Macromedia live cycle 7.2 매뉴얼
79
D
Content and Format of the trust.xml File
This chapter applies to LiveCycle Reader Extensions and LiveCycle Document Security only.
The trust.xml file contains most of the trust information needed by the PDF Manipulation Module. Any
trust information not directly contained in the file is referred to by the file.
trust information not directly contained in the file is referred to by the file.
The trust.xml file consists of the following sections:
●
trustAnchors (certificates)
●
credentials
●
CRLs
●
prefs (preferences)
These sections can be arranged in any order, and each section consists of record elements pertaining to
that section. There can be multiple instances of each section. Preference names and values are all
case-sensitive.
that section. There can be multiple instances of each section. Preference names and values are all
case-sensitive.
This chapter describes the content and format of each section of the trust. xml file.
Example of the trust.xml file
The following text is an example of a typical trust. xml file:
<?xml version="1.0" encoding="UTF-8" ?>
<trust>
<trust>
<trustAnchors>
<cerrecord cerFile="JohnSmithDER.cer" TrustedFor="Signatures
CertifiedDocuments DynamicContent Identity SSL" />
<cerrecord cerFile="Alice.cer" TrustedFor="Identity Signatures" />
CertifiedDocuments DynamicContent Identity SSL" />
<cerrecord cerFile="Alice.cer" TrustedFor="Identity Signatures" />
</trustAnchors>
<CRLs>
<CRLs>
<crl URL="http://crl.adobe.com/testCA3.crl" filename="testCA3.crl" />
<crl URL="http://crl.adobe.com/testCA4.crl" filename="testCA4.crl" />
<crl URL="http://crl.adobe.com/cds.crl" filename="cds.crl" />
<crl URL="http://crl.adobe.com/testCA4.crl" filename="testCA4.crl" />
<crl URL="http://crl.adobe.com/cds.crl" filename="cds.crl" />
</CRLs>
<credentials>
<credentials>
<p12record alias="alice" p12="alice.pfx" EmbedRevInfo="false"
TimestampURL="http://uname:password@tsa.com/tsa" />
<p12record alias="bob" p12="bob.pfx" />
<p12record alias="charlie" p12="Charlie.pfx" />
<p12record alias="doug" p12="Doug.pfx" />
<hsmrecord alias="Alicehsm" slot="17" dllpath="/dev/null" />
<p12record alias="GoodUbiquity" p12="gretsky-alpha-2.pfx" />
<p12record alias="johnsmith" p12="johnsmith.pfx" />
<MSCAPIrecord alias="AliceCertify"
sha1="c4500e618f4fc1cef417020bb3638bd82a78ccec" />
<p12record alias="UBFormsEval" p12="UBFormsEval.pfx" />
TimestampURL="http://uname:password@tsa.com/tsa" />
<p12record alias="bob" p12="bob.pfx" />
<p12record alias="charlie" p12="Charlie.pfx" />
<p12record alias="doug" p12="Doug.pfx" />
<hsmrecord alias="Alicehsm" slot="17" dllpath="/dev/null" />
<p12record alias="GoodUbiquity" p12="gretsky-alpha-2.pfx" />
<p12record alias="johnsmith" p12="johnsmith.pfx" />
<MSCAPIrecord alias="AliceCertify"
sha1="c4500e618f4fc1cef417020bb3638bd82a78ccec" />
<p12record alias="UBFormsEval" p12="UBFormsEval.pfx" />
</credentials>