RevocationChecker (Digipost Certificate Validator 2.2-RC2 API)

java.lang.Object
- no.digipost.security.crl.RevocationChecker

All Implemented Interfaces:

org.apache.http.ssl.TrustStrategy
```
public class RevocationChecker
extends Object
implements org.apache.http.ssl.TrustStrategy
```
Used for configuring a HTTP Client to check if the server's certificate is revoked. The check is performed against a static Certificate Revocation List (CRL) file. When configuring the SSLContext for a HttpClient, the RevocationChecker is set up as follows:
```
  HttpClientBuilder.create()
      .setSSLContext(SSLContexts.custom()
          .loadTrustMaterial(trustStore, new RevocationChecker(crlPath))
      ).build();
 
```

- Constructor Summary
  
  Constructors
  Constructor Description
  
  RevocationChecker(Path crlPath)
- Method Summary
  
  All Methods Instance Methods Concrete Methods
  Modifier and Type Method Description
  
  boolean isTrusted(X509Certificate[] chain, String authType)
  - Methods inherited from class java.lang.Object
    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

RevocationChecker

public RevocationChecker(Path crlPath)

Method Detail

isTrusted

public boolean isTrusted(X509Certificate[] chain,
                         String authType)
                  throws CertificateException

Specified by:: isTrusted in interface org.apache.http.ssl.TrustStrategy
Throws:: CertificateException