AcceptableCertPolicies (6.0 API Documentation)

java.lang.Object
- iaik.x509.V3Extension
- - iaik.x509.attr.extensions.AcceptableCertPolicies

```
public class AcceptableCertPolicies
extends V3Extension
```
This class implements the Acceptable certificate policies extension. The acceptable certificate policies field is used, in delegation with attribute certificates, to control the acceptable certificate policies under which the public-key certificates for subsequent holders in a delegation path need to have been issued. By enumerating a set of policies in this field, an attribute authority (AA) is requiring that subsequent issuers in a delegation path only delegate the contained privileges to holders that have public-key certificates issued under one or more of the enumerated certificate policies. The policies listed here are not policies under which the attribute certificate was issued, but policies under which acceptable public-key certificates for subsequent holders need to have been issued. This field is defined as follows:
```
   acceptableCertPolicies EXTENSION ::= {
       SYNTAX AcceptableCertPoliciesSyntax
       IDENTIFIED BY id-ce-acceptableCertPolicies }
   AcceptableCertPoliciesSyntax ::= SEQUENCE SIZE (1..MAX) OF CertPolicyId
   CertPolicyId ::= OBJECT IDENTIFIER
 
```
This extension may only be present in attribute certificates issued by AAs, including SOAs, to other AAs. This extension shall not be included in end-entity attribute certificates or in any public-key certificates. In the case of delegation using public-key certificates, this same functionality is provided by the certificatePolicies and other related extensions. If present, this extension shall be flagged critical. If this extension is present and the privilege verifier understands it, the verifier shall ensure that all subsequent privilege asserters in the delegation path are authenticated with a public-key certificate under one or more of the enumerated certificate policies. If this extension is present, but not understood by the privilege verifier, the certificate shall be rejected.
For more information see: http://www.itu.int/rec/recommendation.asp?lang=en&parent=T-REC-X.509-200508-P Section: 15.5.2.3 Acceptable certificate policies extension

Field Summary

Fields
Modifier and Type Field and Description

static ObjectID oid
- Fields inherited from class iaik.x509.V3Extension
  critical

Fields
Modifier and Type	Field and Description
`static ObjectID`	`oid`

Constructor Summary

Constructors
Constructor and Description

AcceptableCertPolicies()
Default constructor that creates an empty policy extension.

Constructors
Constructor and Description
`AcceptableCertPolicies()` Default constructor that creates an empty policy extension.

Method Summary

Methods
Modifier and Type	Method and Description
`void`	`addAcceptableCertPolicy(ObjectID id)` Adds a new PolicyID to the extension.
`void`	`addAcceptableCertPolicy(java.lang.String id)` Adds a new PolicyID to the extension.
`ObjectID`	`getObjectID()` Returns the object ID of this `AcceptalbeCertPolicies` extension.
`ObjectID[]`	`getPolicies()` Returns the encoded PolicyIDs.
`java.lang.String[]`	`getPolicyOIDs()` Returns the encoded PolicyIDs.
`int`	`hashCode()` Returns the hash code of the extension.
`void`	`init(ASN1Object obj)` Parses a given AcceptableCertPolicies object from it's ASN.1 representation.
`void`	`removeAcceptablePolicy(ObjectID oid)` Removes the specified policy from the list of acceptable policies.
`void`	`removeAcceptablePolicy(java.lang.String oid)` Removes the specified policy from the list of acceptable policies.
`ASN1Object`	`toASN1Object()` Returns the ASN.1 representation of the extension.
`java.lang.String`	`toString()` Returns a string that represents the contents of this `AcceptableCertPolicies` extension.

Methods inherited from class iaik.x509.V3Extension
getName, isCritical, setCritical

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, notify, notifyAll, wait, wait, wait

- Field Detail
  - oid
```
public static final ObjectID oid
```
- Constructor Detail
  - AcceptableCertPolicies
```
public AcceptableCertPolicies()
```
    Default constructor that creates an empty policy extension.
- Method Detail
  - toASN1Object
```
public ASN1Object toASN1Object()
                        throws X509ExtensionException
```
    Returns the ASN.1 representation of the extension.
    
    Specified by:
    
    toASN1Object in class V3Extension
    
    Returns:
    the value of the extension as ASN1Object
    
    Throws:
    
    X509ExtensionException - if the extension could not be created
  - init
```
public void init(ASN1Object obj)
          throws X509ExtensionException
```
    Parses a given AcceptableCertPolicies object from it's ASN.1 representation. The values can afterwards be read with getPolicyOIDs().
    
    Specified by:
    
    init in class V3Extension
    
    Parameters:
    obj - the AcceptableCertPolicies as ASN1Object
    
    Throws:
    
    X509ExtensionException - if the AcceptableCertPolicies cannot be parsed
  - getPolicyOIDs
```
public java.lang.String[] getPolicyOIDs()
```
    Returns the encoded PolicyIDs.
    
    Returns:
    an array with ObjectIDs
  - getPolicies
```
public ObjectID[] getPolicies()
```
    Returns the encoded PolicyIDs.
    
    Returns:
    an array with ObjectIDs
  - addAcceptableCertPolicy
```
public void addAcceptableCertPolicy(java.lang.String id)
```
    Adds a new PolicyID to the extension.
    
    Parameters:
    id - ID of the policy in its String representation
  - addAcceptableCertPolicy
```
public void addAcceptableCertPolicy(ObjectID id)
```
    Adds a new PolicyID to the extension.
    
    Parameters:
    id - PolicyID object
  - removeAcceptablePolicy
```
public void removeAcceptablePolicy(ObjectID oid)
```
    Removes the specified policy from the list of acceptable policies.
    
    Parameters:
    oid - the object identifier of the policy
  - removeAcceptablePolicy
```
public void removeAcceptablePolicy(java.lang.String oid)
```
    Removes the specified policy from the list of acceptable policies.
    
    Parameters:
    oid - the object identifier of the policy
  - hashCode
```
public int hashCode()
```
    Returns the hash code of the extension.
    
    Specified by:
    
    hashCode in class V3Extension
    
    Returns:
    a hash code for this extension
  - getObjectID
```
public ObjectID getObjectID()
```
    Returns the object ID of this AcceptalbeCertPolicies extension.
    
    Specified by:
    
    getObjectID in class V3Extension
    
    Returns:
    the object ID
  - toString
```
public java.lang.String toString()
```
    Returns a string that represents the contents of this AcceptableCertPolicies extension.
    
    Overrides:
    
    toString in class java.lang.Object
    
    Returns:
    the string representation

Class AcceptableCertPolicies

Field Summary

Fields inherited from class iaik.x509.V3Extension

Constructor Summary

Method Summary

Methods inherited from class iaik.x509.V3Extension

Methods inherited from class java.lang.Object

Field Detail

oid

Constructor Detail

AcceptableCertPolicies

Method Detail

toASN1Object

init

getPolicyOIDs

getPolicies

addAcceptableCertPolicy

addAcceptableCertPolicy

removeAcceptablePolicy

removeAcceptablePolicy

hashCode

getObjectID

toString