iText 9.0.0 API
iText.Signatures.CRLVerifier Class Reference

Class that allows you to verify a certificate against one or more Certificate Revocation Lists. More...

Inheritance diagram for iText.Signatures.CRLVerifier:
iText.Signatures.RootStoreVerifier iText.Signatures.CertificateVerifier

Public Member Functions

  CRLVerifier (CertificateVerifier verifier, IList< IX509Crl > crls)
  Creates a CRLVerifier instance. More...
 
override IList< VerificationOK Verify (IX509Certificate signCert, IX509Certificate issuerCert, DateTime signDate)
  Verifies whether a valid CRL is found for the certificate. More...
 
virtual bool  Verify (IX509Crl crl, IX509Certificate signCert, IX509Certificate issuerCert, DateTime signDate)
  Verifies a certificate against a single CRL. More...
 
virtual IX509Crl  GetCRL (IX509Certificate signCert, IX509Certificate issuerCert)
  Fetches a CRL for a specific certificate online (without further checking). More...
 
virtual bool  IsSignatureValid (IX509Crl crl, IX509Certificate crlIssuer)
  Checks if a CRL verifies against the issuer certificate or a trusted anchor. More...
 
- Public Member Functions inherited from iText.Signatures.RootStoreVerifier
  RootStoreVerifier (CertificateVerifier verifier)
  Creates a RootStoreVerifier in a chain of verifiers. More...
 
virtual void  SetRootStore (List< IX509Certificate > keyStore)
  Sets the Key Store against which a certificate can be checked. More...
 
override IList< VerificationOK Verify (IX509Certificate signCert, IX509Certificate issuerCert, DateTime signDate)
  Verifies a single certificate against a key store (if present). More...
 
- Public Member Functions inherited from iText.Signatures.CertificateVerifier
  CertificateVerifier (iText.Signatures.CertificateVerifier verifier)
  Creates the final CertificateVerifier in a chain of verifiers. More...
 
virtual void  SetOnlineCheckingAllowed (bool onlineCheckingAllowed)
  Decide whether or not online checking is allowed. More...
 

Static Package Attributes

static readonly ILogger  LOGGER
  The Logger instance More...
 

Additional Inherited Members

- Package Attributes inherited from iText.Signatures.RootStoreVerifier
List< IX509Certificate rootStore = null
  A key store against which certificates can be verified. More...
 
- Package Attributes inherited from iText.Signatures.CertificateVerifier
iText.Signatures.CertificateVerifier  verifier
  The previous CertificateVerifier in the chain of verifiers. More...
 
bool  onlineCheckingAllowed = true
  Indicates if going online to verify a certificate is allowed. More...
 

Detailed Description

Class that allows you to verify a certificate against one or more Certificate Revocation Lists.

Constructor & Destructor Documentation

◆ CRLVerifier()

iText.Signatures.CRLVerifier.CRLVerifier ( CertificateVerifier  verifier,
IList< IX509Crl crls 
)
inline

Creates a CRLVerifier instance.

Parameters
verifier the next verifier in the chain
crls a list of CRLs

Member Function Documentation

◆ GetCRL()

virtual IX509Crl iText.Signatures.CRLVerifier.GetCRL ( IX509Certificate  signCert,
IX509Certificate  issuerCert 
)
inlinevirtual

Fetches a CRL for a specific certificate online (without further checking).

Parameters
signCert the certificate
issuerCert its issuer left for backwards compatibility
Returns
an X509CRL object.

◆ IsSignatureValid()

virtual bool iText.Signatures.CRLVerifier.IsSignatureValid ( IX509Crl  crl,
IX509Certificate  crlIssuer 
)
inlinevirtual

Checks if a CRL verifies against the issuer certificate or a trusted anchor.

Parameters
crl the CRL
crlIssuer the trusted anchor
Returns
true if the CRL can be trusted

◆ Verify() [1/2]

override IList<VerificationOK> iText.Signatures.CRLVerifier.Verify ( IX509Certificate  signCert,
IX509Certificate  issuerCert,
DateTime  signDate 
)
inlinevirtual

Verifies whether a valid CRL is found for the certificate.

Verifies whether a valid CRL is found for the certificate. If this method returns false, it doesn't mean the certificate isn't valid. It means we couldn't verify it against any CRL that was available.

Parameters
signCert the certificate that needs to be checked
issuerCert its issuer
Returns
a list of VerificationOK objects. The list will be empty if the certificate couldn't be verified.
See also
RootStoreVerifier.Verify(iText.Commons.Bouncycastle.Cert.IX509Certificate, iText.Commons.Bouncycastle.Cert.IX509Certificate, System.DateTime)

Reimplemented from iText.Signatures.CertificateVerifier.

◆ Verify() [2/2]

virtual bool iText.Signatures.CRLVerifier.Verify ( IX509Crl  crl,
IX509Certificate  signCert,
IX509Certificate  issuerCert,
DateTime  signDate 
)
inlinevirtual

Verifies a certificate against a single CRL.

Parameters
crl the Certificate Revocation List
signCert a certificate that needs to be verified
issuerCert its issuer
signDate the sign date
Returns
true if the verification succeeded

Member Data Documentation

◆ LOGGER

readonly ILogger iText.Signatures.CRLVerifier.LOGGER
staticpackage
Initial value:
= ITextLogManager.GetLogger(typeof(iText.Signatures.CRLVerifier
))

The Logger instance

iText.Signatures.CRLVerifier
Class that allows you to verify a certificate against one or more Certificate Revocation Lists.
Definition: CRLVerifier.cs:38
iText.Signatures
Definition: AccessPermissions.cs:23
iText
Definition: Barcode128.cs:35