// CkTrustedRoots.h: interface for the CkTrustedRoots class. // ////////////////////////////////////////////////////////////////////// // This header is generated for Chilkat 9.5.0.75 #ifndef _CkTrustedRoots_H #define _CkTrustedRoots_H #include "chilkatDefs.h" #include "CkString.h" #include "CkClassWithCallbacks.h" class CkCert; class CkTask; class CkJavaKeyStore; class CkBaseProgress; #if !defined(__sun__) && !defined(__sun) #pragma pack (push, 8) #endif // CLASS: CkTrustedRoots class CK_VISIBLE_PUBLIC CkTrustedRoots : public CkClassWithCallbacks { private: // Don't allow assignment or copying these objects. CkTrustedRoots(const CkTrustedRoots &); CkTrustedRoots &operator=(const CkTrustedRoots &); public: CkTrustedRoots(void); virtual ~CkTrustedRoots(void); static CkTrustedRoots *createNew(void); void CK_VISIBLE_PRIVATE inject(void *impl); // May be called when finished with the object to free/dispose of any // internal resources held by the object. void dispose(void); CkBaseProgress *get_EventCallbackObject(void) const; void put_EventCallbackObject(CkBaseProgress *progress); // BEGIN PUBLIC INTERFACE // ---------------------- // Properties // ---------------------- // The number of certificates contained within this object. // // This is the number of certificates explicitly added by the methods AddCert, // AddJavaKeyStore, and LoadCaCertsPem. // int get_NumCerts(void); // Indicates whether the operating system's CA root certificates are automatically // trusted. // // On a Windows operating system, this would be the registry-based CA certificate // stores. On a Linux system, this could be /etc/ssl/certs/ca-certificates.crt, if // it exists. The default value is true. Set this property equal to false to // prevent Chilkat from automatically trusting system-provided root CA // certificates. // bool get_TrustSystemCaRoots(void); // Indicates whether the operating system's CA root certificates are automatically // trusted. // // On a Windows operating system, this would be the registry-based CA certificate // stores. On a Linux system, this could be /etc/ssl/certs/ca-certificates.crt, if // it exists. The default value is true. Set this property equal to false to // prevent Chilkat from automatically trusting system-provided root CA // certificates. // void put_TrustSystemCaRoots(bool newVal); // ---------------------- // Methods // ---------------------- // Activates this collection of trusted roots as the set of CA and self-signed root // certificates that are to be trusted Chilkat-wide for PKCS7 signature validation // and SSL/TLS server certificate validation. bool Activate(void); // Adds a certificate to the collection of trusted roots. bool AddCert(CkCert &cert); // Adds the trusted certificates from a Java key store to the collection of trusted // roots. bool AddJavaKeyStore(CkJavaKeyStore &keystore); // Adds the trusted certificates from a Java key store to the collection of trusted // roots. CkTask *AddJavaKeyStoreAsync(CkJavaKeyStore &keystore); // Deactivates a previously set of activated trusted roots so that all roots / // self-signed certificates are implicitly trusted. bool Deactivate(void); // Returns the Nth cert contained within this object. The 1st certificate is at // index 0. // The caller is responsible for deleting the object returned by this method. CkCert *GetCert(int index); // Loads a CA bundle in PEM format. This is a file containing CA root certificates // that are to be trusted. An example of one such file is the CA certs from // mozilla.org exported to a cacert.pem file by the mk-ca-bundle tool located here: // http://curl.haxx.se/docs/caextract.html. // // Note: This can also be called to load the /etc/ssl/certs/ca-certificates.crt // file on Linux systems. // bool LoadCaCertsPem(const char *path); // Loads a CA bundle in PEM format. This is a file containing CA root certificates // that are to be trusted. An example of one such file is the CA certs from // mozilla.org exported to a cacert.pem file by the mk-ca-bundle tool located here: // http://curl.haxx.se/docs/caextract.html. // // Note: This can also be called to load the /etc/ssl/certs/ca-certificates.crt // file on Linux systems. // CkTask *LoadCaCertsPemAsync(const char *path); // END PUBLIC INTERFACE }; #if !defined(__sun__) && !defined(__sun) #pragma pack (pop) #endif #endif