CertPathChecker
Stay organized with collections
Save and categorize content based on your preferences.
Known Indirect Subclasses
| PKIXCertPathChecker |
An abstract class that performs one or more checks on an
X509Certificate. |
| PKIXRevocationChecker |
A PKIXCertPathChecker for checking the revocation status of
certificates with the PKIX algorithm. |
|
Performs one or more checks on each Certificate of a
CertPath.
A CertPathChecker implementation is typically created to extend
a certification path validation algorithm. For example, an implementation
may check for and process a critical private extension of each certificate
in a certification path.
Public Method Summary
|
abstract
void
|
check( Certificate cert)
Performs the check(s) on the specified certificate using its internal
state.
|
|
abstract
void
|
init(boolean forward)
Initializes the internal state of this CertPathChecker.
|
|
abstract
boolean
|
|
Public Methods
public
abstract
void
check
(Certificate cert)
Performs the check(s) on the specified certificate using its internal
state. The certificates are presented in the order specified by the
init method.
Parameters
| cert |
the Certificate to be checked |
public
abstract
void
init
(boolean forward)
Initializes the internal state of this CertPathChecker.
The forward flag specifies the order that certificates will
be passed to the check method (forward or reverse).
Parameters
| forward |
the order that certificates are presented to the
check method. If true, certificates are
presented from target to trust anchor (forward); if
false, from trust anchor to target (reverse). |
public
abstract
boolean
isForwardCheckingSupported
()
Indicates if forward checking is supported. Forward checking refers
to the ability of the CertPathChecker to perform its checks
when certificates are presented to the check method in the
forward direction (from target to trust anchor).
Returns
true if forward checking is supported, false
otherwise
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-07-10 UTC.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-07-10 UTC."],[[["\u003cp\u003e\u003ccode\u003eCertPathChecker\u003c/code\u003e is a public interface used to perform checks on each \u003ccode\u003eCertificate\u003c/code\u003e within a \u003ccode\u003eCertPath\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eIt's primarily used to extend certification path validation algorithms, enabling custom checks like processing critical private extensions.\u003c/p\u003e\n"],["\u003cp\u003eImplementations define how to check certificates via the \u003ccode\u003echeck\u003c/code\u003e method, initialize internal state with \u003ccode\u003einit\u003c/code\u003e, and specify forward checking support with \u003ccode\u003eisForwardCheckingSupported\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003ePKIXCertPathChecker\u003c/code\u003e and \u003ccode\u003ePKIXRevocationChecker\u003c/code\u003e are known indirect subclasses, offering specific functionalities within the PKIX algorithm.\u003c/p\u003e\n"]]],["`CertPathChecker` performs checks on each `Certificate` within a `CertPath`. It extends certification path validation by checking for and processing critical private extensions. Key actions include `check(Certificate cert)` to validate a certificate using internal state, `init(boolean forward)` to set the order of certificate checks (forward or reverse), and `isForwardCheckingSupported()` to determine if forward checking is available. Subclasses include `PKIXCertPathChecker` and `PKIXRevocationChecker`.\n"],null,["# CertPathChecker\n\npublic interface **CertPathChecker** \n\n|---|---|---|\n| Known Indirect Subclasses [PKIXCertPathChecker](../../../../reference/java/security/cert/PKIXCertPathChecker.html), [PKIXRevocationChecker](../../../../reference/java/security/cert/PKIXRevocationChecker.html) |----------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------| | [PKIXCertPathChecker](../../../../reference/java/security/cert/PKIXCertPathChecker.html) | An abstract class that performs one or more checks on an `X509Certificate`. | | [PKIXRevocationChecker](../../../../reference/java/security/cert/PKIXRevocationChecker.html) | A `PKIXCertPathChecker` for checking the revocation status of certificates with the PKIX algorithm. | |||\n\n\u003cbr /\u003e\n\nPerforms one or more checks on each `Certificate` of a\n`CertPath`.\n\nA `CertPathChecker` implementation is typically created to extend\na certification path validation algorithm. For example, an implementation\nmay check for and process a critical private extension of each certificate\nin a certification path. \n\n### Public Method Summary\n\n|------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|\n| abstract void | [check](../../../../reference/java/security/cert/CertPathChecker.html#check(java.security.cert.Certificate))([Certificate](../../../../reference/java/security/cert/Certificate.html) cert) Performs the check(s) on the specified certificate using its internal state. |\n| abstract void | [init](../../../../reference/java/security/cert/CertPathChecker.html#init(boolean))(boolean forward) Initializes the internal state of this `CertPathChecker`. |\n| abstract boolean | [isForwardCheckingSupported](../../../../reference/java/security/cert/CertPathChecker.html#isForwardCheckingSupported())() Indicates if forward checking is supported. |\n\nPublic Methods\n--------------\n\n#### public abstract void\n**check**\n([Certificate](../../../../reference/java/security/cert/Certificate.html) cert)\n\nPerforms the check(s) on the specified certificate using its internal\nstate. The certificates are presented in the order specified by the\n`init` method. \n\n##### Parameters\n\n| cert | the `Certificate` to be checked |\n|------|---------------------------------|\n\n##### Throws\n\n| [CertPathValidatorException](../../../../reference/java/security/cert/CertPathValidatorException.html) | if the specified certificate does not pass the check |\n|--------------------------------------------------------------------------------------------------------|------------------------------------------------------|\n\n#### public abstract void\n**init**\n(boolean forward)\n\nInitializes the internal state of this `CertPathChecker`.\n\nThe `forward` flag specifies the order that certificates will\nbe passed to the [check](../../../../reference/java/security/cert/CertPathChecker.html#check(java.security.cert.Certificate)) method (forward or reverse). \n\n##### Parameters\n\n| forward | the order that certificates are presented to the `check` method. If `true`, certificates are presented from target to trust anchor (forward); if `false`, from trust anchor to target (reverse). |\n|---------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|\n\n##### Throws\n\n| [CertPathValidatorException](../../../../reference/java/security/cert/CertPathValidatorException.html) | if this `CertPathChecker` is unable to check certificates in the specified order |\n|--------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------|\n\n#### public abstract boolean\n**isForwardCheckingSupported**\n()\n\nIndicates if forward checking is supported. Forward checking refers\nto the ability of the `CertPathChecker` to perform its checks\nwhen certificates are presented to the `check` method in the\nforward direction (from target to trust anchor). \n\n##### Returns\n\n- `true` if forward checking is supported, `false` otherwise"]]
