Applications with specific policy requirements are expected to have a list of those policies which they will accept and to compare the policy OIDs in the certificate to that list. If this extension is critical, the path validation software MUST be able to interpret this extension (including the optional qualifier), or MUST reject the certificate.
Optional qualifiers are not supported in this implementation, as they are not recommended by RFC 5280. The ASN.1 syntax for this is (IMPLICIT tagging is defined in the module definition):
id-ce-certificatePolicies OBJECT IDENTIFIER ::= { id-ce 32 } certificatePolicies ::= SEQUENCE SIZE (1..MAX) OF PolicyInformation PolicyInformation ::= SEQUENCE { policyIdentifier CertPolicyId, policyQualifiers SEQUENCE SIZE (1..MAX) OF PolicyQualifierInfo OPTIONAL } CertPolicyId ::= OBJECT IDENTIFIER
Extension
Modifier and Type | Field and Description |
---|---|
private List | certPolicies
List of PolicyInformation for this object. |
public static final String |
Access | Constructor and Description |
---|---|
public | CertificatePoliciesExtension(List<PolicyInformation>
the List of PolicyInformation. certPolicies)Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false. |
public | CertificatePoliciesExtension(Boolean
true if the extension is to be treated as critical. critical, List<PolicyInformation> the List of PolicyInformation, cannot be null or empty. certPolicies)Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality. |
public | CertificatePoliciesExtension(Boolean
true if the extension is to be treated as critical. critical, Object an array of DER encoded bytes of the actual value. value)Create the extension from its DER encoded value and criticality. |
Modifier and Type | Method and Description |
---|---|
public void | encode(DerOutputStream
the DerOutputStream to write the extension to. out)Overrides sun. Implements sun. |
private void | |
public List | |
public String | |
public String | toString()
Overrides sun. |
certPolicies | back to summary |
---|---|
private List<PolicyInformation> certPolicies List of PolicyInformation for this object. |
NAME | back to summary |
---|---|
public static final String NAME |
CertificatePoliciesExtension | back to summary |
---|---|
public CertificatePoliciesExtension(List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation; the criticality is set to false.
|
CertificatePoliciesExtension | back to summary |
---|---|
public CertificatePoliciesExtension(Boolean critical, List<PolicyInformation> certPolicies) Create a CertificatePoliciesExtension object from a List of PolicyInformation with specified criticality.
|
CertificatePoliciesExtension | back to summary |
---|---|
public CertificatePoliciesExtension(Boolean critical, Object value) throws IOException Create the extension from its DER encoded value and criticality.
|
encode | back to summary |
---|---|
public void encode(DerOutputStream out) Overrides sun. Implements sun. Write the extension to the DerOutputStream.
|
encodeThis | back to summary |
---|---|
private void encodeThis() |
getCertPolicies | back to summary |
---|---|
public List Get the PolicyInformation value. |
getName | back to summary |
---|---|
public String getName() Overrides sun. Return the name of this extension.
|
toString | back to summary |
---|---|
public String toString() Overrides sun. Return the extension as user readable string.
|