Package com.itextpdf.text.pdf.security
Class CertificateVerification
- java.lang.Object
-
- com.itextpdf.text.pdf.security.CertificateVerification
-
public class CertificateVerification extends java.lang.Object
This class consists of some methods that allow you to verify certificates.
-
-
Constructor Summary
Constructors Constructor Description CertificateVerification()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method Description static java.lang.String
verifyCertificate(java.security.cert.X509Certificate cert, java.util.Collection<java.security.cert.CRL> crls, java.util.Calendar calendar)
Verifies a single certificate.static java.util.List<VerificationException>
verifyCertificates(java.security.cert.Certificate[] certs, java.security.KeyStore keystore, java.util.Calendar calendar)
Verifies a certificate chain against a KeyStore.static java.util.List<VerificationException>
verifyCertificates(java.security.cert.Certificate[] certs, java.security.KeyStore keystore, java.util.Collection<java.security.cert.CRL> crls, java.util.Calendar calendar)
Verifies a certificate chain against a KeyStore.static boolean
verifyOcspCertificates(org.bouncycastle.cert.ocsp.BasicOCSPResp ocsp, java.security.KeyStore keystore, java.lang.String provider)
Verifies an OCSP response against a KeyStore.static boolean
verifyTimestampCertificates(org.bouncycastle.tsp.TimeStampToken ts, java.security.KeyStore keystore, java.lang.String provider)
Verifies a time stamp against a KeyStore.
-
-
-
Method Detail
-
verifyCertificate
public static java.lang.String verifyCertificate(java.security.cert.X509Certificate cert, java.util.Collection<java.security.cert.CRL> crls, java.util.Calendar calendar)
Verifies a single certificate.- Parameters:
cert
- the certificate to verifycrls
- the certificate revocation list ornull
calendar
- the date ornull
for the current date- Returns:
- a
String
with the error description ornull
if no error
-
verifyCertificates
public static java.util.List<VerificationException> verifyCertificates(java.security.cert.Certificate[] certs, java.security.KeyStore keystore, java.util.Collection<java.security.cert.CRL> crls, java.util.Calendar calendar)
Verifies a certificate chain against a KeyStore.- Parameters:
certs
- the certificate chainkeystore
- theKeyStore
crls
- the certificate revocation list ornull
calendar
- the date ornull
for the current date- Returns:
null
if the certificate chain could be validated or aObject[]{cert,error}
wherecert
is the failed certificate anderror
is the error message
-
verifyCertificates
public static java.util.List<VerificationException> verifyCertificates(java.security.cert.Certificate[] certs, java.security.KeyStore keystore, java.util.Calendar calendar)
Verifies a certificate chain against a KeyStore.- Parameters:
certs
- the certificate chainkeystore
- theKeyStore
calendar
- the date ornull
for the current date- Returns:
null
if the certificate chain could be validated or aObject[]{cert,error}
wherecert
is the failed certificate anderror
is the error message
-
verifyOcspCertificates
public static boolean verifyOcspCertificates(org.bouncycastle.cert.ocsp.BasicOCSPResp ocsp, java.security.KeyStore keystore, java.lang.String provider)
Verifies an OCSP response against a KeyStore.- Parameters:
ocsp
- the OCSP responsekeystore
- theKeyStore
provider
- the provider ornull
to use the BouncyCastle provider- Returns:
true
is a certificate was found
-
verifyTimestampCertificates
public static boolean verifyTimestampCertificates(org.bouncycastle.tsp.TimeStampToken ts, java.security.KeyStore keystore, java.lang.String provider)
Verifies a time stamp against a KeyStore.- Parameters:
ts
- the time stampkeystore
- theKeyStore
provider
- the provider ornull
to use the BouncyCastle provider- Returns:
true
is a certificate was found
-
-