Package org.bouncycastle.jce.provider
Class PKIXAttrCertPathValidatorSpi
java.lang.Object
java.security.cert.CertPathValidatorSpi
org.bouncycastle.jce.provider.PKIXAttrCertPathValidatorSpi
CertPathValidatorSpi implementation for X.509 Attribute Certificates la RFC 3281.
- See Also:
-
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionengineValidate(CertPath certPath, CertPathParameters params) Validates an attribute certificate with the given certificate path.Methods inherited from class java.security.cert.CertPathValidatorSpi
engineGetRevocationChecker
-
Constructor Details
-
PKIXAttrCertPathValidatorSpi
public PKIXAttrCertPathValidatorSpi()
-
-
Method Details
-
engineValidate
public CertPathValidatorResult engineValidate(CertPath certPath, CertPathParameters params) throws CertPathValidatorException, InvalidAlgorithmParameterException Validates an attribute certificate with the given certificate path.paramsmust be an instance ofExtendedPKIXParameters.The target constraints in the
paramsmust be anX509AttributeCertStoreSelectorwith at least the attribute certificate criterion set. Obey that also target informations may be necessary to correctly validate this attribute certificate.The attribute certificate issuer must be added to the trusted attribute issuers with
ExtendedPKIXParameters.setTrustedACIssuers(java.util.Set).- Specified by:
engineValidatein classCertPathValidatorSpi- Parameters:
certPath- The certificate path which belongs to the attribute certificate issuer public key certificate.params- The PKIX parameters.- Returns:
- A
PKIXCertPathValidatorResultof the result of validating thecertPath. - Throws:
InvalidAlgorithmParameterException- ifparamsis inappropriate for this validator.CertPathValidatorException- if the verification fails.
-