public static class X509RevocationTrustManager.Builder extends Object
| Modifier and Type | Method and Description |
|---|---|
X509RevocationTrustManager |
build() |
X509RevocationTrustManager.Builder |
setAcceptedIssuers(X509Certificate[] acceptedIssuers)
Set an array of certificate authority certificates which are trusted for authenticating peers (may be
null) |
X509RevocationTrustManager.Builder |
setCrlStream(InputStream crlStream)
Set the input stream pointing to a certificate revocation list (may be
null). |
X509RevocationTrustManager.Builder |
setMaxCertPath(int maxCertPath)
Set the maximum number of non-self-issued intermediate certificates that may exist in a certification path.
|
X509RevocationTrustManager.Builder |
setNoFallback(boolean noFallback)
Set if only one method of obtaining revocation status should be used.
|
X509RevocationTrustManager.Builder |
setOcspResponderCert(X509Certificate ocspResponderCert)
Set OCSP responder's certificate.
|
X509RevocationTrustManager.Builder |
setOnlyEndEntity(boolean onlyEndEntity)
Set if only leaf certificate revocation should be checked.
|
X509RevocationTrustManager.Builder |
setPreferCrls(boolean preferCrls)
Set if CRL revocation should be executed before OCSP.
|
X509RevocationTrustManager.Builder |
setResponderURI(URI responderURI)
Set an OCSP Responder
URI to override those extracted from certificates. |
X509RevocationTrustManager.Builder |
setSoftFail(boolean softFail)
Set if certificate should be allowed in case the revocation status cannot be obtained.
|
X509RevocationTrustManager.Builder |
setTrustManagerFactory(TrustManagerFactory trustManagerFactory)
Set a
TrustManagerFactory |
X509RevocationTrustManager.Builder |
setTrustStore(KeyStore trustStore)
Set a
KeyStore with the trusted certificates (must not be null) |
public X509RevocationTrustManager.Builder setAcceptedIssuers(X509Certificate[] acceptedIssuers)
null)acceptedIssuers - array of accepted issuerspublic X509RevocationTrustManager.Builder setTrustStore(KeyStore trustStore)
KeyStore with the trusted certificates (must not be null)trustStore - keystore with trusted certificatespublic X509RevocationTrustManager.Builder setTrustManagerFactory(TrustManagerFactory trustManagerFactory)
TrustManagerFactorytrustManagerFactory - the trust manager factorypublic X509RevocationTrustManager.Builder setResponderURI(URI responderURI)
URI to override those extracted from certificates.responderURI - the responder URIpublic X509RevocationTrustManager.Builder setCrlStream(InputStream crlStream)
null). The stream will be automatically closed after the invocationcrlStream - the input streampublic X509RevocationTrustManager.Builder setMaxCertPath(int maxCertPath)
maxCertPath - the maximum cert pathpublic X509RevocationTrustManager.Builder setPreferCrls(boolean preferCrls)
preferCrls - true if CRLs should be preferredpublic X509RevocationTrustManager.Builder setOnlyEndEntity(boolean onlyEndEntity)
onlyEndEntity - true if only leaf certificate should be checkedpublic X509RevocationTrustManager.Builder setSoftFail(boolean softFail)
softFail - true if unknown revocation status is acceptedpublic X509RevocationTrustManager.Builder setNoFallback(boolean noFallback)
noFallback - true if only one method of obtaining revocation status should be usedpublic X509RevocationTrustManager.Builder setOcspResponderCert(X509Certificate ocspResponderCert)
ocspResponderCert - OCSP responder certificatepublic X509RevocationTrustManager build()
Copyright © 2019 JBoss by Red Hat. All rights reserved.