X509BasicConstraintsExtension Kelas
Definisi
Penting
Beberapa informasi terkait produk prarilis yang dapat diubah secara signifikan sebelum dirilis. Microsoft tidak memberikan jaminan, tersirat maupun tersurat, sehubungan dengan informasi yang diberikan di sini.
Menentukan batasan yang ditetapkan pada sertifikat. Kelas ini tidak dapat diwariskan.
public ref class X509BasicConstraintsExtension sealed : System::Security::Cryptography::X509Certificates::X509Extension
public sealed class X509BasicConstraintsExtension : System.Security.Cryptography.X509Certificates.X509Extension
type X509BasicConstraintsExtension = class
inherit X509Extension
Public NotInheritable Class X509BasicConstraintsExtension
Inherits X509Extension
- Warisan
Contoh
Contoh kode berikut menunjukkan cara membuka penyimpanan sertifikat pribadi pengguna dan menampilkan informasi tentang setiap sertifikat di penyimpanan. Contoh ini menggunakan X509BasicConstraintsExtension kelas untuk menampilkan informasi.
#using <System.dll>
#using <system.security.dll>
using namespace System;
using namespace System::Security::Cryptography;
using namespace System::Security::Cryptography::X509Certificates;
int main()
{
try
{
X509Store^ store = gcnew X509Store( L"MY",StoreLocation::CurrentUser );
store->Open( static_cast<OpenFlags>(OpenFlags::ReadOnly | OpenFlags::OpenExistingOnly) );
X509Certificate2Collection^ collection = dynamic_cast<X509Certificate2Collection^>(store->Certificates);
for ( int i = 0; i < collection->Count; i++ )
{
System::Collections::IEnumerator^ myEnum = collection[ i ]->Extensions->GetEnumerator();
while ( myEnum->MoveNext() )
{
X509Extension^ extension = safe_cast<X509Extension^>(myEnum->Current);
Console::WriteLine( L"{0}({1})", extension->Oid->FriendlyName, extension->Oid->Value );
if ( extension->Oid->FriendlyName == L"Key Usage" )
{
X509KeyUsageExtension^ ext = dynamic_cast<X509KeyUsageExtension^>(extension);
Console::WriteLine( ext->KeyUsages );
}
if ( extension->Oid->FriendlyName == L"Basic Constraints" )
{
X509BasicConstraintsExtension^ ext = dynamic_cast<X509BasicConstraintsExtension^>(extension);
Console::WriteLine( ext->CertificateAuthority );
Console::WriteLine( ext->HasPathLengthConstraint );
Console::WriteLine( ext->PathLengthConstraint );
}
if ( extension->Oid->FriendlyName == L"Subject Key Identifier" )
{
X509SubjectKeyIdentifierExtension^ ext = dynamic_cast<X509SubjectKeyIdentifierExtension^>(extension);
Console::WriteLine( ext->SubjectKeyIdentifier );
}
if ( extension->Oid->FriendlyName == L"Enhanced Key Usage" )
{
X509EnhancedKeyUsageExtension^ ext = dynamic_cast<X509EnhancedKeyUsageExtension^>(extension);
OidCollection^ oids = ext->EnhancedKeyUsages;
System::Collections::IEnumerator^ myEnum1 = oids->GetEnumerator();
while ( myEnum1->MoveNext() )
{
Oid^ oid = safe_cast<Oid^>(myEnum1->Current);
Console::WriteLine( L"{0}({1})", oid->FriendlyName, oid->Value );
}
}
}
}
store->Close();
}
catch ( CryptographicException^ )
{
Console::WriteLine( L"Information could not be written out for this certificate." );
}
}
using System;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
public class CertSelect
{
public static void Main()
{
try
{
X509Store store = new X509Store("MY", StoreLocation.CurrentUser);
store.Open(OpenFlags.ReadOnly | OpenFlags.OpenExistingOnly);
X509Certificate2Collection collection = (X509Certificate2Collection)store.Certificates;
for (int i = 0; i < collection.Count; i++)
{
foreach (X509Extension extension in collection[i].Extensions)
{
Console.WriteLine(extension.Oid.FriendlyName + "(" + extension.Oid.Value + ")");
if (extension.Oid.FriendlyName == "Key Usage")
{
X509KeyUsageExtension ext = (X509KeyUsageExtension)extension;
Console.WriteLine(ext.KeyUsages);
}
if (extension.Oid.FriendlyName == "Basic Constraints")
{
X509BasicConstraintsExtension ext = (X509BasicConstraintsExtension)extension;
Console.WriteLine(ext.CertificateAuthority);
Console.WriteLine(ext.HasPathLengthConstraint);
Console.WriteLine(ext.PathLengthConstraint);
}
if (extension.Oid.FriendlyName == "Subject Key Identifier")
{
X509SubjectKeyIdentifierExtension ext = (X509SubjectKeyIdentifierExtension)extension;
Console.WriteLine(ext.SubjectKeyIdentifier);
}
if (extension.Oid.FriendlyName == "Enhanced Key Usage")
{
X509EnhancedKeyUsageExtension ext = (X509EnhancedKeyUsageExtension)extension;
OidCollection oids = ext.EnhancedKeyUsages;
foreach (Oid oid in oids)
{
Console.WriteLine(oid.FriendlyName + "(" + oid.Value + ")");
}
}
}
}
store.Close();
}
catch (CryptographicException)
{
Console.WriteLine("Information could not be written out for this certificate.");
}
}
}
Imports System.Security.Cryptography
Imports System.Security.Cryptography.X509Certificates
Module CertSelect
Sub Main()
Try
Dim store As New X509Store("MY", StoreLocation.CurrentUser)
store.Open(OpenFlags.ReadOnly Or OpenFlags.OpenExistingOnly)
Dim collection As X509Certificate2Collection = CType(store.Certificates, X509Certificate2Collection)
For i As Integer = 0 To collection.Count - 1
Dim extension As X509Extension
For Each extension In collection(i).Extensions
Console.WriteLine(extension.Oid.FriendlyName + "(" + extension.Oid.Value + ")")
If extension.Oid.FriendlyName = "Key Usage" Then
Dim ext As X509KeyUsageExtension = CType(extension, X509KeyUsageExtension)
Console.WriteLine(ext.KeyUsages)
End If
If extension.Oid.FriendlyName = "Basic Constraints" Then
Dim ext As X509BasicConstraintsExtension = CType(extension, X509BasicConstraintsExtension)
Console.WriteLine(ext.CertificateAuthority)
Console.WriteLine(ext.HasPathLengthConstraint)
Console.WriteLine(ext.PathLengthConstraint)
End If
If extension.Oid.FriendlyName = "Subject Key Identifier" Then
Dim ext As X509SubjectKeyIdentifierExtension = CType(extension, X509SubjectKeyIdentifierExtension)
Console.WriteLine(ext.SubjectKeyIdentifier)
End If
If extension.Oid.FriendlyName = "Enhanced Key Usage" Then
Dim ext As X509EnhancedKeyUsageExtension = CType(extension, X509EnhancedKeyUsageExtension)
Dim oids As OidCollection = ext.EnhancedKeyUsages
Dim oid As Oid
For Each oid In oids
Console.WriteLine(oid.FriendlyName + "(" + oid.Value + ")")
Next oid
End If
Next extension
Next i
store.Close()
Catch
Console.WriteLine("Information could not be written out for this certificate.")
End Try
End Sub
End Module
Keterangan
Kelas ini menyediakan properti yang menentukan batasan dasar yang ditetapkan pada sertifikat.
Konstruktor
X509BasicConstraintsExtension() |
Menginisialisasi instans baru kelas X509BasicConstraintsExtension. |
X509BasicConstraintsExtension(AsnEncodedData, Boolean) |
Menginisialisasi instans X509BasicConstraintsExtension baru kelas menggunakan AsnEncodedData objek dan nilai yang mengidentifikasi apakah ekstensi sangat penting. |
X509BasicConstraintsExtension(Boolean, Boolean, Int32, Boolean) |
Menginisialisasi instans baru kelas X509BasicConstraintsExtension. Parameter menentukan nilai yang menunjukkan apakah sertifikat adalah sertifikat otoritas sertifikat (CA), nilai yang menunjukkan apakah sertifikat memiliki batasan pada jumlah tingkat jalur yang diizinkannya, jumlah tingkat yang diizinkan dalam jalur sertifikat, dan nilai yang menunjukkan apakah ekstensi sangat penting. |
Properti
CertificateAuthority |
Mendapatkan nilai yang menunjukkan apakah sertifikat adalah sertifikat otoritas sertifikat (CA). |
Critical |
Mendapatkan nilai Boolean yang menunjukkan apakah ekstensi sangat penting. (Diperoleh dari X509Extension) |
HasPathLengthConstraint |
Mendapatkan nilai yang menunjukkan apakah sertifikat memiliki batasan pada jumlah tingkat jalur yang diizinkannya. |
Oid |
Mendapatkan atau mengatur Oid nilai untuk objek AsnEncodedData . (Diperoleh dari AsnEncodedData) |
PathLengthConstraint |
Mendapatkan jumlah tingkat yang diizinkan dalam jalur sertifikat. |
RawData |
Mendapatkan atau mengatur data yang dikodekan Abstract Syntax Notation One (ASN.1) yang direpresentasikan dalam array byte. (Diperoleh dari AsnEncodedData) |
Metode
CopyFrom(AsnEncodedData) |
Menginisialisasi instans X509BasicConstraintsExtension baru kelas menggunakan AsnEncodedData objek . |
CreateForCertificateAuthority(Nullable<Int32>) |
Membuat instans X509BasicConstraintsExtension yang sesuai untuk otoritas sertifikat, secara opsional termasuk nilai batasan panjang jalur. |
CreateForEndEntity(Boolean) |
Membuat instans X509BasicConstraintsExtension yang sesuai untuk sertifikat entitas akhir, secara opsional menandai ekstensi sebagai penting. |
Equals(Object) |
Menentukan apakah objek yang ditentukan sama dengan objek saat ini. (Diperoleh dari Object) |
Format(Boolean) |
Mengembalikan versi terformat dari data yang dikodekan Abstract Syntax Notation One (ASN.1) sebagai string. (Diperoleh dari AsnEncodedData) |
GetHashCode() |
Berfungsi sebagai fungsi hash default. (Diperoleh dari Object) |
GetType() |
Mendapatkan dari instans Type saat ini. (Diperoleh dari Object) |
MemberwiseClone() |
Membuat salinan dangkal dari saat ini Object. (Diperoleh dari Object) |
ToString() |
Mengembalikan string yang mewakili objek saat ini. (Diperoleh dari Object) |