Package com.itextpdf.signatures
Class CertificateVerifier
java.lang.Object
com.itextpdf.signatures.CertificateVerifier
- Direct Known Subclasses:
-
RootStoreVerifier
Deprecated.
Superclass for a series of certificate verifiers that will typically be used in a chain. It wraps another
CertificateVerifier
that is the next element in the chain of which the verify()
method will be called.
-
Field Summary
Modifier and TypeFieldDescriptionprotected boolean
Deprecated.Indicates if going online to verify a certificate is allowed.protected CertificateVerifier
Deprecated.The previous CertificateVerifier in the chain of verifiers. -
Constructor Summary
ConstructorDescriptionCertificateVerifier
(CertificateVerifier verifier) Deprecated.Creates the final CertificateVerifier in a chain of verifiers. -
Method Summary
Modifier and TypeMethodDescriptionvoid
setOnlineCheckingAllowed
(boolean onlineCheckingAllowed) Deprecated.Decide whether or not online checking is allowed.verify
(X509Certificate signCert, X509Certificate issuerCert, Date signDate) Deprecated.Checks the validity of the certificate, and calls the next verifier in the chain, if any.
-
Field Details
-
verifier
Deprecated.The previous CertificateVerifier in the chain of verifiers. -
onlineCheckingAllowed
protected boolean onlineCheckingAllowedDeprecated.Indicates if going online to verify a certificate is allowed.
-
-
Constructor Details
-
CertificateVerifier
Deprecated.Creates the final CertificateVerifier in a chain of verifiers.- Parameters:
-
verifier
- the previous verifier in the chain
-
-
Method Details
-
setOnlineCheckingAllowed
public void setOnlineCheckingAllowed(boolean onlineCheckingAllowed) Deprecated.Decide whether or not online checking is allowed.- Parameters:
-
onlineCheckingAllowed
- a boolean indicating whether the certificate can be verified using online verification results.
-
verify
public List<VerificationOK> verify(X509Certificate signCert, X509Certificate issuerCert, Date signDate) throws GeneralSecurityException Deprecated.Checks the validity of the certificate, and calls the next verifier in the chain, if any.- Parameters:
-
signCert
- the certificate that needs to be checked -
issuerCert
- its issuer -
signDate
- the date the certificate needs to be valid - Returns:
-
a list of
VerificationOK
objects. The list will be empty if the certificate couldn't be verified. - Throws:
-
GeneralSecurityException
- thrown if the certificate has expired, isn't valid yet, or if an exception has been thrown inCertificate#verify
.
-
CertificateChainValidator
should be used instead.