Summary: Verifies if a certificate can be used for a particular purpose
PHP 5Related methods: none
int openssl_x509_checkpurpose(mixed $x509cert, int $purpose[, array $cainfo = array(), string $untrustedfile])
openssl_x509_checkpurpose() examines a certificate to see if it can be used for the specified
TRUE if the certificate can be used for the intended purpose,
FALSE if it cannot, or -1 on error.
- mixed $x509cert: The examined certificate.
- int $purpose:
openssl_x509_checkpurpose() purposesThese options are not bitfields - you may specify one only!
Constant Description X509_PURPOSE_SSL_CLIENT Can the certificate be used for the client side of an SSL connection? X509_PURPOSE_SSL_SERVER Can the certificate be used for the server side of an SSL connection? X509_PURPOSE_NS_SSL_SERVER Can the cert be used for Netscape SSL server? X509_PURPOSE_SMIME_SIGN Can the cert be used to sign S/MIME email? X509_PURPOSE_SMIME_ENCRYPT Can the cert be used to encrypt S/MIME email? X509_PURPOSE_CRL_SIGN Can the cert be used to sign a certificate revocation list (CRL)? X509_PURPOSE_ANY Can the cert be used for Any/All purposes?
- array $cainfo [ = array()]:
cainfoshould be an array of trusted CA files/dirs as described in Certificate Verification.
- string $untrustedfile: If specified, this should be the name of a PEM encoded file holding certificates that can be used to help verify the certificate, although no trust is placed in the certificates that come from that file.