Package org.bouncycastle.jce.provider
Class PKIXAttrCertPathValidatorSpi
- java.lang.Object
-
- java.security.cert.CertPathValidatorSpi
-
- org.bouncycastle.jce.provider.PKIXAttrCertPathValidatorSpi
-
public class PKIXAttrCertPathValidatorSpi extends CertPathValidatorSpi
CertPathValidatorSpi implementation for X.509 Attribute Certificates la RFC 3281.- See Also:
ExtendedPKIXParameters
-
-
Constructor Summary
Constructors Constructor Description PKIXAttrCertPathValidatorSpi()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description CertPathValidatorResult
engineValidate(CertPath certPath, CertPathParameters params)
Validates an attribute certificate with the given certificate path.-
Methods inherited from class java.security.cert.CertPathValidatorSpi
engineGetRevocationChecker
-
-
-
-
Method Detail
-
engineValidate
public CertPathValidatorResult engineValidate(CertPath certPath, CertPathParameters params) throws CertPathValidatorException, InvalidAlgorithmParameterException
Validates an attribute certificate with the given certificate path.params
must be an instance ofExtendedPKIXParameters
.The target constraints in the
params
must be anX509AttributeCertStoreSelector
with at least the attribute certificate criterion set. Obey that also target informations may be necessary to correctly validate this attribute certificate.The attribute certificate issuer must be added to the trusted attribute issuers with
ExtendedPKIXParameters.setTrustedACIssuers(java.util.Set)
.- Specified by:
engineValidate
in classCertPathValidatorSpi
- Parameters:
certPath
- The certificate path which belongs to the attribute certificate issuer public key certificate.params
- The PKIX parameters.- Returns:
- A
PKIXCertPathValidatorResult
of the result of validating thecertPath
. - Throws:
InvalidAlgorithmParameterException
- ifparams
is inappropriate for this validator.CertPathValidatorException
- if the verification fails.
-
-