Hi, Yes, I'm looking for KeyUsage extension (sorry for my english :( ) Do you know why there are two cert classes (pkcs11.PKC11Cert and pkix.Certificate), and they aren't related?
I saw the pkix classes and will try to decode it... THANKS, again.... -------------- On Fri, 21 Jun 2002 16:04:23 -0300, Jamie Nicolson wrote: > nelson wrote: >> Hi, >> >> How can I check the cert's flags looking for SSL, Encrypt and Sign >> flags actived? >> I need to know what certs are available for signing. I was surfing the >> javadoc but don't found anything.... >> >> I'm using JSS 3.1.1 There is a better place to ask or this is the >> correct one? >> >> TIA > > I'm not quite sure what flags you are talking about. Certificates can > have trust flags, but it sounds like you are more interested in > KeyUsage. Certificates can have a KeyUsage extension or an > ExtendedKeyUsage extension. There is no API for obtaining this > information. If you want to find out, you can decode the certificate and > its extensions with the org.mozilla.jss.pkix.cert classes, and refer to > RFC 2459. -- :: Nelson ::
