public class InMemoryKeystoreCertChainValidator extends PlainCRLValidator
KeyStore as a truststore. This
class is similar to KeystoreCertChainValidator but uses a keystore which
was already loaded. Refreshing of the truststore is not supported.
The CRLs (Certificate Revocation Lists, if their handling is turned on) can be obtained from two sources: CA certificate extension defining CRL URL and additional list of URLs manually set by the class user. As an additional feature one may provide a simple paths to a local files, using wildcards. All files matching a wildcard are used.
This class is thread-safe.
X509CertChainValidator,
KeystoreCertChainValidator| Modifier and Type | Field and Description |
|---|---|
protected JDKInMemoryTrustAnchorStore |
store |
crlStoreImpl, revocationParameters, timerdisposed, listeners, observers, validator| Constructor and Description |
|---|
InMemoryKeystoreCertChainValidator(KeyStore keystore)
Constructs a new validator instance with default additional settings
(see
ValidatorParamsExt.ValidatorParamsExt()). |
InMemoryKeystoreCertChainValidator(KeyStore keystore,
ValidatorParamsExt params)
Constructs a new validator instance.
|
| Modifier and Type | Method and Description |
|---|---|
KeyStore |
getTruststore()
Returns the current trust store.
|
void |
setTruststore(KeyStore ks)
Changes the current trust store.
|
createCRLStore, dispose, getCrls, getCRLUpdateInterval, getRevocationParameters, setCrls, setCRLUpdateIntervaladdUpdateListener, addValidationListener, getProxySupport, getRevocationCheckingMode, getTrustedIssuers, init, notifyListeners, processErrorList, removeUpdateListener, removeValidationListener, validate, validate, validateprotected JDKInMemoryTrustAnchorStore store
public InMemoryKeystoreCertChainValidator(KeyStore keystore, ValidatorParamsExt params) throws IOException, KeyStoreException
keystore - truststore to useparams - common validator settings (revocation, initial listeners, proxy support, ...)IOException - if the truststore can not be readKeyStoreException - if the truststore can not be parsed or
if password is incorrect.public InMemoryKeystoreCertChainValidator(KeyStore keystore) throws IOException, KeyStoreException
ValidatorParamsExt.ValidatorParamsExt()).keystore - truststore to useIOException - if the truststore can not be readKeyStoreException - if the truststore can not be parsed or
if password is incorrect.public KeyStore getTruststore()
public void setTruststore(KeyStore ks) throws KeyStoreException
KeyStoreExceptionCopyright © 2012-2014 European Middleware Initiative. All Rights Reserved.