Class CertificateValidationOptions
The options for the CertificateValidator
.
Inheritance
Inherited Members
Namespace: ComponentSpace.Saml2.Certificates
Assembly: ComponentSpace.Saml2.dll
Syntax
public class CertificateValidationOptions
Properties
EnableChainCheck
Gets or sets the flag indicating whether checking the certificate chain is enabled.
Declaration
public bool EnableChainCheck { get; set; }
Property Value
Type | Description |
---|---|
System.Boolean | The flag indicating whether checking the certificate chain is enabled. |
EnableNotAfterCheck
Gets or sets the flag indicating whether checking the certificate's not-after date is enabled.
Declaration
public bool EnableNotAfterCheck { get; set; }
Property Value
Type | Description |
---|---|
System.Boolean | The flag indicating whether checking the certificate's not-after date is enabled. |
EnableNotBeforeCheck
Gets or sets the flag indicating whether checking the certificate's not-before date is enabled.
Declaration
public bool EnableNotBeforeCheck { get; set; }
Property Value
Type | Description |
---|---|
System.Boolean | The flag indicating whether checking the certificate's not-before date is enabled. |
RevocationFlag
Gets or sets the flag indicating which certificates in the chain should be checked for revocation.
The default is that only the end certificate is checked for revocation.
Declaration
public X509RevocationFlag RevocationFlag { get; set; }
Property Value
Type | Description |
---|---|
System.Security.Cryptography.X509Certificates.X509RevocationFlag | The flag indicating which certificates in the chain should be checked for revocation. |
RevocationMode
Gets or sets the certificate revocation mode.
The default mode is no revocation check.
Declaration
public X509RevocationMode RevocationMode { get; set; }
Property Value
Type | Description |
---|---|
System.Security.Cryptography.X509Certificates.X509RevocationMode | The certificate revocation mode. |
UrlRetrievalTimeout
Gets or sets the maximum amount of time to be spent during online revocation verification or downloading the CRL.
The default time span is 30 seconds.
Declaration
public TimeSpan UrlRetrievalTimeout { get; set; }
Property Value
Type | Description |
---|---|
System.TimeSpan | The maximum amount of time to be spent during online revocation verification or downloading the CRL. |
VerificationFlags
Gets or sets the flags indicating the conditions under which verification of certificates in the certificate chain should be conducted.
The default is no flags.
Declaration
public X509VerificationFlags VerificationFlags { get; set; }
Property Value
Type | Description |
---|---|
System.Security.Cryptography.X509Certificates.X509VerificationFlags | The flags indicating the conditions under which verification of certificates in the certificate chain should be conducted. |