Package org.globus.gsi.trustmanager
Class CRLChecker
java.lang.Object
org.globus.gsi.trustmanager.CRLChecker
- All Implemented Interfaces:
CertificateChecker
This checks to see if the certificate is in a CRL.
- Since:
- 1.0
- Version:
- ${version}
-
Constructor Summary
ConstructorsConstructorDescriptionCRLChecker
(CertStore certStore, KeyStore keyStore, boolean checkDateValidity) Creates a CRLChecker where the CRL's are in the supplied stores.CRLChecker
(CertificateRevocationLists crlsList, KeyStore keyStore, boolean checkDateValidity) Creates a CRLChecker where the CRL's are in the supplied stores. -
Method Summary
Modifier and TypeMethodDescriptionprotected void
void
invoke
(X509Certificate cert, GSIConstants.CertificateType certType) Method that checks the if the certificate is in a CRL, if CRL is available If no CRL is found, then no error is thrown If an expired CRL is found, an error is thrown
-
Constructor Details
-
CRLChecker
public CRLChecker(CertificateRevocationLists crlsList, KeyStore keyStore, boolean checkDateValidity) Creates a CRLChecker where the CRL's are in the supplied stores.- Parameters:
crlsList
- The object containing the CRL'skeyStore
- The store used to get trusted certs.checkDateValidity
- Should we check if the CRL date is valid.
-
CRLChecker
Creates a CRLChecker where the CRL's are in the supplied stores.- Parameters:
certStore
- The store containing the CRL'skeyStore
- The store used to get trusted certs.checkDateValidity
- Should we check if the CRL date is valid.
-
-
Method Details
-
invoke
public void invoke(X509Certificate cert, GSIConstants.CertificateType certType) throws CertPathValidatorException Method that checks the if the certificate is in a CRL, if CRL is available If no CRL is found, then no error is thrown If an expired CRL is found, an error is thrown- Specified by:
invoke
in interfaceCertificateChecker
- Parameters:
cert
- The certificate to validate.certType
- The type of certificate to validate.- Throws:
CertPathValidatorException
- If CRL or CA certificate could not be loaded from store, CRL is not valid or expired, certificate is revoked.
-
checkCRLDateValidity
- Throws:
CertPathValidatorException
-