org.opensaml.xml.security.x509
Class CertPathPKIXValidationOptions

java.lang.Object
  extended by org.opensaml.xml.security.x509.PKIXValidationOptions
      extended by org.opensaml.xml.security.x509.CertPathPKIXValidationOptions

public class CertPathPKIXValidationOptions
extends PKIXValidationOptions

Specialization of PKIXValidationOptions which specifies options specific to a PKIXTrustEvaluator based on the Java CertPath API.


Constructor Summary
CertPathPKIXValidationOptions()
          Constructor.
 
Method Summary
 boolean isForceRevocationEnabled()
          If true, the revocation behavior of the underlying CertPath provider will be forced to the value supplied by isRevocationEnabled().
 boolean isRevocationEnabled()
          If isForceRevocationEnabled() is true, the revocation behavior of the underlying CertPath Provider will be forced to this value.
 void setForceRevocationEnabled(boolean forceRevocationEnabled)
          If true, the revocation behavior of the underlying CertPath provider will be forced to the value supplied by isRevocationEnabled().
 void setRevocationEnabled(boolean revocationEnabled)
          If isForceRevocationEnabled() is true, the revocation behavior of the underlying CertPath Provider will be forced to this value.
 
Methods inherited from class org.opensaml.xml.security.x509.PKIXValidationOptions
getDefaultVerificationDepth, isProcessCredentialCRLs, isProcessEmptyCRLs, isProcessExpiredCRLs, setDefaultVerificationDepth, setProcessCredentialCRLs, setProcessEmptyCRLs, setProcessExpiredCRLs
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

CertPathPKIXValidationOptions

public CertPathPKIXValidationOptions()
Constructor.

Method Detail

isForceRevocationEnabled

public boolean isForceRevocationEnabled()
If true, the revocation behavior of the underlying CertPath provider will be forced to the value supplied by isRevocationEnabled(). If false, the revocation behavior of the underlying provider will be determined by the PKIXTrustEvaluator implementation.

Default is: false

Returns:
Returns the forceRevocationEnabled.

setForceRevocationEnabled

public void setForceRevocationEnabled(boolean forceRevocationEnabled)
If true, the revocation behavior of the underlying CertPath provider will be forced to the value supplied by isRevocationEnabled(). If false, the revocation behavior of the underlying provider will be determined by the PKIXTrustEvaluator implementation.

Default is: false

Parameters:
forceRevocationEnabled - The forceRevocationEnabled to set.

isRevocationEnabled

public boolean isRevocationEnabled()
If isForceRevocationEnabled() is true, the revocation behavior of the underlying CertPath Provider will be forced to this value. If the former is false, the revocation behavior of the underlying provider will be determined by the PKIXTrustEvaluator implementation.

Default is: true

Returns:
Returns the revocationEnabled.

setRevocationEnabled

public void setRevocationEnabled(boolean revocationEnabled)
If isForceRevocationEnabled() is true, the revocation behavior of the underlying CertPath Provider will be forced to this value. If the former is false, the revocation behavior of the underlying provider will be determined by the PKIXTrustEvaluator implementation.

Default is: true

Parameters:
revocationEnabled - The revocationEnabled to set.


Copyright © 2006-2011 Internet2. All Rights Reserved.