ThresholdExpiredCRLRevocationPolicy (cas-server-support-x509 5.0.0.M1 API)

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

java.lang.Object
- org.apereo.cas.adaptors.x509.authentication.handler.support.ThresholdExpiredCRLRevocationPolicy

All Implemented Interfaces:

RevocationPolicy<java.security.cert.X509CRL>
```
@RefreshScope
 @Component(value="thresholdExpiredCRLRevocationPolicy")
public class ThresholdExpiredCRLRevocationPolicy
extends java.lang.Object
implements RevocationPolicy<java.security.cert.X509CRL>
```
Implements a policy to handle expired CRL data whereby expired data is permitted up to a threshold period of time but not afterward.

Since:

3.4.6

Constructor Summary

Constructors
Constructor and Description

ThresholdExpiredCRLRevocationPolicy()

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`void`	`apply(java.security.cert.X509CRL crl)` Applies the policy.
`void`	`setThreshold(int threshold)` Sets the threshold period of time after which expired CRL data is rejected.

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- Constructor Detail
  - ThresholdExpiredCRLRevocationPolicy
```
public ThresholdExpiredCRLRevocationPolicy()
```
- Method Detail
  - apply
```
public void apply(java.security.cert.X509CRL crl)
           throws ExpiredCRLException
```
    Applies the policy. The CRL next update time is compared against the current time with the threshold applied and rejected if and only if the next update time is in the past.
    
    Specified by:
    
    apply in interface RevocationPolicy<java.security.cert.X509CRL>
    
    Parameters:
    
    crl - CRL instance to evaluate.
    
    Throws:
    
    ExpiredCRLException - On expired CRL data. Check the exception type for exact details
    
    See Also:
    
    RevocationPolicy.apply(java.lang.Object)
  - setThreshold
```
@Autowired
public void setThreshold(@Value(value="${cas.x509.authn.revocation.policy.threshold:172800}")
                                     int threshold)
```
    Sets the threshold period of time after which expired CRL data is rejected.
    
    Parameters:
    
    threshold - Number of seconds; MUST be non-negative integer.

Skip navigation links

All Classes

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method