check_key(signer, key) Instance Public methods Ensures the public key of key matches the public key in signer

check_root(chain, time) Instance Public methods Ensures the root certificate in chain is self-signed and valid for time.

check_trust(chain, digester, trust_dir) Instance Public methods Ensures the root of chain has a trusted certificate in trust_dir and the digests of the two certificates match according to digester

verify(chain, key = nil, digests = {}) Instance Public methods Verifies the certificate chain is valid, the digests match the signatures signatures created by the signer depending on the policy settings. If key is given it is used to validate the signing certificate.

verify_signatures(spec, digests, signatures) Instance Public methods Extracts the certificate chain from the spec and calls verify to ensure the signatures and certificate chain is valid according to the policy..

new(key, cert_chain) Class Public methods Creates a new signer with an RSA key or path to a key, and a certificate chain containing X509 certificates, encoding certificates or paths to certificates.

sign(data) Instance Public methods Sign data with given digest algorithm

new(dir, permissions = DEFAULT_PERMISSIONS) Class Public methods

cert_path(certificate) Instance Public methods Returns the path to the trusted certificate

each_certificate() Instance Public methods Enumerates trusted certificates.