Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

org.opensaml.xml.security.x509
Class PKIXValidationOptions

java.lang.Object
  extended by org.opensaml.xml.security.x509.PKIXValidationOptions
Direct Known Subclasses:
CertPathPKIXValidationOptions
public class PKIXValidationOptions
extends Object

Options which may be supplied to influence the processing behavior of a PKIXTrustEvaluator.

Field Summary
private  Integer defaultVerificationDepth
          Default verification depth.
private  boolean processCredentialCRLs
          Flag as to whether CRL's supplied in the untrusted credential being evaluated will be processed.
private  boolean processEmptyCRLs
          Flag as to whether empty CRL's will be processed.
private  boolean processExpiredCRLs
          Flag as to whether expired CRL's will be processed.
 
Constructor Summary
PKIXValidationOptions()
          Constructor.
 
Method Summary
 Integer getDefaultVerificationDepth()
          The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
 boolean isProcessCredentialCRLs()
          Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.
 boolean isProcessEmptyCRLs()
          Whether empty CRL's should be processed.
 boolean isProcessExpiredCRLs()
          Whether expired CRL's should be processed.
 void setDefaultVerificationDepth(Integer defaultVerificationDepth)
          The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.
 void setProcessCredentialCRLs(boolean processCredentialCRLs)
          Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.
 void setProcessEmptyCRLs(boolean processEmptyCRLs)
          Whether empty CRL's should be processed.
 void setProcessExpiredCRLs(boolean processExpiredCRLs)
          Whether expired CRL's should be processed.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

processEmptyCRLs

private boolean processEmptyCRLs
Flag as to whether empty CRL's will be processed.

processExpiredCRLs

private boolean processExpiredCRLs
Flag as to whether expired CRL's will be processed.

processCredentialCRLs

private boolean processCredentialCRLs
Flag as to whether CRL's supplied in the untrusted credential being evaluated will be processed.

defaultVerificationDepth

private Integer defaultVerificationDepth
Default verification depth.

Constructor Detail

PKIXValidationOptions

public PKIXValidationOptions()
Constructor.

Method Detail

isProcessEmptyCRLs

public boolean isProcessEmptyCRLs()
Whether empty CRL's should be processed.

Default is: true

Returns:
Returns the processEmptyCRLs.

setProcessEmptyCRLs

public void setProcessEmptyCRLs(boolean processEmptyCRLs)
Whether empty CRL's should be processed.

Default is: true

Parameters:
processEmptyCRLs - The processEmptyCRLs to set.

isProcessExpiredCRLs

public boolean isProcessExpiredCRLs()
Whether expired CRL's should be processed.

Default is: true

Returns:
Returns the processExpiredCRLs.

setProcessExpiredCRLs

public void setProcessExpiredCRLs(boolean processExpiredCRLs)
Whether expired CRL's should be processed.

Default is: true

Parameters:
processExpiredCRLs - The processExpiredCRLs to set.

isProcessCredentialCRLs

public boolean isProcessCredentialCRLs()
Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.

Default is: true

Returns:
Returns the processCredentialCRLs.

setProcessCredentialCRLs

public void setProcessCredentialCRLs(boolean processCredentialCRLs)
Whether CRL's supplied within the untrusted X509Credential being evaluated should be processed.

Default is: true

Parameters:
processCredentialCRLs - The processCredentialCRLs to set.

getDefaultVerificationDepth

public Integer getDefaultVerificationDepth()
The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.

Default is: 1

Returns:
Returns the defaultVerificationDepth.

setDefaultVerificationDepth

public void setDefaultVerificationDepth(Integer defaultVerificationDepth)
The default PKIX maximum path verification depth, if not supplied in the PKIXValidationInformation being evaluated.

Default is: 1

Parameters:
defaultVerificationDepth - The defaultVerificationDepth to set.
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 1999-2013. All Rights Reserved.