Local Interface SL3TLS::TLSX509IdentityVerifier
Local Interface SL3TLS::TLSX509IdentityVerifier
local interface TLSX509IdentityVerifier
Implementers may create their own local version of
this interface to verify chains of X509 Certificates.
Operation Index
- add_trusted_authority
- This operation is called by the security service at the
TLS Transport Credentials creation phase to add certificates
as trusted entities directed by other TLS options.
- is_anonymous_allowed
- This operation is called by the security service to determine
if the peer is allowed to be anonymous.
- verify
- This operation is called by the security service at the
transport authentication phase, when the peer certificate
needs to be verified.
Operations
- add_trusted_authority
-
void add_trusted_authority(in SecurityLevel3::X509IdentityStatement auth);
This operation is called by the security service at the
TLS Transport Credentials creation phase to add certificates
as trusted entities directed by other TLS options.
- is_anonymous_allowed
-
boolean is_anonymous_allowed();
This operation is called by the security service to determine
if the peer is allowed to be anonymous. This means that the
peer has not delivered a certificate and did not authenticate
itself.
- verify
-
boolean verify(in SecurityLevel3::X509IdentityStatement ident);
This operation is called by the security service at the
transport authentication phase, when the peer certificate
needs to be verified. The X509IdentityStatement will contain
a sequence of encoded X509 Certificates, which may be empty.
Generated by the ORBacus IDL-to-HTML translator