1 /* 2 * Copyright [2007] [University Corporation for Advanced Internet Development, Inc.] 3 * 4 * Licensed under the Apache License, Version 2.0 (the "License"); 5 * you may not use this file except in compliance with the License. 6 * You may obtain a copy of the License at 7 * 8 * http://www.apache.org/licenses/LICENSE-2.0 9 * 10 * Unless required by applicable law or agreed to in writing, software 11 * distributed under the License is distributed on an "AS IS" BASIS, 12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 * See the License for the specific language governing permissions and 14 * limitations under the License. 15 */ 16 17 package org.opensaml.xml.security.x509; 18 19 import java.security.cert.X509CRL; 20 import java.security.cert.X509Certificate; 21 import java.util.Collection; 22 23 /** 24 * Basic implementation of {@link PKIXValidationInformation}. 25 */ 26 public class BasicPKIXValidationInformation implements PKIXValidationInformation { 27 28 /** Certs used as the trust anchors. */ 29 private Collection<X509Certificate> trustAnchors; 30 31 /** CRLs used during validation. */ 32 private Collection<X509CRL> trustedCRLs; 33 34 /** Max verification depth during PKIX validation. */ 35 private Integer verificationDepth; 36 37 /** 38 * Constructor. 39 * 40 * @param anchors certs used as trust anchors during validation 41 * @param crls CRLs used during validation 42 * @param depth max verification path depth 43 */ 44 public BasicPKIXValidationInformation(Collection<X509Certificate> anchors, Collection<X509CRL> crls, 45 Integer depth) { 46 47 trustAnchors = anchors; 48 trustedCRLs = crls; 49 verificationDepth = depth; 50 } 51 52 /** {@inheritDoc} */ 53 public Collection<X509CRL> getCRLs() { 54 return trustedCRLs; 55 } 56 57 /** {@inheritDoc} */ 58 public Collection<X509Certificate> getCertificates() { 59 return trustAnchors; 60 } 61 62 /** {@inheritDoc} */ 63 public Integer getVerificationDepth() { 64 return verificationDepth; 65 } 66 }