You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Andrei Shakirin (JIRA)" <ji...@apache.org> on 2013/06/17 10:16:21 UTC

[jira] [Resolved] (CXF-5075) Support for chain trust validation

     [ https://issues.apache.org/jira/browse/CXF-5075?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrei Shakirin resolved CXF-5075.
----------------------------------

    Resolution: Fixed

Patch is applied with minimal changes. Trusted chain unit tests don't work properly under JDK 6. I will investigate it additionally
                
> Support for chain trust validation
> ----------------------------------
>
>                 Key: CXF-5075
>                 URL: https://issues.apache.org/jira/browse/CXF-5075
>             Project: CXF
>          Issue Type: Improvement
>          Components: Services
>    Affects Versions: 3.0.0
>            Reporter: Achim Finke
>            Assignee: Andrei Shakirin
>             Fix For: 3.0.0
>
>         Attachments: xkms-chain-trust-validation.patch
>
>
> Provides a validator which verifies a given subject certificate followed by optional intermediate CAs.
> Further Public Key Infrastructure data about intermediate and trusted CAs is taken from LDAP (filters can be configured via properties).
> As result the validator returns the valid/invalid reason as [IssuerTrust|http://www.w3.org/TR/xkms2/#XKMS_2_0_Section_5_1_8].
> Certificate Revocation Lists are not supported yet.
> Thanks to [~chris@die-schneider.net] for supporting and reviewing.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira