PKI-Lite - v1.0.8
    Preparing search index...

    Interface CertificateValidationOptions

    Options for certificate validation.

    interface CertificateValidationOptions {
        checkCRL?: boolean;
        checkOCSP?: boolean;
        checkSignature?: boolean;
        enforceCAConstraints?: boolean;
        otherCertificates?: Certificate[];
        requiredPolicies?: string[];
        timeTolerance?: number;
        trustAnchors?: TrustAnchor[];
        validateChain?: boolean;
        validateNameConstraints?: boolean;
        validatePolicies?: boolean;
        validationTime?: Date;
    }
    Index

    Properties

    checkCRL? checkOCSP? checkSignature? enforceCAConstraints? otherCertificates? requiredPolicies? timeTolerance? trustAnchors? validateChain? validateNameConstraints? validatePolicies? validationTime?

    Properties

    checkCRL?: boolean

    Check certificate revocation using CRLs

    checkOCSP?: boolean

    Check certificate revocation using OCSP

    checkSignature?: boolean

    Whether to perform signature validation

    enforceCAConstraints?: boolean

    Whether to enforce CA constraints and key usage

    otherCertificates?: Certificate[]

    Other certificates available for chain building

    requiredPolicies?: string[]

    Required policy OIDs (if any)

    timeTolerance?: number

    Tolerance for time-based validations (in milliseconds)

    trustAnchors?: TrustAnchor[]

    Trust anchors to use for chain validation

    validateChain?: boolean

    Whether to build and validate the full certificate chain

    validateNameConstraints?: boolean

    Whether to validate name constraints

    validatePolicies?: boolean

    Whether to validate certificate policies

    validationTime?: Date

    Custom validation date (defaults to current time)

    Settings

    Member Visibility

    On This Page

    Properties