You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ws.apache.org by "Andrei Shakirin (JIRA)" <ji...@apache.org> on 2014/01/06 16:15:51 UTC
[jira] [Created] (WSS-489) Extend Crypto interface with
trustDirect() method
Andrei Shakirin created WSS-489:
-----------------------------------
Summary: Extend Crypto interface with trustDirect() method
Key: WSS-489
URL: https://issues.apache.org/jira/browse/WSS-489
Project: WSS4J
Issue Type: Improvement
Reporter: Andrei Shakirin
Assignee: Colm O hEigeartaigh
Normally validate() operation checks only validity period, trusted chain and CRLs of X509 certificate. Basically it is not necessary that certificate exists in the repository/keystore.
However, in some cases it is required that certificate itself is "known" and located in trusted store or XKMS repository (direct trust).
To cover this use case I would propose to extend Crypto interface with verifyTrustDirect() method that cover this functionality. CryptoBase will delegate this method to verifyTrust() by default.
--
This message was sent by Atlassian JIRA
(v6.1.5#6160)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org