// CkCertChain.h: interface for the CkCertChain class. // ////////////////////////////////////////////////////////////////////// // This header is generated for Chilkat 9.5.0.75 #ifndef _CkCertChain_H #define _CkCertChain_H #include "chilkatDefs.h" #include "CkString.h" #include "CkMultiByteBase.h" class CkCert; class CkTrustedRoots; class CkJsonObject; #if !defined(__sun__) && !defined(__sun) #pragma pack (push, 8) #endif // CLASS: CkCertChain class CK_VISIBLE_PUBLIC CkCertChain : public CkMultiByteBase { private: // Don't allow assignment or copying these objects. CkCertChain(const CkCertChain &); CkCertChain &operator=(const CkCertChain &); public: CkCertChain(void); virtual ~CkCertChain(void); static CkCertChain *createNew(void); void CK_VISIBLE_PRIVATE inject(void *impl); // May be called when finished with the object to free/dispose of any // internal resources held by the object. void dispose(void); // BEGIN PUBLIC INTERFACE // ---------------------- // Properties // ---------------------- // The number of certificates in the chain. The end-user subscriber certificate is // at index 0. This is the certificate most removed from the trusted root. // Intermediate certificates are at indices 1 to NumCerts - 2. The trusted root (or // self-signed certificate) is at index NumCerts - 1. int get_NumCerts(void); // Returns the number of certificates in the chain that have expired. int get_NumExpiredCerts(void); // true if this certificate chain extends all the way to the root certificate. // The root certificate is either a trusted CA root or a self-signed certificate. // In both cases, the issuer of a root certificate is itself. bool get_ReachesRoot(void); // ---------------------- // Methods // ---------------------- // Returns the Nth certificate in the chain. // The caller is responsible for deleting the object returned by this method. CkCert *GetCert(int index); // Returns true if the root of the certificate chain is a certificate found in // trustedRoots. bool IsRootTrusted(CkTrustedRoots &trustedRoots); // Loads a certificate chain from the "x5c" parameter of a JWK (JSON Web Key). bool LoadX5C(CkJsonObject &jwk); // Verifies the certificate signatures to the root. Returns true if all // certificate signatures are valid. bool VerifyCertSignatures(void); // END PUBLIC INTERFACE }; #if !defined(__sun__) && !defined(__sun) #pragma pack (pop) #endif #endif