Class ValidationPolicyWithCryptographicSuite
java.lang.Object
eu.europa.esig.dss.validation.policy.ValidationPolicyWithCryptographicSuite
- All Implemented Interfaces:
ValidationPolicy
This class wraps a provided
eu.europa.esig.dss.model.policy.ValidationPolicy and
eu.europa.esig.dss.model.policy.CryptographicSuites, whether applicable.
The class manages the returned data.-
Constructor Summary
ConstructorsConstructorDescriptionValidationPolicyWithCryptographicSuite(ValidationPolicy validationPolicy) Default constructor to create a validation policy with cryptographic suites wrapper -
Method Summary
Modifier and TypeMethodDescriptionReturns AcceptablePDFAProfiles constraint if present in the policy, null otherwisegetAcceptableRevocationDataFoundConstraint(Context context, SubContext subContext) Returns acceptable revocation data available constraintReturns AcceptedContainerTypes constraint if present in the policy, null otherwiseReturns AcceptedMimeTypeContents constraint if present in the policy, null otherwiseReturns AcceptedZipComments constraint if present in the policy, null otherwiseReturns AllFilesSigned constraint if present in the policy, null otherwisegetAnnotationChangesConstraint(Context context) This constraint checks whether a PDF document contains annotation creation, modification or deletion modifications after the current signature's revisionsgetArchiveTimeStampConstraint(Context context) Indicates if the presence of unsigned property: archive-time-stamp should be checked.Returns timestamp AtsHashIndex constraint if present in the policy, null otherwiseThis constraint checks if the certificate is not expired on best-signature-timegetByteRangeAllDocumentConstraint(Context context) This constraint checks if ByteRange is valid for all signatures and document timestamps within PDF NOTE: applicable only for PAdESgetByteRangeCollisionConstraint(Context context) This constraint checks if ByteRange does not collide with other signature byte ranges NOTE: applicable only for PAdESgetByteRangeConstraint(Context context) This constraint checks if ByteRange dictionary is valid NOTE: applicable only for PAdESgetCertificateAuthorityInfoAccessPresentConstraint(Context context, SubContext subContext) Returns CertificateAuthorityInfoAccessPresent constraint if present in the policy, null otherwisegetCertificateCAConstraint(Context context, SubContext subContext) Returns certificate CA constraintgetCertificateCommonNameConstraint(Context context, SubContext subContext) Returns CertificateCommonName constraint if present in the policy, null otherwisegetCertificateCountryConstraint(Context context, SubContext subContext) Returns CertificateCountry constraint if present in the policy, null otherwisegetCertificateCryptographicConstraint(Context context, SubContext subContext) This method creates theCryptographicSuitecorresponding to the context parameter.getCertificateEmailConstraint(Context context, SubContext subContext) Returns CertificateEmail constraint if present in the policy, null otherwisegetCertificateExtendedKeyUsageConstraint(Context context, SubContext subContext) Returns certificate extended key usage constraintgetCertificateForbiddenExtensionsConstraint(Context context, SubContext subContext) Returns certificate forbidden extensions constraintgetCertificateGivenNameConstraint(Context context, SubContext subContext) Returns CertificateGivenName constraint if present in the policy, null otherwisegetCertificateIssuedToLegalPersonConstraint(Context context, SubContext subContext) Indicates if the end user certificate used in validating the signature is issued to a legal person.getCertificateIssuedToNaturalPersonConstraint(Context context, SubContext subContext) Indicates if the end user certificate used in validating the signature is issued to a natural person.getCertificateIssuerNameConstraint(Context context, SubContext subContext) Returns certificate IssuerName constraintgetCertificateKeyUsageConstraint(Context context, SubContext subContext) Returns certificate key usage constraintgetCertificateLocalityConstraint(Context context, SubContext subContext) Returns CertificateLocality constraint if present in the policy, null otherwisegetCertificateMaxPathLengthConstraint(Context context, SubContext subContext) Returns certificate MaxPathLength constraintgetCertificateMinQcEuLimitValueConstraint(Context context, SubContext subContext) Indicates the minimal allowed QcEuLimitValue transaction limit for which the end user certificate used for the signature can be used.getCertificateMinQcEuRetentionPeriodConstraint(Context context, SubContext subContext) Indicates the minimal allowed QC retention period for material information relevant to the use of the end user certificate used for the signature.getCertificateNameConstraintsConstraint(Context context, SubContext subContext) Returns certificate NameConstraints constraintgetCertificateNoRevAvailConstraint(Context context, SubContext subContext) Returns certificate NoRevAvail constraintgetCertificateNotExpiredConstraint(Context context, SubContext subContext) Returns certificate's validity range constraintgetCertificateNotOnHoldConstraint(Context context, SubContext subContext) Returns certificate's not onHold constraintgetCertificateNotRevokedConstraint(Context context, SubContext subContext) Returns certificate's not revoked constraintgetCertificateNotSelfSignedConstraint(Context context, SubContext subContext) Returns certificate's not self-signed constraintgetCertificateOrganizationIdentifierConstraint(Context context, SubContext subContext) Returns CertificateOrganizationIdentifier constraint if present in the policy, null otherwisegetCertificateOrganizationNameConstraint(Context context, SubContext subContext) Returns CertificateOrganizationName constraint if present in the policy, null otherwisegetCertificateOrganizationUnitConstraint(Context context, SubContext subContext) Returns CertificateOrganizationUnit constraint if present in the policy, null otherwisegetCertificatePolicyIdsConstraint(Context context, SubContext subContext) Returns CertificatePolicyIds constraint if present in the policy, null otherwisegetCertificatePolicyQualificationIdsConstraint(Context context, SubContext subContext) Indicates if the CertificatePolicyIds declare the certificate as qualified.getCertificatePolicySupportedByQSCDIdsConstraint(Context context, SubContext subContext) Indicates if the CertificatePolicyIds mandate the certificate as to be supported by a secure signature creation device (QSCD).getCertificatePolicyTreeConstraint(Context context, SubContext subContext) Returns certificate PolicyTree constraintgetCertificatePS2DQcCompetentAuthorityIdConstraint(Context context, SubContext subContext) Indicates the acceptable QC PS2D ids for the certificate used for a signature.getCertificatePS2DQcCompetentAuthorityNameConstraint(Context context, SubContext subContext) Indicates the acceptable QC PS2D names for the certificate used for a signature.getCertificatePS2DQcTypeRolesOfPSPConstraint(Context context, SubContext subContext) Indicates the acceptable QC PS2D roles for the certificate used for a signature.getCertificatePseudonymConstraint(Context context, SubContext subContext) Returns CertificatePseudonym constraint if present in the policy, null otherwisegetCertificatePseudoUsageConstraint(Context context, SubContext subContext) Returns CertificatePseudoUsage constraint if present in the policy, null otherwisegetCertificateQcCCLegislationConstraint(Context context, SubContext subContext) Indicates the country or set of countries under the legislation of which the certificate is issued as a qualified certificate is present.getCertificateQCComplianceConstraint(Context context, SubContext subContext) Indicates if the end user certificate used in validating the signature is QC Compliant.getCertificateQcEuLimitValueCurrencyConstraint(Context context, SubContext subContext) Indicates the allowed currency used to specify certificate's QCLimitValue statement.getCertificateQcEuPDSLocationConstraint(Context context, SubContext subContext) Indicates the location or set of locations of PKI Disclosure Statements.getCertificateQcSSCDConstraint(Context context, SubContext subContext) Indicates if the end user certificate used in validating the signature is mandated to be supported by a secure signature creation device (QSCD).getCertificateQcTypeConstraint(Context context, SubContext subContext) Indicates the certificate is claimed as a certificate of a particular type.getCertificateRevocationInfoAccessPresentConstraint(Context context, SubContext subContext) Returns CertificateRevocationInfoAccessPresent constraint if present in the policy, null otherwisegetCertificateSelfSignedConstraint(Context context, SubContext subContext) Returns certificate's self-signed constraintgetCertificateSemanticsIdentifierConstraint(Context context, SubContext subContext) Indicates the certificate's QCStatement contains an acceptable semantics identifier.getCertificateSerialNumberConstraint(Context context, SubContext subContext) Returns CertificateSerialNumber constraint if present in the policy, null otherwisegetCertificateSignatureConstraint(Context context, SubContext subContext) Returns certificate's signature constraintgetCertificateStateConstraint(Context context, SubContext subContext) Returns CertificateState constraint if present in the policy, null otherwisegetCertificateSunsetDateConstraint(Context context, SubContext subContext) Returns certificate's sunset date constraintgetCertificateSupportedCriticalExtensionsConstraint(Context context, SubContext subContext) Returns certificate supported critical extensions constraintgetCertificateSurnameConstraint(Context context, SubContext subContext) Returns CertificateSurname constraint if present in the policy, null otherwisegetCertificateTitleConstraint(Context context, SubContext subContext) Returns CertificateTitle constraint if present in the policy, null otherwisegetCertifiedRolesConstraint(Context context) Return the mandated signer role.getClaimedRoleConstraint(Context context) Indicates if the unsigned property: claimed-role should be checked.Indicates if the signed property: commitment-type-indication should be checked.getContentHintsConstraint(Context context) Indicates if the signed property: content-hints should be checked.getContentIdentifierConstraint(Context context) Indicates if the signed property: content-identifier should be checked.getContentTimeStampConstraint(Context context) Indicates if the signed property: content-time-stamp should be checked.Indicates if the signed property: content-time-stamp message-imprint should be checked.getContentTypeConstraint(Context context) Indicates if the signed property: content-type should be checked.getCounterSignatureConstraint(Context context) Returns CounterSignature constraint if present in the policy, null otherwisegetCRLNextUpdatePresentConstraint(Context context, SubContext subContext) Returns CRL's nextUpdate present constraintgetDocMDPConstraint(Context context) This constraint checks if a document contains changes after a signature, against permission rules identified within a /DocMDP dictionarygetDocumentTimeStampConstraint(Context context) Indicates if the presence of unsigned property: document timestamp should be checked.getEllipticCurveKeySizeConstraint(Context context) This constraint checks whether a JWA signature has a valid elliptic curve key sizeReturns evidence record ContainerSignedAndTimestampedFilesCovered constraint if present in the policy, null otherwiseThis method returns cryptographic constraints for validation of Evidence RecordReturns DataObjectExistence constraint if present in the policy, null otherwiseReturns DataObjectFound constraint if present in the policy, null otherwiseReturns DataObjectGroup constraint if present in the policy, null otherwiseReturns DataObjectIntact constraint if present in the policy, null otherwiseReturns HashTreeRenewal constraint if present in the policy, null otherwiseReturns SignedFilesCovered constraint if present in the policy, null otherwiseReturns whether the evidence record is valid (passed a complete evidence record validation process).getFieldMDPConstraint(Context context) This constraint checks if a document contains changes after a signature, against permission rules identified within a /FieldMDP dictionaryReturns FilenameAdherence constraint if present in the policy, null otherwisegetFormFillChangesConstraint(Context context) This constraint checks whether a PDF document contains form fill or signing modifications after the current signature's revisionsReturns FullScope constraint if present in the policy, null otherwisegetKeyIdentifierMatch(Context context) Indicates if the value of 'kid' (key identifier) header parameter matches the signing-certificate used to create the signaturegetKeyIdentifierPresent(Context context) Indicates if the 'kid' (key identifier) header parameter is present within the protected header of the signaturegetLTALevelTimeStampConstraint(Context context) Indicates if the presence of unsigned property: archive-time-stamp or document timestamp covering the validation data If LTALevelTimeStamp element is absent within the constraint file then null is returned.Indicates if names of all matching documents match to the manifest entry namesIndicates if the manifested document is foundIndicates if all manifest entries have been foundIndicates if the manifested document is intactReturns ManifestFilePresent constraint if present in the policy, null otherwiseIndicates if the signed property: message-digest (for CAdES) or SignedProperties (for XAdES) should be checked.Returns MimeTypeFilePresent constraint if present in the policy, null otherwisegetOCSPNextUpdatePresentConstraint(Context context, SubContext subContext) Returns OCSP's nextUpdate present constraintThe method returns OCSPCertHashMatch constraintThe method returns OCSPCertHashPresent constraintThe method returns OCSPResponderIdMatch constraintReturns PDFACompliant constraint if present in the policy, null otherwisegetPdfAnnotationOverlapConstraint(Context context) Indicates if a PDF annotation overlapping check should be proceeded.getPdfPageDifferenceConstraint(Context context) Indicates if a PDF page difference check should be proceeded.This constraint checks if signature dictionary is consistent across PDF revisions.getPdfVisualDifferenceConstraint(Context context) Indicates if a PDF visual difference check should be proceeded.Returns the policy description.Returns the name of the policy.This constraint requests the presence of the trust anchor in the certificate chain.Indicates if the referenced data is foundgetReferenceDataIntactConstraint(Context context) Indicates if the referenced data is intactIndicates if the referenced document names match the manifest entry referencesIndicates if the whole certificate chain is covered by the Signing Certificate attribute.The method returns RevocationIssuerKnowsCertificate constraintgetRevocationDataAvailableConstraint(Context context, SubContext subContext) Returns revocation data available constraintgetRevocationDataSkipConstraint(Context context, SubContext subContext) Returns RevocationDataSkip constraint if present in the policy, null otherwisegetRevocationFreshnessConstraint(Context context, SubContext subContext) Returns revocation data's freshness constraintgetRevocationFreshnessNextUpdateConstraint(Context context, SubContext subContext) Returns revocation data's freshness for nextUpdate check constraintThe method returns RevocationIssuerHasInformationAboutCertificate constraintThe method returns RevocationIssuerKnown constraintgetRevocationIssuerNotExpiredConstraint(Context context, SubContext subContext) Returns revocation issuer's validity range constraintThe method returns RevocationIssuerValidAtProductionTime constraintReturns RevocationTimeAgainstBestSignatureTime constraint if present in the policy, null otherwiseThe method returns SelfIssuedOCSP constraintgetSigFieldLockConstraint(Context context) This constraint checks if a document contains changes after a signature, against permission rules identified within a /SigFieldLock dictionaryThis method creates theCryptographicSuitecorresponding to the context parameter.getSignatureDuplicatedConstraint(Context context) Indicates if the signature is not ambiguousgetSignatureFormatConstraint(Context context) Returns SignatureFormat constraint if present in the policy, null otherwisegetSignatureIntactConstraint(Context context) Indicates if the signature is intactgetSignaturePolicyConstraint(Context context) Indicates if the signature policy should be checked.Indicates if the signature policy validation should be processed.getSignaturePolicyPolicyHashValid(Context context) Indicates if digest present in a SignaturePolicyIdentifier shall match to the extracted policy contentIndicates if a SignaturePolicyStore unsigned attribute, containing a used policy binaries, presence shall be checkedgetSignatureTimeStampConstraint(Context context) Indicates if the presence of unsigned property: signature-time-stamp should be checked.Returns SignedFilesPresent constraint if present in the policy, null otherwiseThis constraint checks if only one SignerInfo is present into a SignerInformationStore NOTE: applicable only for PAdESgetSignerLocationConstraint(Context context) Indicates if the signed property: signer-location should be checked.Indicates if the signing certificate attribute is presentChecks if a used DigestAlgorithm in signing-certificate-reference creation matches the corresponding cryptographic constraintIndicates if the signing certificate reference's digest value matchesIndicates if the signing certificate reference's digest value is presentIndicates if the signing certificate reference's issuer serial matchesIndicates if signing-certificate has been identified.Indicates if the Signing Certificate attribute should be checked against the certificate chain.getSigningDurationRule(Context context) Indicates if the signed property: signing-time should be checked.getStructuralValidationConstraint(Context context) Indicates if the structural validation should be checked.The method returns ThisUpdatePresent constraintThis constraint checks if the timestamp order is coherentReturns timestamp ContainerSignedAndTimestampedFilesCovered constraint if present in the policy, null otherwiseReturns TimestampDelay constraint if present in the policy, null otherwiseIndicates if the timestamp's TSTInfo.tsa field's value matches the timestamp's issuer distinguishing name when presentIndicates if the timestamp's TSTInfo.tsa field's value and order match the timestamp's issuer distinguishing name when presentIndicates if the timestamp's TSTInfo.tsa field is presentReturns whether the time-stamp is valid (passed either basic signature validation process or past signature validation).getTLevelTimeStampConstraint(Context context) Indicates if the presence of unsigned property: signature-time-stamp or document timestamp If TLevelTimeStamp element is absent within the constraint file then null is returned.Returns TLFreshness constraint if present in the policy, null otherwiseReturns TLNotExpired constraint if present in the policy, null otherwiseReturns TLStructure constraint if present in the policy, null otherwiseReturns TLVersion constraint if present in the policy, null otherwiseReturns TLWellSigned constraint if present in the policy, null otherwisegetTrustServiceStatusConstraint(Context context) Returns trusted service status constraintReturns trusted service type identifier constraintgetUndefinedChangesConstraint(Context context) This constraint checks whether a PDF document contains undefined object modifications after the current signature's revisionsIndicates if the signing certificate is not ambiguously determinesThe method returns UnknownStatus constraintIndicates if the presence of unsigned property: validation data references only timestamp should be checked.Indicates if the presence of unsigned property: validation data timestamp should be checked.Returns the used validation model (default is SHELL).Returns ZipCommentPresent constraint if present in the policy, null otherwisebooleanReturns if EIDAS constraints present (qualification check shall be performed)voidsetCryptographicSuite(CryptographicSuite cryptographicSuite) This method sets global cryptographic suite, to be applied when no context-specific cryptographic rules are defined.voidsetCryptographicSuite(CryptographicSuite cryptographicSuite, Context context) This method sets cryptographic suite for a specificContext.voidsetCryptographicSuite(CryptographicSuite cryptographicSuite, Context context, SubContext subContext) This method sets cryptographic suite for a specific combination of aContextand aSubContext.toString()
-
Constructor Details
-
ValidationPolicyWithCryptographicSuite
Default constructor to create a validation policy with cryptographic suites wrapper- Parameters:
validationPolicy-ValidationPolicy
-
-
Method Details
-
setCryptographicSuite
This method sets global cryptographic suite, to be applied when no context-specific cryptographic rules are defined. The provided cryptographic suite will overwrite the current settings for the global cryptographic suite.- Parameters:
cryptographicSuite-CryptographicSuite
-
setCryptographicSuite
This method sets cryptographic suite for a specificContext. The provided cryptographic suite will overwrite the current settings only for the defined applicability scope.- Parameters:
cryptographicSuite-CryptographicSuitecontext-Contextspecific context to apply the cryptographic constraints for
-
setCryptographicSuite
public void setCryptographicSuite(CryptographicSuite cryptographicSuite, Context context, SubContext subContext) This method sets cryptographic suite for a specific combination of aContextand aSubContext. The provided cryptographic suite will overwrite the current settings only for the defined applicability scope.- Parameters:
cryptographicSuite-CryptographicSuitecontext-Contextspecific context to apply the cryptographic constraints forsubContext-SubContextof the selectedcontext
-
getPolicyName
Description copied from interface:ValidationPolicyReturns the name of the policy.- Specified by:
getPolicyNamein interfaceValidationPolicy- Returns:
String
-
getPolicyDescription
Description copied from interface:ValidationPolicyReturns the policy description.- Specified by:
getPolicyDescriptionin interfaceValidationPolicy- Returns:
String
-
getSignaturePolicyConstraint
Description copied from interface:ValidationPolicyIndicates if the signature policy should be checked. If AcceptablePolicies element is absent within the constraint file then null is returned, otherwise the list of identifiers is initialised.- Specified by:
getSignaturePolicyConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigningTime element is present in the constraint file, null otherwise.
-
getSignaturePolicyIdentifiedConstraint
Description copied from interface:ValidationPolicyIndicates if the signature policy validation should be processed. If SignaturePolicyIdentifier found, but not relevant SignaturePolicy is retrieved, the check fails.- Specified by:
getSignaturePolicyIdentifiedConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignaturePolicy shall be identified
-
getSignaturePolicyStorePresentConstraint
Description copied from interface:ValidationPolicyIndicates if a SignaturePolicyStore unsigned attribute, containing a used policy binaries, presence shall be checked- Specified by:
getSignaturePolicyStorePresentConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignaturePolicyStore presence shall be checked
-
getSignaturePolicyPolicyHashValid
Description copied from interface:ValidationPolicyIndicates if digest present in a SignaturePolicyIdentifier shall match to the extracted policy content- Specified by:
getSignaturePolicyPolicyHashValidin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignaturePolicyIdentifier digest shall match
-
getStructuralValidationConstraint
Description copied from interface:ValidationPolicyIndicates if the structural validation should be checked. If StructuralValidation element is absent within the constraint file then null is returned.- Specified by:
getStructuralValidationConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif StructuralValidation element is present in the constraint file, null otherwise.
-
getSigningCertificateRefersCertificateChainConstraint
Description copied from interface:ValidationPolicyIndicates if the Signing Certificate attribute should be checked against the certificate chain. If SigningCertificateRefersCertificateChain element is absent within the constraint file then null is returned.- Specified by:
getSigningCertificateRefersCertificateChainConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigningCertificateRefersCertificateChain element is present in the constraint file, null otherwise.
-
getReferencesToAllCertificateChainPresentConstraint
Description copied from interface:ValidationPolicyIndicates if the whole certificate chain is covered by the Signing Certificate attribute. If ReferencesToAllCertificateChainPresent element is absent within the constraint file then null is returned.- Specified by:
getReferencesToAllCertificateChainPresentConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ReferencesToAllCertificateChainPresent element is present in the constraint file, null otherwise.
-
getSigningCertificateDigestAlgorithmConstraint
Description copied from interface:ValidationPolicyChecks if a used DigestAlgorithm in signing-certificate-reference creation matches the corresponding cryptographic constraint- Specified by:
getSigningCertificateDigestAlgorithmConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigningCertificateDigestAlgorithm for a given context element is present in the constraint file, null otherwise.
-
getSigningDurationRule
Description copied from interface:ValidationPolicyIndicates if the signed property: signing-time should be checked. If SigningTime element is absent within the constraint file then null is returned.- Specified by:
getSigningDurationRulein interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigningTime element is present in the constraint file, null otherwise.
-
getContentTypeConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: content-type should be checked. If ContentType element is absent within the constraint file then null is returned.- Specified by:
getContentTypeConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
ValueRuleif ContentType element is present in the constraint file, null otherwise.
-
getContentHintsConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: content-hints should be checked. If ContentHints element is absent within the constraint file then null is returned.- Specified by:
getContentHintsConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
ValueRuleif ContentHints element is present in the constraint file, null otherwise.
-
getContentIdentifierConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: content-identifier should be checked. If ContentIdentifier element is absent within the constraint file then null is returned.- Specified by:
getContentIdentifierConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
ValueRuleif ContentIdentifier element is present in the constraint file, null otherwise.
-
getMessageDigestOrSignedPropertiesConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: message-digest (for CAdES) or SignedProperties (for XAdES) should be checked. If the relative element is absent within the constraint file then null is returned.- Specified by:
getMessageDigestOrSignedPropertiesConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif message-digests/SignedProperties element is present in the constraint file, null otherwise.
-
getEllipticCurveKeySizeConstraint
Description copied from interface:ValidationPolicyThis constraint checks whether a JWA signature has a valid elliptic curve key size- Specified by:
getEllipticCurveKeySizeConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif EllipticCurveKeySize element is present in the constraint file, null otherwise.
-
getCommitmentTypeIndicationConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: commitment-type-indication should be checked. If CommitmentTypeIndication element is absent within the constraint file then null is returned, otherwise the list of identifiers is initialised.- Specified by:
getCommitmentTypeIndicationConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
MultiValuesRuleif CommitmentTypeIndication element is present in the constraint file, null otherwise.
-
getSignerLocationConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: signer-location should be checked. If SignerLocation element is absent within the constraint file then null is returned.- Specified by:
getSignerLocationConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignerLocation element is present in the constraint file, null otherwise.
-
getContentTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: content-time-stamp should be checked. If ContentTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getContentTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ContentTimeStamp element is present in the constraint file, null otherwise.
-
getContentTimeStampMessageImprintConstraint
Description copied from interface:ValidationPolicyIndicates if the signed property: content-time-stamp message-imprint should be checked. If ContentTimeStampMessageImprint element is absent within the constraint file then null is returned.- Specified by:
getContentTimeStampMessageImprintConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ContentTimeStampMessageImprint element is present in the constraint file, null otherwise.
-
getClaimedRoleConstraint
Description copied from interface:ValidationPolicyIndicates if the unsigned property: claimed-role should be checked. If ClaimedRoles element is absent within the constraint file then null is returned.- Specified by:
getClaimedRoleConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
MultiValuesRuleif ClaimedRoles element is present in the constraint file, null otherwise.
-
getCertifiedRolesConstraint
Description copied from interface:ValidationPolicyReturn the mandated signer role.- Specified by:
getCertifiedRolesConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
MultiValuesRule
-
getSignatureCryptographicConstraint
Description copied from interface:ValidationPolicyThis method creates theCryptographicSuitecorresponding to the context parameter. If AcceptableEncryptionAlgo is not present in the constraint file the null is returned.- Specified by:
getSignatureCryptographicConstraintin interfaceValidationPolicy- Parameters:
context- The context of the signature cryptographic constraints: MainSignature, Timestamp, Revocation- Returns:
CryptographicSuiteif AcceptableEncryptionAlgo for a given context element is present in the constraint file, null otherwise.
-
getCertificateCryptographicConstraint
public CryptographicSuite getCertificateCryptographicConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyThis method creates theCryptographicSuitecorresponding to the context parameter. If AcceptableEncryptionAlgo is not present in the constraint file the null is returned.- Specified by:
getCertificateCryptographicConstraintin interfaceValidationPolicy- Parameters:
context- The context of the signature cryptographic constraints: MainSignature, Timestamp, RevocationsubContext- the sub context of the signature cryptographic constraints: EMPTY (signature itself), SigningCertificate, CACertificate- Returns:
CryptographicSuiteif AcceptableEncryptionAlgo for a given context element is present in the constraint file, null otherwise.
-
getEvidenceRecordCryptographicConstraint
Description copied from interface:ValidationPolicyThis method returns cryptographic constraints for validation of Evidence Record- Specified by:
getEvidenceRecordCryptographicConstraintin interfaceValidationPolicy- Returns:
CryptographicSuite
-
getCertificateCAConstraint
Description copied from interface:ValidationPolicyReturns certificate CA constraint- Specified by:
getCertificateCAConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CA for a given context element is present in the constraint file, null otherwise.
-
getCertificateIssuerNameConstraint
Description copied from interface:ValidationPolicyReturns certificate IssuerName constraint- Specified by:
getCertificateIssuerNameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif IssuerName for a given context element is present in the constraint file, null otherwise.
-
getCertificateMaxPathLengthConstraint
Description copied from interface:ValidationPolicyReturns certificate MaxPathLength constraint- Specified by:
getCertificateMaxPathLengthConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif MaxPathLength for a given context element is present in the constraint file, null otherwise.
-
getCertificateKeyUsageConstraint
Description copied from interface:ValidationPolicyReturns certificate key usage constraint- Specified by:
getCertificateKeyUsageConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif key-usage for a given context element is present in the constraint file, null otherwise.
-
getCertificateExtendedKeyUsageConstraint
public MultiValuesRule getCertificateExtendedKeyUsageConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns certificate extended key usage constraint- Specified by:
getCertificateExtendedKeyUsageConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif extended key-usage for a given context element is present in the constraint file, null otherwise.
-
getCertificatePolicyTreeConstraint
Description copied from interface:ValidationPolicyReturns certificate PolicyTree constraint- Specified by:
getCertificatePolicyTreeConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif PolicyTree for a given context element is present in the constraint file, null otherwise.
-
getCertificateNameConstraintsConstraint
Description copied from interface:ValidationPolicyReturns certificate NameConstraints constraint- Specified by:
getCertificateNameConstraintsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif NameConstraints for a given context element is present in the constraint file, null otherwise.
-
getCertificateNoRevAvailConstraint
Description copied from interface:ValidationPolicyReturns certificate NoRevAvail constraint- Specified by:
getCertificateNoRevAvailConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif NoRevAvail for a given context element is present in the constraint file, null otherwise.
-
getCertificateSupportedCriticalExtensionsConstraint
public MultiValuesRule getCertificateSupportedCriticalExtensionsConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns certificate supported critical extensions constraint- Specified by:
getCertificateSupportedCriticalExtensionsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif SupportedCriticalExtensions constraint for a given context element is present in the constraint file,null otherwise.
-
getCertificateForbiddenExtensionsConstraint
public MultiValuesRule getCertificateForbiddenExtensionsConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns certificate forbidden extensions constraint- Specified by:
getCertificateForbiddenExtensionsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif ForbiddenExtensions constraint for a given context element is present in the constraint file,null otherwise.
-
getCertificateNotExpiredConstraint
Description copied from interface:ValidationPolicyReturns certificate's validity range constraint- Specified by:
getCertificateNotExpiredConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif NotExpired constraint for a given certificate context is present in the constraint file, null otherwise.
-
getCertificateSunsetDateConstraint
Description copied from interface:ValidationPolicyReturns certificate's sunset date constraint- Specified by:
getCertificateSunsetDateConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif SunsetDate constraint for a given certificate context is present in the constraint file, null otherwise.
-
getProspectiveCertificateChainConstraint
Description copied from interface:ValidationPolicyThis constraint requests the presence of the trust anchor in the certificate chain.- Specified by:
getProspectiveCertificateChainConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ProspectiveCertificateChain element for a given context element is present in the constraint file, null otherwise.
-
getCertificateSignatureConstraint
Description copied from interface:ValidationPolicyReturns certificate's signature constraint- Specified by:
getCertificateSignatureConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif Signature for a given context element is present in the constraint file, null otherwise.
-
getUnknownStatusConstraint
Description copied from interface:ValidationPolicyThe method returns UnknownStatus constraint- Specified by:
getUnknownStatusConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getThisUpdatePresentConstraint
Description copied from interface:ValidationPolicyThe method returns ThisUpdatePresent constraint- Specified by:
getThisUpdatePresentConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getRevocationIssuerKnownConstraint
Description copied from interface:ValidationPolicyThe method returns RevocationIssuerKnown constraint- Specified by:
getRevocationIssuerKnownConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getRevocationIssuerValidAtProductionTimeConstraint
Description copied from interface:ValidationPolicyThe method returns RevocationIssuerValidAtProductionTime constraint- Specified by:
getRevocationIssuerValidAtProductionTimeConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getRevocationAfterCertificateIssuanceConstraint
Description copied from interface:ValidationPolicyThe method returns RevocationIssuerKnowsCertificate constraint- Specified by:
getRevocationAfterCertificateIssuanceConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getRevocationHasInformationAboutCertificateConstraint
Description copied from interface:ValidationPolicyThe method returns RevocationIssuerHasInformationAboutCertificate constraint- Specified by:
getRevocationHasInformationAboutCertificateConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getOCSPResponseResponderIdMatchConstraint
Description copied from interface:ValidationPolicyThe method returns OCSPResponderIdMatch constraint- Specified by:
getOCSPResponseResponderIdMatchConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getOCSPResponseCertHashPresentConstraint
Description copied from interface:ValidationPolicyThe method returns OCSPCertHashPresent constraint- Specified by:
getOCSPResponseCertHashPresentConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getOCSPResponseCertHashMatchConstraint
Description copied from interface:ValidationPolicyThe method returns OCSPCertHashMatch constraint- Specified by:
getOCSPResponseCertHashMatchConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getSelfIssuedOCSPConstraint
Description copied from interface:ValidationPolicyThe method returns SelfIssuedOCSP constraint- Specified by:
getSelfIssuedOCSPConstraintin interfaceValidationPolicy- Returns:
LevelRule
-
getRevocationDataAvailableConstraint
Description copied from interface:ValidationPolicyReturns revocation data available constraint- Specified by:
getRevocationDataAvailableConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif RevocationDataAvailable for a given context element is present in the constraint file, null otherwise.
-
getAcceptableRevocationDataFoundConstraint
Description copied from interface:ValidationPolicyReturns acceptable revocation data available constraint- Specified by:
getAcceptableRevocationDataFoundConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif AcceptableRevocationDataFound for a given context element is present in the constraint file, null otherwise.
-
getCRLNextUpdatePresentConstraint
Description copied from interface:ValidationPolicyReturns CRL's nextUpdate present constraint- Specified by:
getCRLNextUpdatePresentConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CRLNextUpdatePresent for a given context element is present in the constraint file, null otherwise.
-
getOCSPNextUpdatePresentConstraint
Description copied from interface:ValidationPolicyReturns OCSP's nextUpdate present constraint- Specified by:
getOCSPNextUpdatePresentConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif OCSPNextUpdatePresent for a given context element is present in the constraint file, null otherwise.
-
getRevocationFreshnessConstraint
Description copied from interface:ValidationPolicyReturns revocation data's freshness constraint- Specified by:
getRevocationFreshnessConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
DurationRuleif RevocationFreshness for a given context element is present in the constraint file, null otherwise.
-
getRevocationFreshnessNextUpdateConstraint
Description copied from interface:ValidationPolicyReturns revocation data's freshness for nextUpdate check constraint- Specified by:
getRevocationFreshnessNextUpdateConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif RevocationFreshnessNextUpdate for a given context element is present in the constraint file, null otherwise.
-
getCertificateNotRevokedConstraint
Description copied from interface:ValidationPolicyReturns certificate's not revoked constraint- Specified by:
getCertificateNotRevokedConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif Revoked for a given context element is present in the constraint file, null otherwise.
-
getCertificateNotOnHoldConstraint
Description copied from interface:ValidationPolicyReturns certificate's not onHold constraint- Specified by:
getCertificateNotOnHoldConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif OnHold for a given context element is present in the constraint file, null otherwise.
-
getRevocationIssuerNotExpiredConstraint
Description copied from interface:ValidationPolicyReturns revocation issuer's validity range constraint- Specified by:
getRevocationIssuerNotExpiredConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif RevocationIssuerNotExpired constraint for a given certificate context is present in the constraint file, null otherwise.
-
getCertificateNotSelfSignedConstraint
Description copied from interface:ValidationPolicyReturns certificate's not self-signed constraint- Specified by:
getCertificateNotSelfSignedConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif not self-signed for a given context element is present in the constraint file, null otherwise.
-
getCertificateSelfSignedConstraint
Description copied from interface:ValidationPolicyReturns certificate's self-signed constraint- Specified by:
getCertificateSelfSignedConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif self-signed for a given context element is present in the constraint file, null otherwise.
-
getTrustServiceTypeIdentifierConstraint
Description copied from interface:ValidationPolicyReturns trusted service type identifier constraint- Specified by:
getTrustServiceTypeIdentifierConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif trusted service type identifier for a given context element is present in the constraint file, null otherwise.
-
getTrustServiceStatusConstraint
Description copied from interface:ValidationPolicyReturns trusted service status constraint- Specified by:
getTrustServiceStatusConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif trusted service status for a given context element is present in the constraint file, null otherwise.
-
getCertificatePolicyIdsConstraint
Description copied from interface:ValidationPolicyReturns CertificatePolicyIds constraint if present in the policy, null otherwise- Specified by:
getCertificatePolicyIdsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificatePolicyIds element is present in the constraint file, null otherwise.
-
getCertificatePolicyQualificationIdsConstraint
public LevelRule getCertificatePolicyQualificationIdsConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates if the CertificatePolicyIds declare the certificate as qualified.- Specified by:
getCertificatePolicyQualificationIdsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif PolicyQualificationIds for a given context element is present in the constraint file, null otherwise.
-
getCertificatePolicySupportedByQSCDIdsConstraint
public LevelRule getCertificatePolicySupportedByQSCDIdsConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates if the CertificatePolicyIds mandate the certificate as to be supported by a secure signature creation device (QSCD).- Specified by:
getCertificatePolicySupportedByQSCDIdsConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif PolicySupportedByQSCDIds for a given context element is present in the constraint file, null otherwise.
-
getCertificateQCComplianceConstraint
Description copied from interface:ValidationPolicyIndicates if the end user certificate used in validating the signature is QC Compliant.- Specified by:
getCertificateQCComplianceConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif QcCompliance for a given context element is present in the constraint file, null otherwise.
-
getCertificateQcEuLimitValueCurrencyConstraint
public ValueRule getCertificateQcEuLimitValueCurrencyConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the allowed currency used to specify certificate's QCLimitValue statement.- Specified by:
getCertificateQcEuLimitValueCurrencyConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
NumericValueRuleif QcTransactionLimitCurrency for a given context element is present in the constraint file, null otherwise.
-
getCertificateMinQcEuLimitValueConstraint
public NumericValueRule getCertificateMinQcEuLimitValueConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the minimal allowed QcEuLimitValue transaction limit for which the end user certificate used for the signature can be used.- Specified by:
getCertificateMinQcEuLimitValueConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
NumericValueRuleif MinQcTransactionLimit for a given context element is present in the constraint file, null otherwise.
-
getCertificateMinQcEuRetentionPeriodConstraint
public NumericValueRule getCertificateMinQcEuRetentionPeriodConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the minimal allowed QC retention period for material information relevant to the use of the end user certificate used for the signature.- Specified by:
getCertificateMinQcEuRetentionPeriodConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
NumericValueRuleif MinQcRetentionPeriod for a given context element is present in the constraint file, null otherwise.
-
getCertificateQcSSCDConstraint
Description copied from interface:ValidationPolicyIndicates if the end user certificate used in validating the signature is mandated to be supported by a secure signature creation device (QSCD).- Specified by:
getCertificateQcSSCDConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif QcSSCD for a given context element is present in the constraint file, null otherwise.
-
getCertificateQcEuPDSLocationConstraint
public MultiValuesRule getCertificateQcEuPDSLocationConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the location or set of locations of PKI Disclosure Statements.- Specified by:
getCertificateQcEuPDSLocationConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe the location or set of locations of PKI Disclosure Statements
-
getCertificateQcTypeConstraint
Description copied from interface:ValidationPolicyIndicates the certificate is claimed as a certificate of a particular type.- Specified by:
getCertificateQcTypeConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe types that the certificate is claimed to be of
-
getCertificateQcCCLegislationConstraint
public MultiValuesRule getCertificateQcCCLegislationConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the country or set of countries under the legislation of which the certificate is issued as a qualified certificate is present. NOTE: in order to verify the EU compliance, the value shall be empty (no QcCCLegislation is allowed)- Specified by:
getCertificateQcCCLegislationConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe country or set of countries under the legislation of which the certificate is issued as a qualified certificate
-
getCertificateIssuedToNaturalPersonConstraint
public LevelRule getCertificateIssuedToNaturalPersonConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates if the end user certificate used in validating the signature is issued to a natural person.- Specified by:
getCertificateIssuedToNaturalPersonConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif IssuedToNaturalPerson for a given context element is present in the constraint file, null otherwise.
-
getCertificateIssuedToLegalPersonConstraint
public LevelRule getCertificateIssuedToLegalPersonConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates if the end user certificate used in validating the signature is issued to a legal person.- Specified by:
getCertificateIssuedToLegalPersonConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif IssuedToLegalPerson for a given context element is present in the constraint file, null otherwise.
-
getCertificateSemanticsIdentifierConstraint
public MultiValuesRule getCertificateSemanticsIdentifierConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the certificate's QCStatement contains an acceptable semantics identifier.- Specified by:
getCertificateSemanticsIdentifierConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif SemanticsIdentifier for a given context element is present in the constraint file, null otherwise.
-
getCertificatePS2DQcTypeRolesOfPSPConstraint
public MultiValuesRule getCertificatePS2DQcTypeRolesOfPSPConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the acceptable QC PS2D roles for the certificate used for a signature.- Specified by:
getCertificatePS2DQcTypeRolesOfPSPConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe set of acceptable QC PS2D roles
-
getCertificatePS2DQcCompetentAuthorityNameConstraint
public MultiValuesRule getCertificatePS2DQcCompetentAuthorityNameConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the acceptable QC PS2D names for the certificate used for a signature.- Specified by:
getCertificatePS2DQcCompetentAuthorityNameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe set of acceptable QC PS2D names
-
getCertificatePS2DQcCompetentAuthorityIdConstraint
public MultiValuesRule getCertificatePS2DQcCompetentAuthorityIdConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyIndicates the acceptable QC PS2D ids for the certificate used for a signature.- Specified by:
getCertificatePS2DQcCompetentAuthorityIdConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRulethe set of acceptable QC PS2D ids
-
getSigningCertificateRecognitionConstraint
Description copied from interface:ValidationPolicyIndicates if signing-certificate has been identified.- Specified by:
getSigningCertificateRecognitionConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif Recognition for a given context element is present in the constraint file, null otherwise.
-
getSigningCertificateAttributePresentConstraint
Description copied from interface:ValidationPolicyIndicates if the signing certificate attribute is present- Specified by:
getSigningCertificateAttributePresentConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigningCertificateAttribute for a given context element is present in the constraint file, null otherwise.
-
getUnicitySigningCertificateAttributeConstraint
Description copied from interface:ValidationPolicyIndicates if the signing certificate is not ambiguously determines- Specified by:
getUnicitySigningCertificateAttributeConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif UnicitySigningCertificate for a given context element is present in the constraint file, null otherwise.
-
getSigningCertificateDigestValuePresentConstraint
Description copied from interface:ValidationPolicyIndicates if the signing certificate reference's digest value is present- Specified by:
getSigningCertificateDigestValuePresentConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif DigestValuePresent for a given context element is present in the constraint file, null otherwise.
-
getSigningCertificateDigestValueMatchConstraint
Description copied from interface:ValidationPolicyIndicates if the signing certificate reference's digest value matches- Specified by:
getSigningCertificateDigestValueMatchConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif DigestValueMatch for a given context element is present in the constraint file, null otherwise.
-
getSigningCertificateIssuerSerialMatchConstraint
Description copied from interface:ValidationPolicyIndicates if the signing certificate reference's issuer serial matches- Specified by:
getSigningCertificateIssuerSerialMatchConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif IssuerSerialMatch for a given context element is present in the constraint file, null otherwise.
-
getKeyIdentifierPresent
Description copied from interface:ValidationPolicyIndicates if the 'kid' (key identifier) header parameter is present within the protected header of the signature- Specified by:
getKeyIdentifierPresentin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif KeyIdentifierPresent for a given context element is present in the constraint file, null otherwise.
-
getKeyIdentifierMatch
Description copied from interface:ValidationPolicyIndicates if the value of 'kid' (key identifier) header parameter matches the signing-certificate used to create the signature- Specified by:
getKeyIdentifierMatchin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif KeyIdentifierMatch for a given context element is present in the constraint file, null otherwise.
-
getReferenceDataExistenceConstraint
Description copied from interface:ValidationPolicyIndicates if the referenced data is found- Specified by:
getReferenceDataExistenceConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ReferenceDataExistence for a given context element is present in the constraint file, null otherwise.
-
getReferenceDataIntactConstraint
Description copied from interface:ValidationPolicyIndicates if the referenced data is intact- Specified by:
getReferenceDataIntactConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ReferenceDataIntact for a given context element is present in the constraint file, null otherwise.
-
getReferenceDataNameMatchConstraint
Description copied from interface:ValidationPolicyIndicates if the referenced document names match the manifest entry references- Specified by:
getReferenceDataNameMatchConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ReferenceDataNameMatch for a given context element is present in the constraint file, null otherwise.
-
getManifestEntryObjectExistenceConstraint
Description copied from interface:ValidationPolicyIndicates if the manifested document is found- Specified by:
getManifestEntryObjectExistenceConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ManifestEntryObjectExistence for a given context element is present in the constraint file, null otherwise.
-
getManifestEntryObjectIntactConstraint
Description copied from interface:ValidationPolicyIndicates if the manifested document is intact- Specified by:
getManifestEntryObjectIntactConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ManifestEntryObjectIntact for a given context element is present in the constraint file, null otherwise.
-
getManifestEntryObjectGroupConstraint
Description copied from interface:ValidationPolicyIndicates if all manifest entries have been found- Specified by:
getManifestEntryObjectGroupConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ManifestEntryObjectGroup for a given context element is present in the constraint file, null otherwise.
-
getManifestEntryNameMatchConstraint
Description copied from interface:ValidationPolicyIndicates if names of all matching documents match to the manifest entry names- Specified by:
getManifestEntryNameMatchConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ManifestEntryNameMatch for a given context element is present in the constraint file, null otherwise.
-
getSignatureIntactConstraint
Description copied from interface:ValidationPolicyIndicates if the signature is intact- Specified by:
getSignatureIntactConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
SignatureDataIntactif SignatureIntact for a given context element is present in the constraint file, null otherwise.
-
getSignatureDuplicatedConstraint
Description copied from interface:ValidationPolicyIndicates if the signature is not ambiguous- Specified by:
getSignatureDuplicatedConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
SignatureDuplicatedif SignatureDuplicated for a given context element is present in the constraint file, null otherwise.
-
getSignerInformationStoreConstraint
Description copied from interface:ValidationPolicyThis constraint checks if only one SignerInfo is present into a SignerInformationStore NOTE: applicable only for PAdES- Specified by:
getSignerInformationStoreConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignerInformationStore element for a given context element is present in the constraint file, null otherwise.
-
getByteRangeConstraint
Description copied from interface:ValidationPolicyThis constraint checks if ByteRange dictionary is valid NOTE: applicable only for PAdES- Specified by:
getByteRangeConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ByteRange element for a given context element is present in the constraint file, null otherwise.
-
getByteRangeCollisionConstraint
Description copied from interface:ValidationPolicyThis constraint checks if ByteRange does not collide with other signature byte ranges NOTE: applicable only for PAdES- Specified by:
getByteRangeCollisionConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ByteRangeCollision element for a given context element is present in the constraint file, null otherwise.
-
getByteRangeAllDocumentConstraint
Description copied from interface:ValidationPolicyThis constraint checks if ByteRange is valid for all signatures and document timestamps within PDF NOTE: applicable only for PAdES- Specified by:
getByteRangeAllDocumentConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ByteRangeAllDocument element for a given context element is present in the constraint file, null otherwise.
-
getPdfSignatureDictionaryConstraint
Description copied from interface:ValidationPolicyThis constraint checks if signature dictionary is consistent across PDF revisions. NOTE: applicable only for PAdES- Specified by:
getPdfSignatureDictionaryConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif PdfSignatureDictionary element for a given context element is present in the constraint file, null otherwise.
-
getPdfPageDifferenceConstraint
Description copied from interface:ValidationPolicyIndicates if a PDF page difference check should be proceeded. If PdfPageDifference element is absent within the constraint file then null is returned.- Specified by:
getPdfPageDifferenceConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif PdfPageDifference element is present in the constraint file, null otherwise.
-
getPdfAnnotationOverlapConstraint
Description copied from interface:ValidationPolicyIndicates if a PDF annotation overlapping check should be proceeded. If PdfAnnotationOverlap element is absent within the constraint file then null is returned.- Specified by:
getPdfAnnotationOverlapConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif PdfAnnotationOverlap element is present in the constraint file, null otherwise.
-
getPdfVisualDifferenceConstraint
Description copied from interface:ValidationPolicyIndicates if a PDF visual difference check should be proceeded. If PdfVisualDifference element is absent within the constraint file then null is returned.- Specified by:
getPdfVisualDifferenceConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif PdfVisualDifference element is present in the constraint file, null otherwise.
-
getDocMDPConstraint
Description copied from interface:ValidationPolicyThis constraint checks if a document contains changes after a signature, against permission rules identified within a /DocMDP dictionary- Specified by:
getDocMDPConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif DocMDP element is present in the constraint file, null otherwise.
-
getFieldMDPConstraint
Description copied from interface:ValidationPolicyThis constraint checks if a document contains changes after a signature, against permission rules identified within a /FieldMDP dictionary- Specified by:
getFieldMDPConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif FieldMDP element is present in the constraint file, null otherwise.
-
getSigFieldLockConstraint
Description copied from interface:ValidationPolicyThis constraint checks if a document contains changes after a signature, against permission rules identified within a /SigFieldLock dictionary- Specified by:
getSigFieldLockConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SigFieldLock element is present in the constraint file, null otherwise.
-
getFormFillChangesConstraint
Description copied from interface:ValidationPolicyThis constraint checks whether a PDF document contains form fill or signing modifications after the current signature's revisions- Specified by:
getFormFillChangesConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif FormFillChanges element is present in the constraint file, null otherwise.
-
getAnnotationChangesConstraint
Description copied from interface:ValidationPolicyThis constraint checks whether a PDF document contains annotation creation, modification or deletion modifications after the current signature's revisions- Specified by:
getAnnotationChangesConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif AnnotationChanges element is present in the constraint file, null otherwise.
-
getUndefinedChangesConstraint
Description copied from interface:ValidationPolicyThis constraint checks whether a PDF document contains undefined object modifications after the current signature's revisions- Specified by:
getUndefinedChangesConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif UndefinedChanges element is present in the constraint file, null otherwise.
-
getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraint
Description copied from interface:ValidationPolicyThis constraint checks if the certificate is not expired on best-signature-time- Specified by:
getBestSignatureTimeBeforeExpirationDateOfSigningCertificateConstraintin interfaceValidationPolicy- Returns:
LevelRuleif BestSignatureTimeBeforeExpirationDateOfSigningCertificate element is present in the constraint file, null otherwise.
-
getTimestampCoherenceConstraint
Description copied from interface:ValidationPolicyThis constraint checks if the timestamp order is coherent- Specified by:
getTimestampCoherenceConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TimestampCoherence element is present in the constraint file, null otherwise.
-
getTimestampDelayConstraint
Description copied from interface:ValidationPolicyReturns TimestampDelay constraint if present in the policy, null otherwise- Specified by:
getTimestampDelayConstraintin interfaceValidationPolicy- Returns:
DurationRuleif TimestampDelay element is present in the constraint file, null otherwise.
-
getTimestampValidConstraint
Description copied from interface:ValidationPolicyReturns whether the time-stamp is valid (passed either basic signature validation process or past signature validation). If TimestampValid element is absent within the constraint file then null is returned.- Specified by:
getTimestampValidConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TimestampValid element is present in the constraint file, null otherwise.
-
getTimestampTSAGeneralNamePresent
Description copied from interface:ValidationPolicyIndicates if the timestamp's TSTInfo.tsa field is present- Specified by:
getTimestampTSAGeneralNamePresentin interfaceValidationPolicy- Returns:
LevelRuleif TSAGeneralNamePresent for a given context element is present in the constraint file, null otherwise.
-
getTimestampTSAGeneralNameContentMatch
Description copied from interface:ValidationPolicyIndicates if the timestamp's TSTInfo.tsa field's value matches the timestamp's issuer distinguishing name when present- Specified by:
getTimestampTSAGeneralNameContentMatchin interfaceValidationPolicy- Returns:
LevelRuleif TSAGeneralNameContentMatch for a given context element is present in the constraint file, null otherwise.
-
getTimestampTSAGeneralNameOrderMatch
Description copied from interface:ValidationPolicyIndicates if the timestamp's TSTInfo.tsa field's value and order match the timestamp's issuer distinguishing name when present- Specified by:
getTimestampTSAGeneralNameOrderMatchin interfaceValidationPolicy- Returns:
LevelRuleif TSAGeneralNameOrderMatch for a given context element is present in the constraint file, null otherwise.
-
getAtsHashIndexConstraint
Description copied from interface:ValidationPolicyReturns timestamp AtsHashIndex constraint if present in the policy, null otherwise- Specified by:
getAtsHashIndexConstraintin interfaceValidationPolicy- Returns:
LevelRuleif AtsHashIndex element is present in the constraint file, null otherwise.
-
getTimestampContainerSignedAndTimestampedFilesCoveredConstraint
Description copied from interface:ValidationPolicyReturns timestamp ContainerSignedAndTimestampedFilesCovered constraint if present in the policy, null otherwise- Specified by:
getTimestampContainerSignedAndTimestampedFilesCoveredConstraintin interfaceValidationPolicy- Returns:
LevelRuleif ContainerSignedAndTimestampedFilesCovered element is present in the constraint file, null otherwise.
-
getRevocationTimeAgainstBestSignatureDurationRule
Description copied from interface:ValidationPolicyReturns RevocationTimeAgainstBestSignatureTime constraint if present in the policy, null otherwise- Specified by:
getRevocationTimeAgainstBestSignatureDurationRulein interfaceValidationPolicy- Returns:
LevelRuleif RevocationTimeAgainstBestSignatureTime element is present in the constraint file, null otherwise.
-
getEvidenceRecordValidConstraint
Description copied from interface:ValidationPolicyReturns whether the evidence record is valid (passed a complete evidence record validation process). If EvidenceRecordValid element is absent within the constraint file then null is returned.- Specified by:
getEvidenceRecordValidConstraintin interfaceValidationPolicy- Returns:
LevelRuleif EvidenceRecordValid element is present in the constraint file, null otherwise.
-
getEvidenceRecordDataObjectExistenceConstraint
Description copied from interface:ValidationPolicyReturns DataObjectExistence constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordDataObjectExistenceConstraintin interfaceValidationPolicy- Returns:
LevelRuleif DataObjectExistence element is present
-
getEvidenceRecordDataObjectIntactConstraint
Description copied from interface:ValidationPolicyReturns DataObjectIntact constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordDataObjectIntactConstraintin interfaceValidationPolicy- Returns:
LevelRuleif DataObjectIntact element is present
-
getEvidenceRecordDataObjectFoundConstraint
Description copied from interface:ValidationPolicyReturns DataObjectFound constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordDataObjectFoundConstraintin interfaceValidationPolicy- Returns:
LevelRuleif DataObjectFound element is present
-
getEvidenceRecordDataObjectGroupConstraint
Description copied from interface:ValidationPolicyReturns DataObjectGroup constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordDataObjectGroupConstraintin interfaceValidationPolicy- Returns:
LevelRuleif DataObjectGroup element is present
-
getEvidenceRecordSignedFilesCoveredConstraint
Description copied from interface:ValidationPolicyReturns SignedFilesCovered constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordSignedFilesCoveredConstraintin interfaceValidationPolicy- Returns:
LevelRuleif SignedFilesCovered element is present in the constraint file, null otherwise.
-
getEvidenceRecordContainerSignedAndTimestampedFilesCoveredConstraint
Description copied from interface:ValidationPolicyReturns evidence record ContainerSignedAndTimestampedFilesCovered constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordContainerSignedAndTimestampedFilesCoveredConstraintin interfaceValidationPolicy- Returns:
LevelRuleif ContainerSignedAndTimestampedFilesCovered element is present in the constraint file, null otherwise.
-
getEvidenceRecordHashTreeRenewalConstraint
Description copied from interface:ValidationPolicyReturns HashTreeRenewal constraint if present in the policy, null otherwise- Specified by:
getEvidenceRecordHashTreeRenewalConstraintin interfaceValidationPolicy- Returns:
LevelRuleif HashTreeRenewal element is present
-
getCounterSignatureConstraint
Description copied from interface:ValidationPolicyReturns CounterSignature constraint if present in the policy, null otherwise- Specified by:
getCounterSignatureConstraintin interfaceValidationPolicy- Parameters:
context-ContextDiagnosticDataFacade- Returns:
LevelRuleif CounterSignature element is present in the constraint file, null otherwise.
-
getSignatureTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: signature-time-stamp should be checked. If SignatureTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getSignatureTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif SignatureTimeStamp element is present in the constraint file, null otherwise.
-
getValidationDataTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: validation data timestamp should be checked. If ValidationDataTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getValidationDataTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ValidationDataTimeStamp element is present in the constraint file, null otherwise.
-
getValidationDataRefsOnlyTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: validation data references only timestamp should be checked. If ValidationDataRefsOnlyTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getValidationDataRefsOnlyTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ValidationDataRefsOnlyTimeStamp element is present in the constraint file, null otherwise.
-
getArchiveTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: archive-time-stamp should be checked. If ArchiveTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getArchiveTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif ArchiveTimeStamp element is present in the constraint file, null otherwise.
-
getDocumentTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: document timestamp should be checked. If DocumentTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getDocumentTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif DocumentTimeStamp element is present in the constraint file, null otherwise.
-
getTLevelTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: signature-time-stamp or document timestamp If TLevelTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getTLevelTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif TLevelTimeStamp element is present in the constraint file, null otherwise.
-
getLTALevelTimeStampConstraint
Description copied from interface:ValidationPolicyIndicates if the presence of unsigned property: archive-time-stamp or document timestamp covering the validation data If LTALevelTimeStamp element is absent within the constraint file then null is returned.- Specified by:
getLTALevelTimeStampConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
LevelRuleif LTALevelTimeStamp element is present in the constraint file, null otherwise.
-
getSignatureFormatConstraint
Description copied from interface:ValidationPolicyReturns SignatureFormat constraint if present in the policy, null otherwise- Specified by:
getSignatureFormatConstraintin interfaceValidationPolicy- Parameters:
context-Context- Returns:
MultiValuesRuleif SignatureFormat element is present in the constraint file, null otherwise.
-
getCertificateCountryConstraint
Description copied from interface:ValidationPolicyReturns CertificateCountry constraint if present in the policy, null otherwise- Specified by:
getCertificateCountryConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateCountry element is present in the constraint file, null otherwise.
-
getCertificateLocalityConstraint
Description copied from interface:ValidationPolicyReturns CertificateLocality constraint if present in the policy, null otherwise- Specified by:
getCertificateLocalityConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateLocality element is present in the constraint file, null otherwise.
-
getCertificateStateConstraint
Description copied from interface:ValidationPolicyReturns CertificateState constraint if present in the policy, null otherwise- Specified by:
getCertificateStateConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateState element is present in the constraint file, null otherwise.
-
getCertificateOrganizationIdentifierConstraint
public MultiValuesRule getCertificateOrganizationIdentifierConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns CertificateOrganizationIdentifier constraint if present in the policy, null otherwise- Specified by:
getCertificateOrganizationIdentifierConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateOrganizationIdentifier element is present in the constraint file, null otherwise.
-
getCertificateOrganizationNameConstraint
public MultiValuesRule getCertificateOrganizationNameConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns CertificateOrganizationName constraint if present in the policy, null otherwise- Specified by:
getCertificateOrganizationNameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateOrganizationName element is present in the constraint file, null otherwise.
-
getCertificateOrganizationUnitConstraint
public MultiValuesRule getCertificateOrganizationUnitConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns CertificateOrganizationUnit constraint if present in the policy, null otherwise- Specified by:
getCertificateOrganizationUnitConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateOrganizationUnit element is present in the constraint file, null otherwise.
-
getCertificateSurnameConstraint
Description copied from interface:ValidationPolicyReturns CertificateSurname constraint if present in the policy, null otherwise- Specified by:
getCertificateSurnameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateSurname element is present in the constraint file, null otherwise.
-
getCertificateGivenNameConstraint
Description copied from interface:ValidationPolicyReturns CertificateGivenName constraint if present in the policy, null otherwise- Specified by:
getCertificateGivenNameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateGivenName element is present in the constraint file, null otherwise.
-
getCertificateCommonNameConstraint
Description copied from interface:ValidationPolicyReturns CertificateCommonName constraint if present in the policy, null otherwise- Specified by:
getCertificateCommonNameConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateCommonName element is present in the constraint file, null otherwise.
-
getCertificatePseudonymConstraint
Description copied from interface:ValidationPolicyReturns CertificatePseudonym constraint if present in the policy, null otherwise- Specified by:
getCertificatePseudonymConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificatePseudonym element is present in the constraint file, null otherwise.
-
getCertificatePseudoUsageConstraint
Description copied from interface:ValidationPolicyReturns CertificatePseudoUsage constraint if present in the policy, null otherwise- Specified by:
getCertificatePseudoUsageConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CertificatePseudoUsage element is present in the constraint file, null otherwise.
-
getCertificateTitleConstraint
Description copied from interface:ValidationPolicyReturns CertificateTitle constraint if present in the policy, null otherwise- Specified by:
getCertificateTitleConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateTitle element is present in the constraint file, null otherwise.
-
getCertificateEmailConstraint
Description copied from interface:ValidationPolicyReturns CertificateEmail constraint if present in the policy, null otherwise- Specified by:
getCertificateEmailConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
MultiValuesRuleif CertificateEmail element is present in the constraint file, null otherwise.
-
getCertificateSerialNumberConstraint
Description copied from interface:ValidationPolicyReturns CertificateSerialNumber constraint if present in the policy, null otherwise- Specified by:
getCertificateSerialNumberConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CertificateSerialNumber element is present in the constraint file, null otherwise.
-
getCertificateAuthorityInfoAccessPresentConstraint
public LevelRule getCertificateAuthorityInfoAccessPresentConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns CertificateAuthorityInfoAccessPresent constraint if present in the policy, null otherwise- Specified by:
getCertificateAuthorityInfoAccessPresentConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CertificateAuthorityInfoAccessPresent element is present in the constraint file, null otherwise.
-
getRevocationDataSkipConstraint
public CertificateApplicabilityRule getRevocationDataSkipConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns RevocationDataSkip constraint if present in the policy, null otherwise- Specified by:
getRevocationDataSkipConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif RevocationDataSkip element is present in the constraint file, null otherwise.
-
getCertificateRevocationInfoAccessPresentConstraint
public LevelRule getCertificateRevocationInfoAccessPresentConstraint(Context context, SubContext subContext) Description copied from interface:ValidationPolicyReturns CertificateRevocationInfoAccessPresent constraint if present in the policy, null otherwise- Specified by:
getCertificateRevocationInfoAccessPresentConstraintin interfaceValidationPolicy- Parameters:
context-ContextsubContext-SubContext- Returns:
LevelRuleif CertificateRevocationInfoAccessPresent element is present in the constraint file, null otherwise.
-
getAcceptedContainerTypesConstraint
Description copied from interface:ValidationPolicyReturns AcceptedContainerTypes constraint if present in the policy, null otherwise- Specified by:
getAcceptedContainerTypesConstraintin interfaceValidationPolicy- Returns:
MultiValuesRuleif AcceptedContainerTypes element is present in the constraint file, null otherwise.
-
getZipCommentPresentConstraint
Description copied from interface:ValidationPolicyReturns ZipCommentPresent constraint if present in the policy, null otherwise- Specified by:
getZipCommentPresentConstraintin interfaceValidationPolicy- Returns:
LevelRuleif ZipCommentPresent element is present in the constraint file, null otherwise.
-
getAcceptedZipCommentsConstraint
Description copied from interface:ValidationPolicyReturns AcceptedZipComments constraint if present in the policy, null otherwise- Specified by:
getAcceptedZipCommentsConstraintin interfaceValidationPolicy- Returns:
MultiValuesRuleif AcceptedZipComments element is present in the constraint file, null otherwise.
-
getMimeTypeFilePresentConstraint
Description copied from interface:ValidationPolicyReturns MimeTypeFilePresent constraint if present in the policy, null otherwise- Specified by:
getMimeTypeFilePresentConstraintin interfaceValidationPolicy- Returns:
LevelRuleif MimeTypeFilePresent element is present in the constraint file, null otherwise.
-
getAcceptedMimeTypeContentsConstraint
Description copied from interface:ValidationPolicyReturns AcceptedMimeTypeContents constraint if present in the policy, null otherwise- Specified by:
getAcceptedMimeTypeContentsConstraintin interfaceValidationPolicy- Returns:
MultiValuesRuleif AcceptedMimeTypeContents element is present in the constraint file, null otherwise.
-
getManifestFilePresentConstraint
Description copied from interface:ValidationPolicyReturns ManifestFilePresent constraint if present in the policy, null otherwise- Specified by:
getManifestFilePresentConstraintin interfaceValidationPolicy- Returns:
LevelRuleif ManifestFilePresent element is present in the constraint file, null otherwise.
-
getSignedFilesPresentConstraint
Description copied from interface:ValidationPolicyReturns SignedFilesPresent constraint if present in the policy, null otherwise- Specified by:
getSignedFilesPresentConstraintin interfaceValidationPolicy- Returns:
LevelRuleif SignedFilesPresent element is present in the constraint file, null otherwise.
-
getFilenameAdherenceConstraint
Description copied from interface:ValidationPolicyReturns FilenameAdherence constraint if present in the policy, null otherwise- Specified by:
getFilenameAdherenceConstraintin interfaceValidationPolicy- Returns:
LevelRuleif FilenameAdherence element is present in the constraint file, null otherwise.
-
getAllFilesSignedConstraint
Description copied from interface:ValidationPolicyReturns AllFilesSigned constraint if present in the policy, null otherwise- Specified by:
getAllFilesSignedConstraintin interfaceValidationPolicy- Returns:
LevelRuleif AllFilesSigned element is present in the constraint file, null otherwise.
-
getFullScopeConstraint
Description copied from interface:ValidationPolicyReturns FullScope constraint if present in the policy, null otherwise- Specified by:
getFullScopeConstraintin interfaceValidationPolicy- Returns:
LevelRuleif FullScope element is present in the constraint file, null otherwise.
-
getAcceptablePDFAProfilesConstraint
Description copied from interface:ValidationPolicyReturns AcceptablePDFAProfiles constraint if present in the policy, null otherwise- Specified by:
getAcceptablePDFAProfilesConstraintin interfaceValidationPolicy- Returns:
LevelRuleif AcceptablePDFAProfiles element is present in the constraint file, null otherwise.
-
getPDFACompliantConstraint
Description copied from interface:ValidationPolicyReturns PDFACompliant constraint if present in the policy, null otherwise- Specified by:
getPDFACompliantConstraintin interfaceValidationPolicy- Returns:
LevelRuleif PDFACompliant element is present in the constraint file, null otherwise.
-
isEIDASConstraintPresent
public boolean isEIDASConstraintPresent()Description copied from interface:ValidationPolicyReturns if EIDAS constraints present (qualification check shall be performed)- Specified by:
isEIDASConstraintPresentin interfaceValidationPolicy- Returns:
- TRUE if EIDAS constraint present, FALSE otherwise
-
getTLFreshnessConstraint
Description copied from interface:ValidationPolicyReturns TLFreshness constraint if present in the policy, null otherwise- Specified by:
getTLFreshnessConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TLFreshness element is present in the constraint file, null otherwise.
-
getTLWellSignedConstraint
Description copied from interface:ValidationPolicyReturns TLWellSigned constraint if present in the policy, null otherwise- Specified by:
getTLWellSignedConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TLWellSigned element is present in the constraint file, null otherwise.
-
getTLNotExpiredConstraint
Description copied from interface:ValidationPolicyReturns TLNotExpired constraint if present in the policy, null otherwise- Specified by:
getTLNotExpiredConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TLNotExpired element is present in the constraint file, null otherwise.
-
getTLVersionConstraint
Description copied from interface:ValidationPolicyReturns TLVersion constraint if present in the policy, null otherwise- Specified by:
getTLVersionConstraintin interfaceValidationPolicy- Returns:
MultiValuesRuleif TLVersion element is present in the constraint file, null otherwise.
-
getTLStructureConstraint
Description copied from interface:ValidationPolicyReturns TLStructure constraint if present in the policy, null otherwise- Specified by:
getTLStructureConstraintin interfaceValidationPolicy- Returns:
LevelRuleif TLStructure element is present in the constraint file, null otherwise.
-
getValidationModel
Description copied from interface:ValidationPolicyReturns the used validation model (default is SHELL). Alternatives are CHAIN and HYBRID- Specified by:
getValidationModelin interfaceValidationPolicy- Returns:
- the validation model to be used
-
toString
-