public class CertificateVerifier extends Object
CertificateVerifier
that is the next element in the chain of which the verify()
method will be called.
Modifier and Type | Field and Description |
---|---|
protected boolean |
onlineCheckingAllowed
Indicates if going online to verify a certificate is allowed.
|
protected CertificateVerifier |
verifier
The previous CertificateVerifier in the chain of verifiers.
|
Constructor and Description |
---|
CertificateVerifier(CertificateVerifier verifier)
Creates the final CertificateVerifier in a chain of verifiers.
|
Modifier and Type | Method and Description |
---|---|
void |
setOnlineCheckingAllowed(boolean onlineCheckingAllowed)
Decide whether or not online checking is allowed.
|
List<VerificationOK> |
verify(X509Certificate signCert, X509Certificate issuerCert, Date signDate)
Checks the validity of the certificate, and calls the next verifier in the chain, if any.
|
protected CertificateVerifier verifier
protected boolean onlineCheckingAllowed
public CertificateVerifier(CertificateVerifier verifier)
verifier
- the previous verifier in the chain
public void setOnlineCheckingAllowed(boolean onlineCheckingAllowed)
onlineCheckingAllowed
- a boolean indicating whether the certificate can be verified using online verification results.
public List<VerificationOK> verify(X509Certificate signCert, X509Certificate issuerCert, Date signDate) throws GeneralSecurityException, IOException
signCert
- the certificate that needs to be checked
issuerCert
- its issuer
signDate
- the date the certificate needs to be valid
VerificationOK
objects. The list will be empty if the certificate couldn't be verified.
GeneralSecurityException
- thrown if the certificate has expired, isn't valid yet, or if an exception has been thrown in Certificate#verify
.
IOException
- Deprecated
Copyright © 1998–2020 iText Group NV. All rights reserved.