Interface IIssuingCertificateRetriever

Namespace: iText.Signatures

Assembly: itext.sign.dll

Interface helper to support retrieving CAIssuers certificates from Authority Information Access (AIA) Extension in order to support certificate chains with missing certificates and getting CRL response issuer certificates.

public interface IIssuingCertificateRetriever

Methods

GetCrlIssuerCertificates(IX509Crl)

Retrieves certificates that can be used to verify the signature on the CRL response using CRL Authority Information Access (AIA) Extension.

IX509Certificate[] GetCrlIssuerCertificates(IX509Crl crl)

Parameters

crl IX509Crl: CRL response to retrieve issuer for.

Returns

IX509Certificate[]: certificates retrieved from CRL AIA extension or an empty list in case certificates cannot be retrieved.

RetrieveMissingCertificates(IX509Certificate[])

Retrieves missing certificates in chain using certificate Authority Information Access (AIA) Extension.

IX509Certificate[] RetrieveMissingCertificates(IX509Certificate[] chain)

Parameters

chain IX509Certificate[]: certificate chain to restore with at least signing certificate.

Returns

IX509Certificate[]: full chain of trust or maximum chain that could be restored in case missing certificates cannot be retrieved from AIA extension.

SetTrustedCertificates(ICollection<IX509Certificate>)

Sets trusted certificate list to be used for the missing certificates retrieving by the issuer name.

void SetTrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>: certificate list for getting missing certificates in chain or CRL response issuer certificates.

Table of Contents

Interface IIssuingCertificateRetriever

Methods

GetCrlIssuerCertificates(IX509Crl)

Parameters

Returns

RetrieveMissingCertificates(IX509Certificate[])

Parameters

Returns

SetTrustedCertificates(ICollection<IX509Certificate>)

Parameters