:
        retrieveMissingCertificates in interface IIssuingCertificateRetriever
        Parameters:
        chain - certificate chain to restore with at least signing certificate.
        Returns:
        full chain of trust or maximum chain that could be restored in case missing certificates cannot be retrieved from AIA extension.
      • getCrlIssuerCertificates

        public java.security.cert.Certificate[] getCrlIssuerCertificates​(java.security.cert.CRL crl)
        Retrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.
        Specified by:
        getCrlIssuerCertificates in interface IIssuingCertificateRetriever
        Parameters:
        crl - CRL response to retrieve issuer for.
        Returns:
        certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
      • getCrlIssuerCertificatesByName

        public java.security.cert.Certificate[][] getCrlIssuerCertificatesByName​(java.security.cert.CRL crl)
        Description copied from interface: IIssuingCertificateRetriever
        Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.
        Specified by:
        getCrlIssuerCertificatesByName in interface IIssuingCertificateRetriever
        Parameters:
        crl - CRL response to retrieve issuer for.
        Returns:
        certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
      • setTrustedCertificates

        public void setTrustedCertificates​(java.util.Collection<java.security.cert.Certificate> certificates)
        Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.
        Specified by:
        setTrustedCertificates in interface IIssuingCertificateRetriever
        Parameters:
        certificates - certificate list for getting missing certificates in chain or CRL response issuer certificates.