JKSTrustStore (KSI SDK 4.19.220 API)

java.lang.Object
- com.guardtime.ksi.trust.JKSTrustStore

All Implemented Interfaces:

PKITrustStore
```
public class JKSTrustStore
extends Object
implements PKITrustStore
```
Java key store based trust store implementation. Uses JKS to hold trusted certificates and JKS is used check if certificate is trusted or not.

NB! Certificate is trusted if valid certificate path can be built starting from input certificate and up to trust anchor in JKS file.

NB! This implementation does not check certificate revocation information.

Constructor Summary

Constructors
Constructor and Description
`JKSTrustStore(KeyStore keyStore, CertSelector certSelector)` Creates new instance with given java key store.
`JKSTrustStore(String keyStore, CertSelector certSelector)` Creates new instance with given java key store path.
`JKSTrustStore(String keyStorePath, char[] password, CertSelector certSelector)` Creates new instance with given java key store path and password.

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`boolean`	`isTrusted(X509Certificate certificate, org.bouncycastle.util.Store certStore)` This method is used to check if certificate is trusted or not.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - JKSTrustStore
```
public JKSTrustStore(KeyStore keyStore,
                     CertSelector certSelector)
              throws InvalidKeyStoreException
```
    Creates new instance with given java key store.
    
    Parameters:
    
    keyStore - java key store to use
    
    certSelector - if present then all certificates that will be checked must with this certificate selector
    
    Throws:
    
    InvalidKeyStoreException
  - JKSTrustStore
```
public JKSTrustStore(String keyStorePath,
                     char[] password,
                     CertSelector certSelector)
              throws InvalidKeyStoreException
```
    Creates new instance with given java key store path and password.
    
    Parameters:
    
    keyStorePath - java key store to load
    
    password - java key store password
    
    certSelector - if present then all certificates that will be checked must with this certificate selector
    
    Throws:
    
    InvalidKeyStoreException - if key store loading fails.
  - JKSTrustStore
```
public JKSTrustStore(String keyStore,
                     CertSelector certSelector)
              throws InvalidKeyStoreException
```
    Creates new instance with given java key store path.
    NB! Does not use password.
    
    Parameters:
    
    keyStore - java key store to load
    
    certSelector - if present then all certificates that will be checked must with this certificate selector
    
    Throws:
    
    InvalidKeyStoreException - if key store loading fails.
- Method Detail
  - isTrusted
```
public boolean isTrusted(X509Certificate certificate,
                         org.bouncycastle.util.Store certStore)
                  throws CryptoException
```
    This method is used to check if certificate is trusted or not.
    
    Specified by:
    
    isTrusted in interface PKITrustStore
    
    Parameters:
    
    certificate - instance of PKI X.509 certificate. not null.
    
    certStore - additional certificates to be used to check if certificate chain is trusted or not.
    
    Returns:
    
    true if certificate is trusted, false otherwise
    
    Throws:
    
    CryptoException - will be thrown when exception occurs turning certificate path building

Class JKSTrustStore

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

JKSTrustStore

JKSTrustStore

JKSTrustStore

Method Detail

isTrusted