1 files changed, 37 insertions, 0 deletions

diff --git a/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/provisional/verifier/CertificateTrustAuthority.java b/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/provisional/verifier/CertificateTrustAuthority.java
new file mode 100644
index 000000000..d418de8a3
--- /dev/null
+++ b/bundles/org.eclipse.osgi/container/src/org/eclipse/osgi/internal/provisional/verifier/CertificateTrustAuthority.java
@@ -0,0 +1,37 @@
+/*******************************************************************************
+ * Copyright (c) 2006, 2008 IBM Corporation and others.
+ * All rights reserved. This program and the accompanying materials
+ * are made available under the terms of the Eclipse Public License v1.0
+ * which accompanies this distribution, and is available at
+ * http://www.eclipse.org/legal/epl-v10.html
+ *
+ * Contributors:
+ *     IBM Corporation - initial API and implementation
+ *******************************************************************************/
+
+package org.eclipse.osgi.internal.provisional.verifier;
+
+import java.security.cert.Certificate;
+import java.security.cert.CertificateException;
+
+/**
+ * A CertificateTrustAuthority is used to check if certificate chains are trusted.
+ * 
+ */
+public interface CertificateTrustAuthority {
+
+	/**
+	 * Determines if the certificates are trusted.  This method will throw a 
+	 * <code>CertificateException</code> if the specified certificate chain is not trusted.
+	 * @param certChain a chain of certificates
+	 * @throws CertificateException if the certficates are not trusted
+	 */
+	public void checkTrust(Certificate[] certChain) throws CertificateException;
+
+	/**
+	 * Add the specified certificate chain as a trusted certificate chain.
+	 * 
+	 * @param certChain a chain of certificates
+	 */
+	public void addTrusted(Certificate[] certChain) throws CertificateException;
+}