Package com.itextpdf.signatures
Class DefaultIssuingCertificateRetriever
java.lang.Object
com.itextpdf.signatures.DefaultIssuingCertificateRetriever
- All Implemented Interfaces:
IIssuingCertificateRetriever
Empty
IIssuingCertificateRetriever
implementation for compatibility with the older code.-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionRetrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.Certificate[][]
Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.retrieveMissingCertificates
(Certificate[] chain) Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.void
setTrustedCertificates
(Collection<Certificate> certificates) Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.
-
Constructor Details
-
DefaultIssuingCertificateRetriever
public DefaultIssuingCertificateRetriever()CreatesDefaultIssuingCertificateRetriever
instance.
-
-
Method Details
-
retrieveMissingCertificates
Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.- Specified by:
retrieveMissingCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
chain
- certificate chain to restore with at least signing certificate.- Returns:
- full chain of trust or maximum chain that could be restored in case missing certificates cannot be retrieved from AIA extension.
-
getCrlIssuerCertificates
Retrieves the certificate chain for the certificate that should be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.- Specified by:
getCrlIssuerCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
crl
- CRL response to retrieve issuer for.- Returns:
- certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
-
getCrlIssuerCertificatesByName
Description copied from interface:IIssuingCertificateRetriever
Retrieves the certificate chaind for the certificates that could be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension and known certificates.- Specified by:
getCrlIssuerCertificatesByName
in interfaceIIssuingCertificateRetriever
- Parameters:
crl
- CRL response to retrieve issuer for.- Returns:
- certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.
-
setTrustedCertificates
Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.- Specified by:
setTrustedCertificates
in interfaceIIssuingCertificateRetriever
- Parameters:
certificates
- certificate list for getting missing certificates in chain or CRL response issuer certificates.
-