Class: R509::Cert::Validator::CrlValidator

Inherits:

BasicValidator

Object
BasicValidator
R509::Cert::Validator::CrlValidator

show all

Defined in:: lib/r509/cert/validator/crl_validator.rb

Instance Method Summary collapse

Methods inherited from BasicValidator

#initialize

Constructor Details

This class inherits a constructor from R509::Cert::Validator::BasicValidator

Instance Method Details

#available? ⇒ `Boolean`

Returns:

(Boolean)

# File 'lib/r509/cert/validator/crl_validator.rb', line 5

def available?
  return false unless cdp
  return false if uris.empty?
  return true
end

#validate!(crl_file = nil) ⇒ `Object`

# File 'lib/r509/cert/validator/crl_validator.rb', line 11

def validate!(crl_file = nil)
  if !available? && crl_file.nil?
    raise Error.new "Tried to validate CRL but cert has no CRL data"
  end

  crl = unless crl_file.nil?
          File.read crl_file
        else
          get(uris.first)
        end

  body = R509::CRL::SignedList.new(crl)

  if @issuer
    unless body.verify @issuer.public_key
      raise CrlError.new "CRL did not match certificate"
    end
  end

  if body.revoked? @cert.serial
    raise CrlError.new "CRL listed certificate as revoked"
  end

  return true
end

Class: R509::Cert::Validator::CrlValidator

Instance Method Summary collapse

Methods inherited from BasicValidator

Constructor Details

Instance Method Details

#available? ⇒ Boolean

#validate!(crl_file = nil) ⇒ Object

#available? ⇒ `Boolean`

#validate!(crl_file = nil) ⇒ `Object`