|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.opends.server.util.ExpirationCheckTrustManager
@PublicAPI(stability=UNCOMMITTED, mayInstantiate=true, mayExtend=false, mayInvoke=true) public final class ExpirationCheckTrustManager
This class implements an X.509 trust manager that will be used to wrap an existing trust manager and makes it possible to reject a presented certificate if that certificate is outside the validity window.
Constructor Summary | |
---|---|
ExpirationCheckTrustManager(javax.net.ssl.X509TrustManager trustManager)
Creates a new instance of this trust manager that will wrap the provided trust manager. |
Method Summary | |
---|---|
void |
checkClientTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Determines whether to trust the peer based on the provided certificate chain. |
void |
checkServerTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Determines whether to trust the peer based on the provided certificate chain. |
java.security.cert.X509Certificate[] |
getAcceptedIssuers()
Retrieves the set of CA certificates which are trusted for authenticating peers. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public ExpirationCheckTrustManager(javax.net.ssl.X509TrustManager trustManager)
trustManager
- The trust manager to be wrapped by this trust
manager.Method Detail |
---|
public void checkClientTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkClientTrusted
in interface javax.net.ssl.X509TrustManager
chain
- The peer certificate chain.authType
- The authentication type based on the client certificate.
java.security.cert.CertificateException
- If the client certificate chain is not
trusted.public void checkServerTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkServerTrusted
in interface javax.net.ssl.X509TrustManager
chain
- The peer certificate chain.authType
- The key exchange algorithm used.
java.security.cert.CertificateException
- If the server certificate chain is not
trusted.public java.security.cert.X509Certificate[] getAcceptedIssuers()
getAcceptedIssuers
in interface javax.net.ssl.X509TrustManager
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |