Package eu.europa.esig.dss.spi.validation

Class SignatureValidationAlerter

java.lang.Object

eu.europa.esig.dss.spi.validation.SignatureValidationAlerter

All Implemented Interfaces:

ValidationAlerter

public class SignatureValidationAlerter
extends Object
implements ValidationAlerter

This class used eu.europa.esig.dss.spi.validation.SignatureValidationContext to perform validation and executes alerts based on the validation result. The configuration of the alerts and their behavior is defined within eu.europa.esig.dss.spi.validation.CertificateVerifier. If alert is not defined, the execution of the corresponding check is being skipped.

Constructor Summary

Constructors

Constructor	Description
SignatureValidationAlerter(SignatureValidationContext validationContext)	Default constructor to instantiate alerter

Method Summary

Modifier and Type	Method	Description
void	assertAllPOECoveredByRevocationData()	This method verifies if all POE (timestamp tokens) are covered by a revocation data.
void	assertAllRequiredRevocationDataPresent()	This method verifies if all processed certificates have a revocation data.
void	assertAllSignatureCertificateHaveFreshRevocationData()	This method verifies whether for all signature's certificate chain certificates there is a fresh revocation data, after the earliest available timestamp token production time.
void	assertAllSignatureCertificatesNotRevoked()	This method verifies recursively whether none of the signature's certificate chain certificates are revoked.
void	assertAllSignaturesAreYetValid()	This method verifies whether all signatures added to the ValidationContext have been produced with yet valid certificates.
void	assertAllSignaturesNotExpired()	This method verifies whether all signatures added to the ValidationContext are not yet expired.
void	assertAllTimestampsValid()	This method verifies if all processed timestamps are valid and intact.
void	assertCertificateIsYetValid(CertificateToken certificateToken)	This method verifies whether the certificate token is yet valid.
void	assertCertificateNotExpired(CertificateToken certificateToken)	This method verifies whether the certificate token is not yet expired.
void	assertCertificateNotRevoked(CertificateToken certificateToken)	This method verifies if the certificate is not revoked.
protected void	populateMessage(MessageStatus status)	This method augments the validation message with the information about currently performing operation kind
void	setSigningOperation(SigningOperation signingOperation)	(Optional) Sets the current operation kind to provide a user-friendly error message

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

SignatureValidationAlerter

public SignatureValidationAlerter(SignatureValidationContext validationContext)

Default constructor to instantiate alerter

Parameters:

validationContext - SignatureValidationContext

Method Details

setSigningOperation

public void setSigningOperation(SigningOperation signingOperation)

(Optional) Sets the current operation kind to provide a user-friendly error message

Parameters:

signingOperation - SigningOperation

assertAllRequiredRevocationDataPresent

public void assertAllRequiredRevocationDataPresent()

Description copied from interface: ValidationAlerter

This method verifies if all processed certificates have a revocation data. The behavior of the method is configured with CertificateVerifier.setAlertOnMissingRevocationData(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllRequiredRevocationDataPresent in interface ValidationAlerter

assertAllPOECoveredByRevocationData

public void assertAllPOECoveredByRevocationData()

Description copied from interface: ValidationAlerter

This method verifies if all POE (timestamp tokens) are covered by a revocation data. The behavior of the method is configured with CertificateVerifier.setAlertOnUncoveredPOE(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllPOECoveredByRevocationData in interface ValidationAlerter

assertAllTimestampsValid

public void assertAllTimestampsValid()

Description copied from interface: ValidationAlerter

This method verifies if all processed timestamps are valid and intact. The behavior of the method is configured with CertificateVerifier.setAlertOnInvalidTimestamp(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllTimestampsValid in interface ValidationAlerter

assertCertificateNotRevoked

public void assertCertificateNotRevoked(CertificateToken certificateToken)

Description copied from interface: ValidationAlerter

This method verifies if the certificate is not revoked. The behavior of the method is configured with CertificateVerifier.setAlertOnRevokedCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertCertificateNotRevoked in interface ValidationAlerter

Parameters:

certificateToken - CertificateToken certificate to be checked

assertAllSignatureCertificatesNotRevoked

public void assertAllSignatureCertificatesNotRevoked()

Description copied from interface: ValidationAlerter

This method verifies recursively whether none of the signature's certificate chain certificates are revoked. The behavior of the method is configured with CertificateVerifier.setAlertOnRevokedCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllSignatureCertificatesNotRevoked in interface ValidationAlerter

assertAllSignatureCertificateHaveFreshRevocationData

public void assertAllSignatureCertificateHaveFreshRevocationData()

Description copied from interface: ValidationAlerter

This method verifies whether for all signature's certificate chain certificates there is a fresh revocation data, after the earliest available timestamp token production time. The behavior of the method is configured with CertificateVerifier.setAlertOnNoRevocationAfterBestSignatureTime(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllSignatureCertificateHaveFreshRevocationData in interface ValidationAlerter

assertAllSignaturesNotExpired

public void assertAllSignaturesNotExpired()

Description copied from interface: ValidationAlerter

This method verifies whether all signatures added to the ValidationContext are not yet expired. The behavior of the method is configured with CertificateVerifier.setAlertOnExpiredCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllSignaturesNotExpired in interface ValidationAlerter

assertCertificateNotExpired

public void assertCertificateNotExpired(CertificateToken certificateToken)

Description copied from interface: ValidationAlerter

This method verifies whether the certificate token is not yet expired. The behavior of the method is configured with CertificateVerifier.setAlertOnExpiredCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertCertificateNotExpired in interface ValidationAlerter

Parameters:

certificateToken - CertificateToken to be validated

assertAllSignaturesAreYetValid

public void assertAllSignaturesAreYetValid()

Description copied from interface: ValidationAlerter

This method verifies whether all signatures added to the ValidationContext have been produced with yet valid certificates. The behavior of the method is configured with CertificateVerifier.setAlertOnNotYetValidCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertAllSignaturesAreYetValid in interface ValidationAlerter

assertCertificateIsYetValid

public void assertCertificateIsYetValid(CertificateToken certificateToken)

Description copied from interface: ValidationAlerter

This method verifies whether the certificate token is yet valid. The behavior of the method is configured with CertificateVerifier.setAlertOnNotYetValidCertificate(eu.europa.esig.dss.alert.StatusAlert)

Specified by:

assertCertificateIsYetValid in interface ValidationAlerter

Parameters:

certificateToken - CertificateToken to be validated

populateMessage

protected void populateMessage(MessageStatus status)

This method augments the validation message with the information about currently performing operation kind

Parameters:

status - MessageStatus to augment