public class CRLChecker extends Object implements CertificateChecker
Constructor and Description |
---|
CRLChecker(CertificateRevocationLists crlsList,
KeyStore keyStore,
boolean checkDateValidity)
Creates a CRLChecker where the CRL's are in the supplied stores.
|
CRLChecker(CertStore certStore,
KeyStore keyStore,
boolean checkDateValidity)
Creates a CRLChecker where the CRL's are in the supplied stores.
|
Modifier and Type | Method and Description |
---|---|
protected void |
checkCRLDateValidity(X509CRL crl) |
void |
invoke(X509Certificate cert,
GSIConstants.CertificateType certType)
Method that checks the if the certificate is in a CRL, if CRL is
available If no CRL is found, then no error is thrown If an expired CRL
is found, an error is thrown
|
public CRLChecker(CertificateRevocationLists crlsList, KeyStore keyStore, boolean checkDateValidity)
crlsList
- The object containing the CRL'skeyStore
- The store used to get trusted certs.checkDateValidity
- Should we check if the CRL date is valid.public CRLChecker(CertStore certStore, KeyStore keyStore, boolean checkDateValidity)
certStore
- The store containing the CRL'skeyStore
- The store used to get trusted certs.checkDateValidity
- Should we check if the CRL date is valid.public void invoke(X509Certificate cert, GSIConstants.CertificateType certType) throws CertPathValidatorException
invoke
in interface CertificateChecker
cert
- The certificate to validate.certType
- The type of certificate to validate.CertPathValidatorException
- If CRL or CA certificate could not be
loaded from store, CRL is not valid or
expired, certificate is revoked.protected void checkCRLDateValidity(X509CRL crl) throws CertPathValidatorException
CertPathValidatorException
Copyright © 2016. All rights reserved.