nsICertOverrideService
| IID: | 13ca097a-935c-4a62-9c91-7a9d803ae701 |
| Inherits From: | nsISupports |
This represents the global list of triples {host:port, cert-fingerprint, allowed-overrides} that the user wants to accept without further warnings.
This interface is implemented by the following components:
Constants
| Override Untrusted | ||
| PRInt16 | ERROR_UNTRUSTED | = 1 |
| Override hostname Mismatch | ||
| PRInt16 | ERROR_MISMATCH | = 2 |
| Override Time error | ||
| PRInt16 | ERROR_TIME | = 4 |
Methods
void clearValidityOverride ( AString hostNameWithPort )
void getAllOverrideHostsWithPorts ( out PRUint32 count , out arrayof PRUnichar* hostsWithPortsArray )
PRBool getValidityOverride ( AString hostNameWithPort , out ACString hashAlg , out ACString fingerprint , out PRUint32 overrideBits , out PRBool isTemporary )
PRBool hasMatchingOverride ( AString hostNameWithPort , nsIX509Cert cert , out PRUint32 overrideBits , out PRBool isTemporary )
PRUint32 isCertUsedForOverrides ( nsIX509Cert cert , PRBool checkTemporaries , PRBool checkPermanents )
void rememberValidityOverride ( AString hostNameWithPort , nsIX509Cert cert , PRUint32 overrideBits , PRBool temporary )
void clearValidityOverride ( AString hostNameWithPort )
Remove a override for the given hostname:port.
- Arguments:
- hostNameWithPort: The host:port whose entry should be cleared.
void getAllOverrideHostsWithPorts ( out PRUint32 count , out arrayof PRUnichar* hostsWithPortsArray )
Obtain the full list of hostname:port for which overrides are known.
- Arguments:
- count: The number of host:port entries returned
- hostsWithPortsArray: The array of host:port entries returned
PRBool getValidityOverride ( AString hostNameWithPort , out ACString hashAlg , out ACString fingerprint , out PRUint32 overrideBits , out PRBool isTemporary )
Retrieve the stored override for the given hostname:port.
- Arguments:
- hostNameWithPort: The host:port whose entry should be tested
- hashAlg: On return value True, the fingerprint hash algorithm as an OID value in dotted notation.
- fingerprint: On return value True, the stored fingerprint
- overrideBits: The errors that are currently overriden
- isTemporary
- Returns:
- whether a matching override entry for aHostNameWithPort and aFingerprint is currently on file
PRBool hasMatchingOverride ( AString hostNameWithPort , nsIX509Cert cert , out PRUint32 overrideBits , out PRBool isTemporary )
The given cert should always be accepted for the given hostname:port, regardless of errors verifying the cert. Host:Port is a primary key, only one entry per host:port can exist. The implementation will store a fingerprint of the cert. The implementation will decide which fingerprint alg is used.
- Arguments:
- hostNameWithPort: The host:port this mapping belongs to
- cert: The cert that should always be accepted
- overrideBits: The errors that are currently overriden
- isTemporary
- Returns:
- whether an override entry for aHostNameWithPort is currently on file that matches the given certificate
PRUint32 isCertUsedForOverrides ( nsIX509Cert cert , PRBool checkTemporaries , PRBool checkPermanents )
Is the given cert used in rules?
- Arguments:
- cert: The cert we're looking for
- checkTemporaries
- checkPermanents
- Returns:
- how many override entries are currently on file for the given certificate
void rememberValidityOverride ( AString hostNameWithPort , nsIX509Cert cert , PRUint32 overrideBits , PRBool temporary )
The given cert should always be accepted for the given hostname:port, regardless of errors verifying the cert. Host:Port is a primary key, only one entry per host:port can exist. The implementation will store a fingerprint of the cert. The implementation will decide which fingerprint alg is used.
- Arguments:
- hostNameWithPort: The host:port this mapping belongs to
- cert: The cert that should always be accepted
- overrideBits: The errors we want to be overriden
- temporary
Reference documentation is generated from Mozilla's source.