X509EvidenceVerifier.CertificateVerifier (WildFly Elytron Parent 2.1.0.Final API)

All Known Implementing Classes:

X509EvidenceVerifier.DigestCertificateVerifier, X509EvidenceVerifier.EncodedCertificateVerifier, X509EvidenceVerifier.SerialNumberCertificateVerifier, X509EvidenceVerifier.SubjectDnCertificateVerifier

Enclosing class:

X509EvidenceVerifier
```
static interface X509EvidenceVerifier.CertificateVerifier
```
Object allowing to verify X509 certificate against information from LDAP

Method Summary

All Methods Instance Methods Abstract Methods Default Methods
Modifier and Type	Method	Description
`default void`	`addBinaryLdapAttributes(Collection<String> binaryAttributes)`	Construct set of LDAP attributes, which should be loaded as binary data.
`default void`	`addRequiredLdapAttributes(Collection<String> requiredAttributes)`	Construct set of LDAP attributes, which should be loaded to be able to `verifyCertificate(java.security.cert.X509Certificate, javax.naming.directory.Attributes)`.
`boolean`	`verifyCertificate(X509Certificate certificate, Attributes attributes)`	Verify X509 certificate of user using identity information from LDAP

- Method Detail
  - addRequiredLdapAttributes
```
default void addRequiredLdapAttributes(Collection<String> requiredAttributes)
```
    Construct set of LDAP attributes, which should be loaded to be able to verifyCertificate(java.security.cert.X509Certificate, javax.naming.directory.Attributes).
    
    Parameters:
    
    requiredAttributes - output set of attribute names
  - addBinaryLdapAttributes
```
default void addBinaryLdapAttributes(Collection<String> binaryAttributes)
```
    Construct set of LDAP attributes, which should be loaded as binary data.
    
    Parameters:
    
    binaryAttributes - output set of attribute names
  - verifyCertificate
```
boolean verifyCertificate(X509Certificate certificate,
                          Attributes attributes)
                   throws NamingException,
                          RealmUnavailableException
```
    Verify X509 certificate of user using identity information from LDAP
    
    Parameters:
    
    certificate - X509 certificate to verify
    
    attributes - LDAP attributes values of given identity
    
    Returns:
    
    if certificate was accepted by this verifier
    
    Throws:
    
    NamingException - when problem with LDAP
    
    RealmUnavailableException