Class CertificateValidationOptions

The options for the CertificateValidator.

Inheritance

System.Object

CertificateValidationOptions

Inherited Members

System.Object.Equals(System.Object)

System.Object.Equals(System.Object, System.Object)

System.Object.GetHashCode()

System.Object.GetType()

System.Object.MemberwiseClone()

System.Object.ReferenceEquals(System.Object, System.Object)

System.Object.ToString()

Namespace: ComponentSpace.Saml2.Certificates

Assembly: ComponentSpace.Saml2.dll

Syntax

public class CertificateValidationOptions

Properties

EnableChainCheck

Gets or sets the flag indicating whether checking the certificate chain is enabled.

Declaration

public bool EnableChainCheck { get; set; }

Property Value

Type	Description
System.Boolean	The flag indicating whether checking the certificate chain is enabled.

EnableNotAfterCheck

Gets or sets the flag indicating whether checking the certificate's not-after date is enabled.

Declaration

public bool EnableNotAfterCheck { get; set; }

Property Value

Type	Description
System.Boolean	The flag indicating whether checking the certificate's not-after date is enabled.

EnableNotBeforeCheck

Gets or sets the flag indicating whether checking the certificate's not-before date is enabled.

Declaration

public bool EnableNotBeforeCheck { get; set; }

Property Value

Type	Description
System.Boolean	The flag indicating whether checking the certificate's not-before date is enabled.

RevocationFlag

Gets or sets the flag indicating which certificates in the chain should be checked for revocation.

The default is that only the end certificate is checked for revocation.

Declaration

public X509RevocationFlag RevocationFlag { get; set; }

Property Value

Type	Description
System.Security.Cryptography.X509Certificates.X509RevocationFlag	The flag indicating which certificates in the chain should be checked for revocation.

RevocationMode

Gets or sets the certificate revocation mode.

The default mode is no revocation check.

Declaration

public X509RevocationMode RevocationMode { get; set; }

Property Value

Type	Description
System.Security.Cryptography.X509Certificates.X509RevocationMode	The certificate revocation mode.

UrlRetrievalTimeout

Gets or sets the maximum amount of time to be spent during online revocation verification or downloading the CRL.

The default time span is 30 seconds.

Declaration

public TimeSpan UrlRetrievalTimeout { get; set; }

Property Value

Type	Description
System.TimeSpan	The maximum amount of time to be spent during online revocation verification or downloading the CRL.

VerificationFlags

Gets or sets the flags indicating the conditions under which verification of certificates in the certificate chain should be conducted.

The default is no flags.

Declaration

public X509VerificationFlags VerificationFlags { get; set; }

Property Value

Type	Description
System.Security.Cryptography.X509Certificates.X509VerificationFlags	The flags indicating the conditions under which verification of certificates in the certificate chain should be conducted.