Table of Contents

Class TrustedCertificatesStore

Namespace
iText.Signatures.Validation.V1
Assembly
itext.sign.dll

Trusted certificates storage class to be used to configure trusted certificates in a particular way.

public class TrustedCertificatesStore
Inheritance
TrustedCertificatesStore
Inherited Members

Constructors

TrustedCertificatesStore() 

public TrustedCertificatesStore()

Methods

AddCATrustedCertificates(ICollection<IX509Certificate>)

Add collection of certificates to be trusted to be CA certificates.

public virtual void AddCATrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

Remarks

Add collection of certificates to be trusted to be CA certificates. These certificates are considered to be valid trust anchors for certificate generation.

AddCrlTrustedCertificates(ICollection<IX509Certificate>)

Add collection of certificates to be trusted for CRL signing.

public virtual void AddCrlTrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

Remarks

Add collection of certificates to be trusted for CRL signing. These certificates are considered to be valid trust anchors for arbitrarily long certificate chain responsible for CRL generation.

AddGenerallyTrustedCertificates(ICollection<IX509Certificate>)

Add collection of certificates to be trusted for any possible usage.

public virtual void AddGenerallyTrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

AddOcspTrustedCertificates(ICollection<IX509Certificate>)

Add collection of certificates to be trusted for OCSP response signing.

public virtual void AddOcspTrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

Remarks

Add collection of certificates to be trusted for OCSP response signing. These certificates are considered to be valid trust anchors for arbitrarily long certificate chain responsible for OCSP response generation.

AddTimestampTrustedCertificates(ICollection<IX509Certificate>)

Add collection of certificates to be trusted for timestamping.

public virtual void AddTimestampTrustedCertificates(ICollection<IX509Certificate> certificates)

Parameters

certificates ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

Remarks

Add collection of certificates to be trusted for timestamping. These certificates are considered to be valid trust anchors for arbitrarily long certificate chain responsible for timestamp generation.

GetAllTrustedCertificates()

Get all the certificates, which where provided to this storage as trusted certificate.

public virtual ICollection<IX509Certificate> GetAllTrustedCertificates()

Returns

ICollection<IX509Certificate>

of iText.Commons.Bouncycastle.Cert.IX509Certificate instances

GetCertificateTrustedForCA(string)

Get certificate, if any, which is trusted to be a CA, which corresponds to the provided certificate name.

public virtual IX509Certificate GetCertificateTrustedForCA(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

GetCertificateTrustedForCrl(string)

Get certificate, if any, which is trusted for CRL generation, which corresponds to the provided certificate name.

public virtual IX509Certificate GetCertificateTrustedForCrl(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

GetCertificateTrustedForOcsp(string)

Get certificate, if any, which is trusted for OCSP response generation, which corresponds to the provided certificate name.

public virtual IX509Certificate GetCertificateTrustedForOcsp(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

GetCertificateTrustedForTimestamp(string)

Get certificate, if any, which is trusted for timestamp generation, which corresponds to the provided certificate name.

public virtual IX509Certificate GetCertificateTrustedForTimestamp(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

GetGenerallyTrustedCertificate(string)

Get certificate, if any, which is trusted for any usage, which corresponds to the provided certificate name.

public virtual IX509Certificate GetGenerallyTrustedCertificate(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

GetKnownCertificate(string)

Get certificate, if any, which corresponds to the provided certificate name.

public virtual IX509Certificate GetKnownCertificate(string certificateName)

Parameters

certificateName string

string certificate name

Returns

IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate which corresponds to the provided certificate name

IsCertificateGenerallyTrusted(IX509Certificate)

Check if provided certificate is configured to be trusted for any purpose.

public virtual bool IsCertificateGenerallyTrusted(IX509Certificate certificate)

Parameters

certificate IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate to be checked

Returns

bool

true is provided certificate is generally trusted, false otherwise

IsCertificateTrustedForCA(IX509Certificate)

Check if provided certificate is configured to be trusted to be CA.

public virtual bool IsCertificateTrustedForCA(IX509Certificate certificate)

Parameters

certificate IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate to be checked

Returns

bool

true is provided certificate is trusted for certificates generation, false otherwise

IsCertificateTrustedForCrl(IX509Certificate)

Check if provided certificate is configured to be trusted for CRL generation.

public virtual bool IsCertificateTrustedForCrl(IX509Certificate certificate)

Parameters

certificate IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate to be checked

Returns

bool

true is provided certificate is trusted for CRL generation, false otherwise

IsCertificateTrustedForOcsp(IX509Certificate)

Check if provided certificate is configured to be trusted for OCSP response generation.

public virtual bool IsCertificateTrustedForOcsp(IX509Certificate certificate)

Parameters

certificate IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate to be checked

Returns

bool

true is provided certificate is trusted for OCSP generation, false otherwise

IsCertificateTrustedForTimestamp(IX509Certificate)

Check if provided certificate is configured to be trusted for timestamp generation.

public virtual bool IsCertificateTrustedForTimestamp(IX509Certificate certificate)

Parameters

certificate IX509Certificate

iText.Commons.Bouncycastle.Cert.IX509Certificate to be checked

Returns

bool

true is provided certificate is trusted for timestamp generation, false otherwise