Name
X509CRLSelector
Synopsis
This class is a
CRLSelector
implementation for X.509 CRLs. The various set
methods allow you to specify criteria that the match(
)
method will use to accept or reject CRL
objects.
Use addIssuerName( )
to specify the
distinguished name of an acceptable
issuer for the CRL, or use setIssuerNames( )
or
setIssuers( )
to specify a
Collection
of valid issuers. Use
setDateAndTime( )
to specify a
Date
for which the CRL must be valid. Use
setMinCRLNumber(
)
and setMaxCRLNumber( )
to
set bounds on the sequence number of the CRL. If you are selecting a
CRL
in order to check for revocation of a
particular X509Certificate
, pass that certificate
to setCertificateChecking( )
. This method does not
actually constrain the returned CRL
objects, but
it may help a CertStore
optimize its search for a
relevant CRL
.
Figure 14-75. java.security.cert.X509CRLSelector
public class X509CRLSelector implements CRLSelector { // Public Constructors public X509CRLSelector( ); // Public Instance Methods 5.0 public void addIssuer(javax.security.auth.x500.X500Principal issuer); public void addIssuerName(String name) throws java.io.IOException; public void addIssuerName(byte[ ] name) throws java.io.IOException; public X509Certificate getCertificateChecking( ); default:null public java.util.Date getDateAndTime( ); default:null public java.util.Collection<Object> getIssuerNames( ); default:null ...
Get Java in a Nutshell, 5th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.