You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ws.apache.org by "Andrei Shakirin (JIRA)" <ji...@apache.org> on 2014/01/06 16:15:51 UTC

[jira] [Created] (WSS-489) Extend Crypto interface with trustDirect() method

Andrei Shakirin created WSS-489:
-----------------------------------

             Summary: Extend Crypto interface with trustDirect() method
                 Key: WSS-489
                 URL: https://issues.apache.org/jira/browse/WSS-489
             Project: WSS4J
          Issue Type: Improvement
            Reporter: Andrei Shakirin
            Assignee: Colm O hEigeartaigh


Normally validate() operation checks only validity period, trusted chain and CRLs of X509 certificate. Basically it is not necessary that certificate exists in the repository/keystore.
However, in some cases it is required that certificate itself is "known" and located in trusted store or XKMS repository (direct trust).

To cover this use case I would propose to extend Crypto interface with verifyTrustDirect() method that cover this functionality. CryptoBase will delegate this method to verifyTrust() by default.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org