COCSPParameters Class Reference
| class COCSPParameters : public CBase |
Specifies paremeters needed to perform revocation checking. The important things to set are the certificates to be checked all - all the other parameters have defaults.
Constructor & Destructor Documentation
COCSPParameters()
| COCSPParameters | ( | ) | [private] |
Member Functions Documentation
AddAllAuthorisationSchemesL(const TUid &, MCertStore &)
| IMPORT_C void | AddAllAuthorisationSchemesL | ( | const TUid & | aCertStoreUid, |
| | MCertStore & | aCertStore |
| | ) | |
This function adds all of the currently supported authorisation schemes to this object. It is more convenient than having the client to allocate each scheme.
This function allocates the authorisation schemes defined in RFC2560 S2.2 - direct authorisation, CA delegate, and CA direct.
- Pre-condition
- No authorisation schemes should have been added to this object before this function is called.
AddAuthorisationSchemeL
Parameters
| const TUid & aCertStoreUid | UID of trusted root certificates. E.g., KCertStoreUIDForSWInstallOCSPSigning. |
| MCertStore & aCertStore | Certificate store which contains the the trust anchors used to validate the response. |
AddAuthorisationSchemeL(MOCSPAuthorisationScheme *)
Add an authorisation scheme - takes ownership if it doesn't leave. Clients must specify at least one such scheme, used to validate the signature on the response.
AddCertificateL(const CX509Certificate &, const CX509Certificate &)
Add a certificate to be checked. Does not take ownership - certificates must not be destroyed until the OCSP check complete.
AddCertificatesL(const CX509CertChain &)
Add a certificate chain to be checked. Does not take ownership - certificates must not be destroyed until the OCSP check complete.
AuthSchemeCount()
|
TUint
| AuthSchemeCount | ( | ) | const |
CheckCertsWithAiaOnly()
|
TBool
| CheckCertsWithAiaOnly | ( | ) | const |
ConstructL()
| void | ConstructL | ( | ) | [private] |
DefaultURI()
| const TDesC8 & | DefaultURI | ( | ) | const |
GenerateResponseForMissingUri()
|
TBool
| GenerateResponseForMissingUri | ( | ) | const |
MaxStatusAge()
| const TUint * | MaxStatusAge | ( | ) | const |
NewL()
Create a new parameters object.
ReponderCertCheck()
|
TBool
| ReponderCertCheck | ( | ) | const |
SetCheckCertsWithAiaOnly(const TBool)
| IMPORT_C void | SetCheckCertsWithAiaOnly | ( | const TBool | aCheckCertsWithAiaOnly | ) | |
Parameters
| const TBool aCheckCertsWithAiaOnly | |
SetMaxStatusAgeL(TUint)
| IMPORT_C void | SetMaxStatusAgeL | ( | TUint | aMaxAge | ) | |
Specify the maximum age of the thisUpdate field in seconds (zero => don't check).
SetOCSPCheckForResponderCert(const TBool)
| IMPORT_C void | SetOCSPCheckForResponderCert | ( | const TBool | aResponderCertCheck | ) | |
Parameters
| const TBool aResponderCertCheck | |
SetRetryCount(const TUint)
| IMPORT_C void | SetRetryCount | ( | const TUint | aRetryCount | ) | |
Set the retry count for failed send request attempts. A default value of 1 (no retry) is used.
Parameters
| const TUint aRetryCount | Retry count |
SetTimeLeewayL(TUint)
| IMPORT_C void | SetTimeLeewayL | ( | TUint | aLeewaySeconds | ) | |
Specify how much leeway we allow when comparing times.
SetTimeout(const TInt)
| IMPORT_C void | SetTimeout | ( | const TInt | aTimeout | ) | |
Set the request timeout. A default value of -1 (default transport timeout) is used.
Parameters
| const TInt aTimeout | Request timeout in milliseconds |
SetTransport(MOCSPTransport *)
Set the transport to use. This method must be called - if no transport is set COCSPClient::NewL will leave with KErrArgument. This object takes ownership.
SetURIL(const TDesC8 &, TBool)
| IMPORT_C void | SetURIL | ( | const TDesC8 & | aURI, |
| | TBool | aUseAIA |
| | ) | |
Set the URI of the OCSP responder to use. The descriptor is copied.
Parameters
| const TDesC8 & aURI | The URI of the responder to use. |
| TBool aUseAIA | Indicates whether to use the responder specified in certifcate AuthorityInfoAccess extensions in preference to the one given here. |
SetUseAIA(const TBool)
| IMPORT_C void | SetUseAIA | ( | const TBool | aUseAIA | ) | |
SetUseNonce(TBool)
| IMPORT_C void | SetUseNonce | ( | TBool | aUseNonce | ) | |
Set whether or not to use a nonce. By default this is turned on.
SetValidationTimeL(const TTime &)
| IMPORT_C void | SetValidationTimeL | ( | const TTime & | aValidationTime | ) | |
Specify the authorisation time (optional - uses producedAt time from response otherwise).
Parameters
| const TTime & aValidationTime | |
TimeLeeway()
| const TUint * | TimeLeeway | ( | ) | const |
ValidationTime()
| const TTime * | ValidationTime | ( | ) | const |
Member Data Documentation
RPointerArray< MOCSPAuthorisationScheme > iAuthSchemes
TBool
iCheckCertsWithAiaOnly
|
TBool
| iCheckCertsWithAiaOnly | [private] |
TBool
iGenerateResponseForMissingUri
|
TBool
| iGenerateResponseForMissingUri | [private] |
RPointerArray< CX509Certificate > iIssuerCerts
TUint * iMaxStatusAge
|
TUint * | iMaxStatusAge | [private] |
TBool
iResponderCertCheck
|
TBool
| iResponderCertCheck | [private] |
TUint
iRetryCount
|
TUint
| iRetryCount | [private] |
RPointerArray< CX509Certificate > iSubjectCerts
TUint * iTimeLeeway
|
TUint * | iTimeLeeway | [private] |
MOCSPTransport * iTransport
TTime * iValidationTime
|
TTime * | iValidationTime | [private] |
Copyright ©2010 Nokia Corporation and/or its subsidiary(-ies).
All rights
reserved. Unless otherwise stated, these materials are provided under the terms of the Eclipse Public License
v1.0.