oracle.security.crypto.ldap
Class LDAPCertificateValidator
java.lang.Object
oracle.security.crypto.ldap.LDAPCertificateValidator
- All Implemented Interfaces:
- oracle.security.crypto.cert.CertificateValidator, java.io.Serializable
- public class LDAPCertificateValidator
- extends java.lang.Object
- implements oracle.security.crypto.cert.CertificateValidator
Validates a certificate by checking whether it is present in it's subject's LDAP directory entry.
- See Also:
- Serialized Form
Field Summary |
protected javax.naming.directory.DirContext |
ctx
|
Method Summary |
javax.naming.directory.DirContext |
getDirContext()
|
void |
setDirContext(javax.naming.directory.DirContext ctx)
|
oracle.security.crypto.cert.CertificateStatus |
validateCert(oracle.security.crypto.cert.X500Name subject, oracle.security.crypto.cert.X509 c)
Same as validateCert(X509), except allows the subject DN for directory access to be different from the name in the certificate. |
oracle.security.crypto.cert.CertificateStatus |
validateCert(oracle.security.crypto.cert.X509 c)
Validate a certificate using LDAP. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
ctx
protected transient javax.naming.directory.DirContext ctx
LDAPCertificateValidator
public LDAPCertificateValidator()
LDAPCertificateValidator
public LDAPCertificateValidator(javax.naming.directory.DirContext ctx)
getDirContext
public javax.naming.directory.DirContext getDirContext()
setDirContext
public void setDirContext(javax.naming.directory.DirContext ctx)
validateCert
public oracle.security.crypto.cert.CertificateStatus validateCert(oracle.security.crypto.cert.X509 c)
throws oracle.security.crypto.cert.ValidationException
- Validate a certificate using LDAP. The subject's directory entry is checked for presence of user or CA certificates. If a copy of the given certificate is found, the status is returned as VALID. If some certificates were found, but none matched the given one, the status is returned as INVALID. If no certificates were found, or the subject's directory entry was not present, the status is returned as UNKNOWN.
-
- Specified by:
validateCert
in interface oracle.security.crypto.cert.CertificateValidator
-
- Throws:
oracle.security.crypto.cert.ValidationException
validateCert
public oracle.security.crypto.cert.CertificateStatus validateCert(oracle.security.crypto.cert.X500Name subject,
oracle.security.crypto.cert.X509 c)
throws oracle.security.crypto.cert.ValidationException
- Same as validateCert(X509), except allows the subject DN for directory access to be different from the name in the certificate.
-
- Throws:
oracle.security.crypto.cert.ValidationException
Copyright © 2005 , Oracle. All rights reserved.