Interfaces and Methods

Table 34-11 through Table 34-14 describe the methods in the evidence store service. Package oracle.bpel.services.security.evidence corresponds to the evidence service.

Table 34-11 ITaskEvidenceService Interface

Method	Description
`createEvidence`	Creates evidence and stores it in the repository for nonrepudiation.
`getEvidence`	Gets a list of evidence matching the given criteria. The result also depends on the privileges associated with the user querying the service. If the user has been granted the `workflow.admin.evidenceStore` permission (points to a location detailing how to grant the permission), all matching evidence is visible. Otherwise, only that evidence created by the user is visible.
`uploadCertificate`	Uploads certificates to be used later for signature verification. This is a prerequisite for creating evidence using a given certificate. A user can only upload their certificates.
`updateEvidence`	Updates the CRL verification part of the status. This includes verified time, status, and error messages, if any.
`validateEvidenceSignature`	Validates the evidence signature. This essentially performs a nonrepudiation check on the evidence. A value of `true` is returned if the signature is verified. Otherwise, `false` is returned.

Table 34-12 Evidence Interface

Method	Description
`getCertificate`	Gets the certificate used to sign this evidence.
`getCreateDate`	Gets the creation date of the evidence.
`getErrorMessage`	Gets the error message associated with the CRL validation.
`getEvidenceId`	Gets the unique identifier associated with the evidence.
`getPlainText`	Gets the content that was signed as part of this evidence.
`getPolicy`	Gets the signature policy of the evidence. This is either `PASSWORD` or `CERTIFICATE`.
`getSignature`	Gets the signature of this evidence.
`getSignedDate`	Gets the date on which the signature was created.
`getStatus`	Gets the CRL validation status. This can be one of the following: `AVAILABLE`: The evidence is available for CRL validation. `FAILURE`: CRL validation failed. `SUCCESS`: CRL validation succeeded. `UNAVAILABLE`: The CRL data could not be fetched. `WAIT`: CRL validation is in progress.
`getTaskId`	Gets the unique identifier of the task with which this evidence is associated.
`getTaskNumber`	Gets the task number of the task with which this evidence is associated.
`getTaskPriority`	Gets the task priority of the task with which this evidence is associated.
`getTaskStatus`	Gets the task status of the task with which this evidence is associated.
`getTaskSubStatus`	Gets the task substatus of the task with which this evidence is associated.
`getTaskTitle`	Gets the title of the task with which this evidence is associated.
`getTaskVersion`	Gets the version of the task with which this evidence is associated.
`getVerifiedDate`	Gets the date on which the CRL validation of the certificate used was performed.
`getWorkflowType`	Gets the workflow type of the task with which this evidence is associated. This is typically `BPELWF`.

Table 34-13 Certificate Interface

Method	Description
`getCA`	Gets the certificate issuer's distinguished name (DN).
`getCertificate`	Gets the certificate object that is abstracted by the interface.
`getID`	Gets the certificate's serial number.
`getIdentityContext`	Gets the identity context with which the uploader of this certificate is associated.
`getUserName`	Gets the user name with whom this certificate is associated.
`isValid`	Returns `true` if the certificate is still valid.

Table 34-14 Policy Type and Workflow Type Interface

Method	Description
`fromValue`	Constructs an object from the string representation.
`value`	Returns the string representation of this object.

For more information, see the following:

How to Specify a Workflow Digital Signature Policy for details about specifying digital signatures and digital certificates in the Human Task Editor
Designing Task Forms for Human Tasks for details about digitally signing a task action in the Oracle BPM Worklist