org.ldaptive.ssl

Class HostnameVerifyingTrustManager

java.lang.Object

org.ldaptive.ssl.HostnameVerifyingTrustManager

All Implemented Interfaces:

javax.net.ssl.TrustManager, javax.net.ssl.X509TrustManager

public class HostnameVerifyingTrustManager
extends java.lang.Object
implements javax.net.ssl.X509TrustManager

Trust manager that delegates to CertificateHostnameVerifier. Any name that verifies passes this trust manager check.

Field Summary

Fields

Modifier and Type	Field and Description
private java.lang.String[]	hostnames Hostnames to allow.
private CertificateHostnameVerifier	hostnameVerifier Hostname verifier to use for trust.
protected org.slf4j.Logger	logger Logger for this class.

Constructor Summary

Constructors

Constructor and Description
HostnameVerifyingTrustManager(CertificateHostnameVerifier verifier, java.lang.String... names) Creates a new hostname verifying trust manager.

Method Summary

Modifier and Type	Method and Description
private void	checkCertificateTrusted(java.security.cert.X509Certificate cert) Verifies the supplied certificate using the hostname verifier with each hostname.
void	checkClientTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType)
void	checkServerTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType)
java.security.cert.X509Certificate[]	getAcceptedIssuers()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

logger

protected final org.slf4j.Logger logger

Logger for this class.

hostnames

private final java.lang.String[] hostnames

Hostnames to allow.

hostnameVerifier

private final CertificateHostnameVerifier hostnameVerifier

Hostname verifier to use for trust.

Constructor Detail

HostnameVerifyingTrustManager

public HostnameVerifyingTrustManager(CertificateHostnameVerifier verifier,
                                     java.lang.String... names)

Creates a new hostname verifying trust manager.

Parameters:

verifier - that establishes trust

names - to match against a certificate

Method Detail

checkClientTrusted

public void checkClientTrusted(java.security.cert.X509Certificate[] chain,
                               java.lang.String authType)
                        throws java.security.cert.CertificateException

Specified by:

checkClientTrusted in interface javax.net.ssl.X509TrustManager

Throws:

java.security.cert.CertificateException

checkServerTrusted

public void checkServerTrusted(java.security.cert.X509Certificate[] chain,
                               java.lang.String authType)
                        throws java.security.cert.CertificateException

Specified by:

checkServerTrusted in interface javax.net.ssl.X509TrustManager

Throws:

java.security.cert.CertificateException

checkCertificateTrusted

private void checkCertificateTrusted(java.security.cert.X509Certificate cert)
                              throws java.security.cert.CertificateException

Verifies the supplied certificate using the hostname verifier with each hostname.

Parameters:

cert - to verify

Throws:

java.security.cert.CertificateException - if none of the hostnames verify

getAcceptedIssuers

public java.security.cert.X509Certificate[] getAcceptedIssuers()

Specified by:

getAcceptedIssuers in interface javax.net.ssl.X509TrustManager