:right-sidebar: True

TlsCertificateFlags
===================================================================

.. currentmodule:: gi.repository.Gio


.. versionadded:: 2.28




.. class:: TlsCertificateFlags
   :no-contents-entry:






A set of flags describing TLS certification validation. This can be
used to describe why a particular certificate was rejected (for
example, in :obj:`~gi.repository.Gio.TlsConnection`::accept-certificate).

GLib guarantees that if certificate verification fails, at least one
flag will be set, but it does not guarantee that all possible flags
will be set. Accordingly, you may not safely decide to ignore any
particular type of error. For example, it would be incorrect to mask
:const:`~gi.repository.Gio.TlsCertificateFlags.EXPIRED` if you want to allow expired certificates,
because this could potentially be the only error flag set even if
other problems exist with the certificate.













Fields
------

.. rst-class:: interim-class

.. class:: TlsCertificateFlags
   :no-index:
   

   .. attribute:: BAD_IDENTITY

      The certificate does not match the
      expected identity of the site that it was retrieved from.







   .. attribute:: EXPIRED

      The certificate has expired







   .. attribute:: GENERIC_ERROR

      Some other error occurred validating
      the certificate







   .. attribute:: INSECURE

      The certificate's algorithm is
      considered insecure.







   .. attribute:: NOT_ACTIVATED

      The certificate's activation time
      is still in the future







   .. attribute:: NO_FLAGS

      No flags set. Since: 2.74







   .. attribute:: REVOKED

      The certificate has been revoked
      according to the :obj:`~gi.repository.Gio.TlsConnection`'s certificate revocation list.







   .. attribute:: UNKNOWN_CA

      The signing certificate authority is
      not known.







   .. attribute:: VALIDATE_ALL

      The combination of all of the above
      flags