import com.itextpdf.text.pdf.security.PdfPKCS7;
import com.itextpdf.text.pdf.security.VerificationException;
import org.adullact.liberattest.utils.KeyStoreLoader;
+import org.adullact.liberattest.utils.StoreConfig;
import org.adullact.liberattest.verifier.CRLVerifier;
-import java.security.KeyStore;
import java.security.cert.Certificate;
import java.util.Calendar;
import java.util.List;
// ---- Vérification de la chaine de certification ----
// Création d'un keystore...
- KeyStore ks = KeyStoreLoader.getInstance();
- // Is the certificate avaible ? Be carefull we search the chain of certificat
- List<VerificationException> validationExceptions = CertificateVerification.verifyCertificates(pkc, ks, null, cal);
- this.isVerified = true;
- for (VerificationException verificationException : validationExceptions) {
- if (verificationException.getMessage().contains("Cannot be verified against the KeyStore or the certificate chain")) {
- this.isVerified = false;
- } else {
- this.isValid = false;
+ List<StoreConfig> ksList = KeyStoreLoader.getInstance();
+ this.isValid = false;
+ for (StoreConfig store : ksList) {
+ boolean valid = false;
+ if (store.valid != StoreConfig.Validity.error) {
+ // Is the certificate avaible ? Be carefull we search the chain of certificat
+ List<VerificationException> validationExceptions = CertificateVerification.verifyCertificates(pkc, store.ks, null, cal);
+ this.isVerified.put(store.name, true);
+ valid = true;
+ for (VerificationException verificationException : validationExceptions) {
+ if (verificationException.getMessage().contains("Cannot be verified against the KeyStore or the certificate chain")) {
+ this.isVerified.put(store.name, false);
+ }
+ valid = false;
+ }
}
+ this.isValid = this.isValid || valid;
}
}
}