JSS's certificate support will be moving in one of two directions. Either we will stop using our own Certificate classes in favor of someone else's (Sun's) implementation of X509Certificate, or we will make our certificate classes fully implement X509Certificate. Either way, you will have a getBasicConstraints method.
Meanwhile, there are workarounds. You could decode the certificate with Java's X509Certificate default implementation and get the basic constraints that way. Or you could decode the BasicConstraints extension by hand using JSS's ASN1 classes. Patrick wrote: >Jamie, > >I could use a method that tells me if a Certificate is a CA cert or a user >cert. Something like j.s.c.X509Certificate.getBasicConstraints()... > >-- P > >
