|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.jsslutils.extra.gsi.GsiWrappingTrustManager
public class GsiWrappingTrustManager
TrustManager that accepts GSI proxy certificates (clients).
Nested Class Summary | |
---|---|
static class |
GsiWrappingTrustManager.CertificateCriticalExtensionsNotSupported
|
static class |
GsiWrappingTrustManager.Wrapper
Wrapper factory class that wraps existing X509TrustManagers into GsiWrappingTrustManagers. |
Field Summary | |
---|---|
static java.lang.String |
KEY_USAGE_EXTENSION_OID_STRING
|
static java.lang.String |
PRERFC_EXTENSION_OID_STRING
|
static java.lang.String |
RFC3820_EXTENSION_OID_STRING
|
Constructor Summary | |
---|---|
GsiWrappingTrustManager(javax.net.ssl.X509TrustManager trustManager,
boolean allowLegacy,
boolean allowPreRfc,
boolean allowRfc3820)
Creates a new instance from an existing X509TrustManager. |
Method Summary | |
---|---|
void |
checkClientTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Checks that the client is trusted; the aim is to follow RFC 3820. |
void |
checkServerTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Checks that the server is trusted; in this case, it delegates this check to the trust manager it wraps. |
java.security.cert.X509Certificate[] |
getAcceptedIssuers()
Returns the accepted issuers; in this case, it delegates this to the trust manager it wraps. |
static java.security.cert.CertificateException |
verifyLegacyProxyCertificate(java.security.cert.X509Certificate[] chain,
int eecCertIndex,
java.util.Date date)
|
static java.security.cert.CertificateException |
verifyPreRfcProxyCertificate(java.security.cert.X509Certificate[] chain,
int eecCertIndex,
java.util.Date date)
|
static java.security.cert.CertificateException |
verifyProxyCertificate(java.security.cert.X509Certificate[] chain,
int eecCertIndex,
boolean allowLegacy,
boolean allowPreRfc,
boolean allowRfc3820,
java.util.Date date)
|
static java.security.cert.CertificateException |
verifyProxyCertificate(java.security.cert.X509Certificate[] chain,
int eecCertIndex,
java.util.Date date)
|
static java.security.cert.CertificateException |
verifyRfc3820ProxyCertificate(java.security.cert.X509Certificate[] chain,
int eecCertIndex,
java.util.Date date)
|
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
---|
public static final java.lang.String PRERFC_EXTENSION_OID_STRING
public static final java.lang.String RFC3820_EXTENSION_OID_STRING
public static final java.lang.String KEY_USAGE_EXTENSION_OID_STRING
Constructor Detail |
---|
public GsiWrappingTrustManager(javax.net.ssl.X509TrustManager trustManager, boolean allowLegacy, boolean allowPreRfc, boolean allowRfc3820)
trustManager
- X509TrustManager to wrap.Method Detail |
---|
public void checkClientTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkClientTrusted
in interface javax.net.ssl.X509TrustManager
java.security.cert.CertificateException
public void checkServerTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkServerTrusted
in interface javax.net.ssl.X509TrustManager
java.security.cert.CertificateException
public java.security.cert.X509Certificate[] getAcceptedIssuers()
getAcceptedIssuers
in interface javax.net.ssl.X509TrustManager
public static java.security.cert.CertificateException verifyProxyCertificate(java.security.cert.X509Certificate[] chain, int eecCertIndex, java.util.Date date)
public static java.security.cert.CertificateException verifyProxyCertificate(java.security.cert.X509Certificate[] chain, int eecCertIndex, boolean allowLegacy, boolean allowPreRfc, boolean allowRfc3820, java.util.Date date)
public static java.security.cert.CertificateException verifyLegacyProxyCertificate(java.security.cert.X509Certificate[] chain, int eecCertIndex, java.util.Date date)
public static java.security.cert.CertificateException verifyPreRfcProxyCertificate(java.security.cert.X509Certificate[] chain, int eecCertIndex, java.util.Date date)
public static java.security.cert.CertificateException verifyRfc3820ProxyCertificate(java.security.cert.X509Certificate[] chain, int eecCertIndex, java.util.Date date)
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |