Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.opensaml.xml.security.x509
Class PKIXValidationOptions

java.lang.Object
  extended by org.opensaml.xml.security.x509.PKIXValidationOptions
Direct Known Subclasses:
CertPathPKIXValidationOptions
public class PKIXValidationOptions
extends Object

Options which may be supplied to influence the processing behavior of a PKIXTrustEvaluator.

Constructor Summary
PKIXValidationOptions()
          Constructor.
 
Method Summary
 Integer getDefaultVerificationDepth()
          The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
 boolean isProcessCredentialCRLs()
          Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.
 boolean isProcessEmptyCRLs()
          Whether empty CRL's should be processed.
 boolean isProcessExpiredCRLs()
          Whether expired CRL's should be processed.
 void setDefaultVerificationDepth(Integer defaultVerificationDepth)
          The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
 void setProcessCredentialCRLs(boolean processCredentialCRLs)
          Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.
 void setProcessEmptyCRLs(boolean processEmptyCRLs)
          Whether empty CRL's should be processed.
 void setProcessExpiredCRLs(boolean processExpiredCRLs)
          Whether expired CRL's should be processed.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

PKIXValidationOptions

public PKIXValidationOptions()
Constructor.

Method Detail

isProcessEmptyCRLs

public boolean isProcessEmptyCRLs()
Whether empty CRL's should be processed.

Default is: true

Returns:
Returns the processEmptyCRLs.

setProcessEmptyCRLs

public void setProcessEmptyCRLs(boolean processEmptyCRLs)
Whether empty CRL's should be processed.

Default is: true

Parameters:
processEmptyCRLs - The processEmptyCRLs to set.

isProcessExpiredCRLs

public boolean isProcessExpiredCRLs()
Whether expired CRL's should be processed.

Default is: true

Returns:
Returns the processExpiredCRLs.

setProcessExpiredCRLs

public void setProcessExpiredCRLs(boolean processExpiredCRLs)
Whether expired CRL's should be processed.

Default is: true

Parameters:
processExpiredCRLs - The processExpiredCRLs to set.

isProcessCredentialCRLs

public boolean isProcessCredentialCRLs()
Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.

Default is: true

Returns:
Returns the processCredentialCRLs.

setProcessCredentialCRLs

public void setProcessCredentialCRLs(boolean processCredentialCRLs)
Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.

Default is: true

Parameters:
processCredentialCRLs - The processCredentialCRLs to set.

getDefaultVerificationDepth

public Integer getDefaultVerificationDepth()
The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.

Default is: 1

Returns:
Returns the defaultVerificationDepth.

setDefaultVerificationDepth

public void setDefaultVerificationDepth(Integer defaultVerificationDepth)
The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.

Default is: 1

Parameters:
defaultVerificationDepth - The defaultVerificationDepth to set.
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2006-2011 Internet2. All Rights Reserved.