Update async-demo.php

- Added `numSignatures` to `getAuthorizationUrl()` call (seems to be required by some endpoints)
- Add LTV only in the additional DSS update.
- Added handling of new optional setting flag `allowTrustedIntermediateCertificatesWithoutVri` which is forward to the `Collector` class.

Author: JanSlabon

examples/async-demo.php

@@ -150,18 +150,6 @@ public function getAccessTokenOptions($method, array $params)
         ['hashAlgorithm' => $hashAlgorithm, 'signAlgorithm' => $signAlgorithm] = Module::findHashAndSignAlgorithm($signatureAlgorithmOid);
         $module->setDigest($hashAlgorithm);
 
-        // create a collector instance
-        $collector = new Collector(new Collection($certificates));
-        // collect revocation information for this certificate
-        $vriData = $collector->getByCertificate($certificate);
-
-        foreach ($vriData->getOcspResponses() as $ocspResponse) {
-            $module->addOcspResponse($ocspResponse);
-        }
-        foreach ($vriData->getCrls() as $crl) {
-            $module->addCrl($crl);
-        }
-
         $signer->setSignatureContentLength(20000);
         $tmpDocument = $signer->preSign(
             new FileWriter(TempFileWriter::createTempPath()),
@@ -175,7 +163,8 @@ public function getAccessTokenOptions($method, array $params)
         $authorizationUrl = $provider->getAuthorizationUrl([
             'scope' => 'credential',
             'credentialID' => $credentialId,
-            'hash' => $hashData
+            'hash' => $hashData,
+            'numSignatures' => 1,
         ]);
 
         $_SESSION[__FILE__] = [
@@ -186,7 +175,6 @@ public function getAccessTokenOptions($method, array $params)
             'signAlgorithm' => $signAlgorithm,
             'signAlgorithmOid' => $signatureAlgorithmOid,
             'certificates' => $certificates,
-            'vriData' => $vriData,
             'oauth2state' => $provider->getState(),
         ];
 
@@ -230,7 +218,7 @@ public function getAccessTokenOptions($method, array $params)
             Digest::$oids[$module->getDigest()],
             isset($signatureAlgorithmParameters) ? (string)$signatureAlgorithmParameters : null
         );
-//    var_dump($result);
+
         $signatureValue = (string) \base64_decode($result['signatures'][0]);
         if ($_SESSION[__FILE__]['signAlgorithm'] === Digest::ECDSA_ALGORITHM) {
             $signatureValue = Module::fixEccSignatures($signatureValue);
@@ -259,14 +247,11 @@ public function getAccessTokenOptions($method, array $params)
 
         // create a VRI collector instance
         $collector = new Collector(new Collection($_SESSION[__FILE__]['certificates']));
-        $vriData = $collector->getByFieldName(
-            $document,
-            $fieldName,
-            Collector::SOURCE_OCSP_OR_CRL,
-            null,
-            null,
-            $_SESSION[__FILE__]['vriData'] // pass the previously gathered VRI data
+        $collector->setAllowTrustedIntermediateCertificatesWithoutVri(
+            isset($settings['allowTrustedIntermediateCertificatesWithoutVri'])
         );
+
+        $vriData = $collector->getByFieldName($document, $fieldName);
         // and add it to the document.
         $dss = new DocumentSecurityStore($document);
         $dss->addValidationRelatedInfoByFieldName(