From f41a899539773146907eef25b459b4360719fd14 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 21 Aug 2023 16:49:20 +0200
Subject: feat(sl20): add basic certificate-validity check into JWS validation

The check can be disabled by using the configuration property: modules.sl20.security.truststore.need.valid.certificate
---
 .../src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java      | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'eaaf_modules/eaaf_module_auth_sl20/src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java')

diff --git a/eaaf_modules/eaaf_module_auth_sl20/src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java b/eaaf_modules/eaaf_module_auth_sl20/src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java
index 74d67d01..b454558a 100644
--- a/eaaf_modules/eaaf_module_auth_sl20/src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java
+++ b/eaaf_modules/eaaf_module_auth_sl20/src/main/java/at/gv/egiz/eaaf/modules/auth/sl20/Constants.java
@@ -36,6 +36,8 @@ public class Constants {
       CONFIG_PROP_PREFIX + ".security.truststore.path";
   public static final String CONFIG_PROP_SECURITY_TRUSTSTORE_PASSWORD =
       CONFIG_PROP_PREFIX + ".security.truststore.password";
+  public static final String CONFIG_PROP_SECURITY_TRUSTSTORE_NEED_VALID_CERTIFICATE =
+      CONFIG_PROP_PREFIX + ".security.truststore.need.valid.certificate";
 
   public static final String CONFIG_PROP_SECURITY_SIG_ALG_RSA =
       CONFIG_PROP_PREFIX + ".security.sigalg.rsa";
-- 
cgit v1.2.3