Copyright (c) 2005, 2012 IBM Corporation and others. This program and the accompanying materials are made available under the terms of the Eclipse Public License 2.0 which accompanies this distribution, and is available at https://www.eclipse.org/legal/epl-2.0/ SPDX-License-Identifier: EPL-2.0 Contributors: IBM Corporation - initial API and implementation
/******************************************************************************* * Copyright (c) 2005, 2012 IBM Corporation and others. * * This program and the accompanying materials * are made available under the terms of the Eclipse Public License 2.0 * which accompanies this distribution, and is available at * https://www.eclipse.org/legal/epl-2.0/ * * SPDX-License-Identifier: EPL-2.0 * * Contributors: * IBM Corporation - initial API and implementation *******************************************************************************/
package org.eclipse.osgi.signedcontent; import java.security.cert.Certificate;
A SignerInfo object represents a single signer chain.

This interface is not intended to be implemented by clients.

Since:3.4
@noimplementThis interface is not intended to be implemented by clients.
/** * A <code>SignerInfo</code> object represents a single signer chain. * <p> * This interface is not intended to be implemented by clients. * </p> * @since 3.4 * @noimplement This interface is not intended to be implemented by clients. */
public interface SignerInfo {
Returns the certificate chain
Returns:the certificate chain
/** * Returns the certificate chain * @return the certificate chain */
public Certificate[] getCertificateChain();
Returns the certificate trust anchor used to establish authenticity. If authenticity cannot be established then null is returned.
Returns:the trust anchor
/** * Returns the certificate trust anchor used to establish authenticity. * If authenticity cannot be established then <code>null</code> is returned. * @return the trust anchor */
public Certificate getTrustAnchor();
Returns true if the trust anchor has been authenticated. This is a convenience method equivalent to calling getTrustAnchor() != null
Returns:true if the the signer info is trusted
/** * Returns true if the trust anchor has been authenticated. This is a convenience * method equivalent to calling <code>{@link #getTrustAnchor()} != null</code> * @return true if the the signer info is trusted */
public boolean isTrusted();
Returns the MessageDigest algorithm used to verify content signed by this signer info.
Returns:the algorithm
/** * Returns the <code>MessageDigest</code> algorithm used to verify content signed by this * signer info. * @return the algorithm */
public String getMessageDigestAlgorithm(); // TODO need more thought here, TrustEngines could get stale since they are services, leaving off for now unless until we understand the usecase for this. //public TrustEngine getTrustEngine(); }