Code development platform for open source projects from the European Union institutions

Skip to content

Signatures supported by a TL certificate

Pierrick VANDENBROUCKE requested to merge github/fork/jdvorak001/SignatureSupportedByTLCert into develop

Created by: jdvorak001

Correctly fetch TL service info when validating signatures supported by a certificate that is directly listed on the TL. This is the case for almost all types of services except CA/QC, CA/PKC and possibly also ACA i.e., for all services where the TL lists the signing certificate itself (rather than the issuing certificate).

Implementation note: I assume we can't replace the signing CertificateToken (which is coming to SignatureValidationContext from outside) with the one constructed from the TL. This led me to copying the relevant information (the collections of ServiceInfo and CertificateSourceType) over. Please check:

  1. If this is a sensible approach.
  2. If I copy the complete information that needs to be copied.

(Apologies for the mess of the commits. I'm in the process of learning Git.)

Merge request reports

For further information about the platform and support, please see https://code.europa.eu/info/about