ws-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrei Shakirin (JIRA)" <j...@apache.org>
Subject [jira] [Created] (WSS-489) Extend Crypto interface with trustDirect() method
Date Mon, 06 Jan 2014 15:15:51 GMT
Andrei Shakirin created WSS-489:
-----------------------------------

             Summary: Extend Crypto interface with trustDirect() method
                 Key: WSS-489
                 URL: https://issues.apache.org/jira/browse/WSS-489
             Project: WSS4J
          Issue Type: Improvement
            Reporter: Andrei Shakirin
            Assignee: Colm O hEigeartaigh


Normally validate() operation checks only validity period, trusted chain and CRLs of X509
certificate. Basically it is not necessary that certificate exists in the repository/keystore.
However, in some cases it is required that certificate itself is "known" and located in trusted
store or XKMS repository (direct trust).

To cover this use case I would propose to extend Crypto interface with verifyTrustDirect()
method that cover this functionality. CryptoBase will delegate this method to verifyTrust()
by default.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org


Mime
View raw message