de.xima.fc.cryptography.BouncyCastleSupport

de.xima.fc.certificate.ms.impl.CRLCheckingService

@ApplicationScoped public class CRLCheckingService extends BouncyCastleSupport

Service for checking the revocation status of X.509 certificates using CRLs (Certificate Revocation Lists). This service caches CRLs to reduce network overhead and supports configurable refresh periods.

Constructor Summary

Constructors

Constructor

Description

CRLCheckingService()
Method Summary

Modifier and Type

Method

Description

boolean

isRevoked(X509Certificate cert)

Checks if a given X.509 certificate is revoked by consulting its CRL distribution points.

Methods inherited from class BouncyCastleSupport
buildSignedCertificate, createCMSContentEncryptorBuilder, createContentSigner, createJceKeyTransRecipientInfoGenerator, createKeyFactory, createKeyPairGenerator, createKeyStore, createOpenSSLPKCS8DecryptorProviderBuilder, createPEMKeyConverter, createSignature, createX509CertificateConverter, createX509CertificateFactory

Methods inherited from class Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- CRLCheckingService
  
  public CRLCheckingService()
Method Details
- isRevoked
  
  public boolean isRevoked(X509Certificate cert) throws FcCertificateManagementException
  
  Checks if a given X.509 certificate is revoked by consulting its CRL distribution points.
  
  Parameters:
  
  cert - The X.509 certificate to check.
  
  Returns:
  
  true if the certificate is revoked, false otherwise.
  
  Throws:
  
  FcCertificateManagementException - If there is an issue with CRL processing or retrieval.

Class CRLCheckingService

Constructor Summary

Method Summary

Methods inherited from class BouncyCastleSupport

Methods inherited from class Object

Constructor Details

CRLCheckingService

Method Details

isRevoked