Name

X509CRLSelector

Synopsis

This class is a CRLSelector implementation for X.509 CRLs. The various set methods allow you to specify criteria that the match( ) method will use to accept or reject CRL objects. Use addIssuerName( ) to specify the distinguished name of an acceptable issuer for the CRL, or use setIssuerNames( ) or setIssuers( ) to specify a Collection of valid issuers. Use setDateAndTime( ) to specify a Date for which the CRL must be valid. Use setMinCRLNumber( ) and setMaxCRLNumber( ) to set bounds on the sequence number of the CRL. If you are selecting a CRL in order to check for revocation of a particular X509Certificate, pass that certificate to setCertificateChecking( ). This method does not actually constrain the returned CRL objects, but it may help a CertStore optimize its search for a relevant CRL.

java.security.cert.X509CRLSelector

Figure 14-75. java.security.cert.X509CRLSelector

public class X509CRLSelector implements CRLSelector {
// Public Constructors
     public X509CRLSelector( );  
// Public Instance Methods
                  5.0  public void addIssuer(javax.security.auth.x500.X500Principal issuer);  
     public void addIssuerName(String name) throws java.io.IOException;  
     public void addIssuerName(byte[ ] name) throws java.io.IOException;  
     public X509Certificate getCertificateChecking( ); default:null
     public java.util.Date getDateAndTime( );  default:null
     public java.util.Collection<Object> getIssuerNames( );  default:null ...

Get Java in a Nutshell, 5th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.