com.itextpdf.signatures

Class LtvVerifier

java.lang.Object

com.itextpdf.signatures.CertificateVerifier

com.itextpdf.signatures.RootStoreVerifier

com.itextpdf.signatures.LtvVerifier

Deprecated.

starting from 8.0.5. SignatureValidator should be used instead.

@Deprecated
public class LtvVerifier
extends RootStoreVerifier

Verifies the signatures in an LTV document.

Field Summary

Fields

Modifier and Type	Field and Description
protected PdfAcroForm	acroForm Deprecated. The fields in the revision that is being verified.
protected PdfDocument	document Deprecated. A document object for the revision that is being verified.
protected PdfDictionary	dss Deprecated. The document security store for the revision that is being verified
protected boolean	latestRevision Deprecated. Indicates if we're working with the latest revision.
protected static org.slf4j.Logger	LOGGER Deprecated. The Logger instance
protected com.itextpdf.commons.actions.contexts.IMetaInfo	metaInfo Deprecated. The meta info
protected LtvVerification.CertificateOption	option Deprecated. Option to specify level of verification; signing certificate only or the entire chain.
protected PdfPKCS7	pkcs7 Deprecated. The PdfPKCS7 object for the signature.
protected String	securityProviderCode Deprecated. Security provider to use, use null for default
protected String	signatureName Deprecated. The signature that covers the revision.
protected Date	signDate Deprecated. The date the revision was signed, or null for the highest revision.
protected boolean	verifyRootCertificate Deprecated. Verify root.

Fields inherited from class com.itextpdf.signatures.RootStoreVerifier

rootStore

Fields inherited from class com.itextpdf.signatures.CertificateVerifier

onlineCheckingAllowed, verifier

Constructor Summary

Constructors

Constructor and Description
LtvVerifier(PdfDocument document) Deprecated. Creates a VerificationData object for a PdfReader
LtvVerifier(PdfDocument document, String securityProviderCode) Deprecated. Create LtvVerifier class instance from the PdfDocument and security provider code.

Method Summary

Modifier and Type	Method and Description
protected PdfPKCS7	coversWholeDocument() Deprecated. Checks if the signature covers the whole document and throws an exception if the document was altered
List<X509CRL>	getCRLsFromDSS() Deprecated. Gets a list of X509CRL objects from a Document Security Store.
List<com.itextpdf.commons.bouncycastle.cert.ocsp.IBasicOCSPResp>	getOCSPResponsesFromDSS() Deprecated. Gets OCSP responses from the Document Security Store.
protected void	initLtvVerifier(PdfDocument document) Deprecated. Initialize LtvVerifier object by using provided document.
void	setCertificateOption(LtvVerification.CertificateOption option) Deprecated. Sets the certificate option.
void	setEventCountingMetaInfo(com.itextpdf.commons.actions.contexts.IMetaInfo metaInfo) Deprecated. Sets the IMetaInfo that will be used during PdfDocument creation.
void	setVerifier(CertificateVerifier verifier) Deprecated. Sets an extra verifier.
void	setVerifyRootCertificate(boolean verifyRootCertificate) Deprecated. Set the verifyRootCertificate to false if you can't verify the root certificate.
void	switchToPreviousRevision() Deprecated. Switches to the previous revision.
List<VerificationOK>	verify(List<VerificationOK> result) Deprecated. Verifies all the document-level timestamps and all the signatures in the document.
List<VerificationOK>	verify(X509Certificate signCert, X509Certificate issuerCert, Date signDate) Deprecated. Verifies certificates against a list of CRLs and OCSP responses.
void	verifyChain(Certificate[] chain) Deprecated. Checks the certificates in a certificate chain: are they valid on a specific date, and do they chain up correctly?
List<VerificationOK>	verifySignature() Deprecated. Verifies a document level timestamp.

Methods inherited from class com.itextpdf.signatures.RootStoreVerifier

setRootStore

Methods inherited from class com.itextpdf.signatures.CertificateVerifier

setOnlineCheckingAllowed

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

LOGGER

protected static final org.slf4j.Logger LOGGER

Deprecated.

The Logger instance

option

protected LtvVerification.CertificateOption option

Deprecated.

Option to specify level of verification; signing certificate only or the entire chain.

verifyRootCertificate

protected boolean verifyRootCertificate

Deprecated.

Verify root.

document

protected PdfDocument document

Deprecated.

A document object for the revision that is being verified.

acroForm

protected PdfAcroForm acroForm

Deprecated.

The fields in the revision that is being verified.

signDate

protected Date signDate

Deprecated.

The date the revision was signed, or null for the highest revision.

signatureName

protected String signatureName

Deprecated.

The signature that covers the revision.

pkcs7

protected PdfPKCS7 pkcs7

Deprecated.

The PdfPKCS7 object for the signature.

latestRevision

protected boolean latestRevision

Deprecated.

Indicates if we're working with the latest revision.

dss

protected PdfDictionary dss

Deprecated.

The document security store for the revision that is being verified

securityProviderCode

protected String securityProviderCode

Deprecated.

Security provider to use, use null for default

metaInfo

protected com.itextpdf.commons.actions.contexts.IMetaInfo metaInfo

Deprecated.

The meta info

Constructor Detail

LtvVerifier

public LtvVerifier(PdfDocument document)
            throws GeneralSecurityException

Deprecated.

Creates a VerificationData object for a PdfReader

Parameters:

document - The document we want to verify.

Throws:

GeneralSecurityException - if some problem with signature or security are occurred

LtvVerifier

public LtvVerifier(PdfDocument document,
                   String securityProviderCode)
            throws GeneralSecurityException

Deprecated.

Create LtvVerifier class instance from the PdfDocument and security provider code.

Parameters:

document - PdfDocument which will be verified

securityProviderCode - security provider code to read signatures

Throws:

GeneralSecurityException - if some problem with signature or security are occurred

Method Detail

setVerifier

public void setVerifier(CertificateVerifier verifier)

Deprecated.

Sets an extra verifier.

Parameters:

verifier - the verifier to set

setCertificateOption

public void setCertificateOption(LtvVerification.CertificateOption option)

Deprecated.

Sets the certificate option.

Parameters:

option - Either CertificateOption.SIGNING_CERTIFICATE (default) or CertificateOption.WHOLE_CHAIN

setVerifyRootCertificate

public void setVerifyRootCertificate(boolean verifyRootCertificate)

Deprecated.

Set the verifyRootCertificate to false if you can't verify the root certificate.

Parameters:

verifyRootCertificate - false if you can't verify the root certificate, otherwise true

setEventCountingMetaInfo

public void setEventCountingMetaInfo(com.itextpdf.commons.actions.contexts.IMetaInfo metaInfo)

Deprecated.

Sets the IMetaInfo that will be used during PdfDocument creation.

Parameters:

metaInfo - meta info to set

verify

public List<VerificationOK> verify(List<VerificationOK> result)
                            throws IOException,
                                   GeneralSecurityException

Deprecated.

Verifies all the document-level timestamps and all the signatures in the document.

Parameters:

result - a list of VerificationOK objects

Returns:

a list of all VerificationOK objects after verification

Throws:

IOException - signals that an I/O exception has occurred

GeneralSecurityException - if some problems with signature or security occurred

verifySignature

public List<VerificationOK> verifySignature()
                                     throws GeneralSecurityException,
                                            IOException

Deprecated.

Verifies a document level timestamp.

Returns:

a list of VerificationOK objects

Throws:

GeneralSecurityException - if some problems with signature or security occurred

IOException - signals that an I/O exception has occurred

verifyChain

public void verifyChain(Certificate[] chain)
                 throws GeneralSecurityException

Deprecated.

Checks the certificates in a certificate chain: are they valid on a specific date, and do they chain up correctly?

Parameters:

chain - the certificate chain

Throws:

GeneralSecurityException - when requested cryptographic algorithm or security provider is not available, if the certificate is invalid on a specific date and if the certificates chained up incorrectly

verify

public List<VerificationOK> verify(X509Certificate signCert,
                                   X509Certificate issuerCert,
                                   Date signDate)
                            throws GeneralSecurityException

Deprecated.

Verifies certificates against a list of CRLs and OCSP responses.

Overrides:

verify in class RootStoreVerifier

Parameters:

signCert - the signing certificate

issuerCert - the issuer's certificate

signDate - the date the certificate needs to be valid

Returns:

a list of VerificationOK objects. The list will be empty if the certificate couldn't be verified.

Throws:

GeneralSecurityException - if some problems with signature or security occurred

See Also:

RootStoreVerifier.verify(java.security.cert.X509Certificate, java.security.cert.X509Certificate, java.util.Date)

switchToPreviousRevision

public void switchToPreviousRevision()
                              throws IOException,
                                     GeneralSecurityException

Deprecated.

Switches to the previous revision.

Throws:

IOException - signals that an I/O exception has occurred

GeneralSecurityException - if some problems with signature or security occurred

getCRLsFromDSS

public List<X509CRL> getCRLsFromDSS()
                             throws GeneralSecurityException

Deprecated.

Gets a list of X509CRL objects from a Document Security Store.

Returns:

a list of CRLs

Throws:

GeneralSecurityException - when requested cryptographic algorithm or security provider is not available

getOCSPResponsesFromDSS

public List<com.itextpdf.commons.bouncycastle.cert.ocsp.IBasicOCSPResp> getOCSPResponsesFromDSS()
                                                                                         throws GeneralSecurityException

Deprecated.

Gets OCSP responses from the Document Security Store.

Returns:

a list of IBasicOCSPResp objects

Throws:

GeneralSecurityException - if OCSP response failed

initLtvVerifier

protected void initLtvVerifier(PdfDocument document)
                        throws GeneralSecurityException

Deprecated.

Initialize LtvVerifier object by using provided document. This method reads all the existing signatures and mathematically validates the last one.

Parameters:

document - PdfDocument instance to be verified

Throws:

GeneralSecurityException - if some problems with signature or security are occurred

coversWholeDocument

protected PdfPKCS7 coversWholeDocument()
                                throws GeneralSecurityException

Deprecated.

Checks if the signature covers the whole document and throws an exception if the document was altered

Returns:

a PdfPKCS7 object

Throws:

GeneralSecurityException - if some problems with signature or security occurred