Skip to content

Add intermediate certificates to auth token model#69

Open
aarmam wants to merge 18 commits into
web-eid-mobilefrom
NFC-128
Open

Add intermediate certificates to auth token model#69
aarmam wants to merge 18 commits into
web-eid-mobilefrom
NFC-128

Conversation

@aarmam

@aarmam aarmam commented Jul 6, 2026

Copy link
Copy Markdown

Signed-off-by: Mart Aarma mart.aarma@nortal.com

Sander Kondratjev and others added 17 commits June 16, 2026 13:25
Signed-off-by: Sander Kondratjev <sander.kondratjev@nortal.com>
Signed-off-by: Sander Kondratjev <sander.kondratjev@nortal.com>
Signed-off-by: Sander Kondratjev <sander.kondratjev@nortal.com>
Signed-off-by: Sander Kondratjev <sander.kondratjev@nortal.com>
@aarmam aarmam requested a review from mrts July 6, 2026 09:33
Ports Java commit b09b84f5: add ResponderIssuerMatchingPolicy
(EXACT_CERTIFICATE default, SUBJECT_AND_PUBLIC_KEY opt-in) so that
accepting equivalent cross-certificates for the AIA OCSP responder's
issuer is an explicit choice instead of always-on behavior. The
opt-in policy also requires revocation checking of non-anchor
intermediates in the responder's own certification path, wired
through the existing IntermediateRevocationChecker.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant