public class SigningPolicy extends Object
Constructor and Description |
---|
SigningPolicy(X500Principal caSubjectDN,
List<Pattern> allowedDNs)
Create a signing policy for the supplied subject which allows subjects whose DNs match one of the supplied
patterns to sign certificates.
|
SigningPolicy(X500Principal caSubjectDN,
String[] allowedDNs)
Create a signing policy for the supplied subject which allows the supplied list of DNs to sign certificates.
|
Modifier and Type | Method and Description |
---|---|
List<Pattern> |
getAllowedDNs()
Return the patterns which identify the valid signing entities.
|
X500Principal |
getCASubjectDN()
Get CA subject DN for which this signing policy is defined.
|
boolean |
isPolicyAvailable()
Method to determine if a signing policy is available for a
given DN.
|
boolean |
isValidSubject(X500Principal subject)
Ascertains if the subjectDN is valid against this policy.
|
public SigningPolicy(X500Principal caSubjectDN, String[] allowedDNs)
caSubjectDN
- The DN for the subject to which this policy applies.allowedDNs
- The list of DNs which can sign certs for this subject.public SigningPolicy(X500Principal caSubjectDN, List<Pattern> allowedDNs)
caSubjectDN
- The DN for the subject to which this policy applies.allowedDNs
- A list of patterns to which to compare signing entity DNs.public X500Principal getCASubjectDN()
public boolean isValidSubject(X500Principal subject)
subject
- Subject DN to be validatedpublic List<Pattern> getAllowedDNs()
public boolean isPolicyAvailable()
Copyright © 2016. All rights reserved.