multipaz/org.multipaz.certext/MultipazExtension

MultipazExtension

data class MultipazExtension(val cloudKeyAttestation: CloudKeyAttestation? = null, val googleAccount: GoogleAccount? = null)

Certificate extension for Multipaz.

This certificate extension may appear in several kinds of certificates. Its payload is a CBOR map with the following well-known keys

MultipazExtension = {
  ? "cloudKeyAttestation" : CloudKeyAttestation,
  ? "googleAccount" : GoogleAccount
}
Content copied to clipboard

This map may be extended in the future with additional fields.

If this extension is included in a X.509 certificate it shall use the OID defined by org.multipaz.asn1.OID.X509_EXTENSION_MULTIPAZ_EXTENSION and the payload must be an OCTET STRING containing the bytes of the CBOR conforming to the CDDL defined above.

If used for key attestation for org.multipaz.securearea.cloud.CloudSecureArea the cloudKeyAttestation field must be set and the extension must appear on the X.509 certificate for the created key. See CloudKeyAttestation for more details.

If used in a reader certificate for reader authentication the googleAccount field may be set. See GoogleAccount for more details.

Constructors

Link copied to clipboard
constructor(cloudKeyAttestation: CloudKeyAttestation? = null, googleAccount: GoogleAccount? = null)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
Link copied to clipboard
val googleAccount: GoogleAccount? = null

a GoogleAccount or null.

Functions

Link copied to clipboard
fun prettyPrint(): String

Pretty-prints the contents of the extension.