-
Notifications
You must be signed in to change notification settings - Fork 29.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ability to access certificate extensions through Crypto
API X509Certificate
class
#48730
Comments
Certificate extensions cal also allow access to CRL Distribution Points which are not in Authority Information Access field. |
i created a pr hope it is a correct solution I would be very happy if you have a comment |
Cyrpto
API x509
classCrypto
API X509Certificate
class
I am grateful @mertcanaltin is working on getting extensions into this API however it's concerning that the |
There has been no activity on this feature request for 5 months. To help maintain relevant open issues, please add the
never-stale
|
There has been no activity on this feature request and it is being closed. If you feel closing this issue is not the right thing to do, please leave a comment. For more information on how the project manages feature requests, please consult the feature request management document. |
What is the problem this feature will solve?
Key usages (not extend) are completely different and can only be accessed through certificate extension under OID 2.5.29.15 which contains value in a bit array format.
Key usage can have for definition: Digital signature, Non-repudiation, Key encipherment, Data encipherment, Key agreement, Certificate signing, CRL signing, Encipher only, Decipher only.
As of now Crypto API only provides access to Extended Key usage under the
x509.keyUsage
but does not provide access to the Key Usage through the certificate Extensions part.What is the feature you are proposing to solve the problem?
Having a method the class
x509
that can allow to have access to the Extension part of a certificate through a safe structure.What alternatives have you considered?
Using 3rd party libraries like PKIjs or Forge, but I would like a native feature instead.
The text was updated successfully, but these errors were encountered: