java.security.cert
Interface PolicyNode
- public interface PolicyNode
One of the outputs of the PKIX certification path validation algorithm is a valid policy tree, which includes the policies that were determined to be valid, how this determination was reached, and any policy qualifiers encountered. This tree is of depth n, where n is the length of the certification path that has been validated.
Most applications will not need to examine the valid policy tree.
They can achieve their policy processing goals by setting the
policy-related parameters in PKIXParameters. However,
the valid policy tree is available for more sophisticated applications,
especially those that process policy qualifiers.
PKIXCertPathValidatorResult.getPolicyTree returns the root node of the
valid policy tree. The tree can be traversed using the
getChildren and getParent methods.
Data about a particular node can be retrieved using other methods of
PolicyNode.
Concurrent Access
All PolicyNode objects must be immutable and
thread-safe. Multiple threads may concurrently invoke the methods defined
in this class on a single PolicyNode object (or more than one)
with no ill effects. This stipulation applies to all public fields and
methods of this class and any added or overridden by subclasses.
Method Summary
| Modifier and Type | Method and Description |
|---|---|
|
getChildren()
Returns an iterator over the children of this node.
|
|
getDepth()
Returns the depth of this node in the valid policy tree.
|
getExpectedPolicies()
Returns the set of expected policies that would satisfy this node's valid policy
in the next certificate to be processed.
|
|
getParent()
Returns the parent of this node, or
null if this is the root node.
|
|
|
getPolicyQualifiers()
Returns the set of policy qualifiers associated with the valid policy represented
by this node.
|
getValidPolicy()
Returns the valid policy represented by this node.
|
|
|
isCritical()
Returns the criticality indicator of the certificate policy extension in the most
recently processed certificate.
|
Method Detail
getParent
- PolicyNode getParent()
null if this is the root node getChildren
- Iterator<? extends PolicyNode> getChildren( )
Iterator's remove method must throw an
UnsupportedOperationException.
getDepth
- int getDepth()
getValidPolicy
- String getValidPolicy()
String OID of the valid policy
represented by this node, or the special value "any-policy". For
the root node, this method always returns the special value "any-policy". getPolicyQualifiers
- Set<? extends PolicyQualifierInfo> getPolicyQualifiers( )
PolicyQualifierInfos. For the root node,
this is always an empty Set. getExpectedPolicies
Set of expected policy
String OIDs, or an immutable Set with
the single special value "any-policy". For the root node, this method
always returns a Set with the single value "any-policy". isCritical
- boolean isCritical()
true if extension marked critical, false otherwise.
For the root node, false is always returned.
nullif this is the root node.