Package org.wildfly.security.ssl

Class TLSServerEndPointChannelBinding

java.lang.Object

org.wildfly.security.ssl.TLSServerEndPointChannelBinding

public final class TLSServerEndPointChannelBinding
extends Object

Utilities for handling the "tls-server-end-point" channel binding strategy used by various types of authentication mechanisms.

Author:

David M. Lloyd

Field Summary

Fields

Modifier and Type	Field	Description
static final String	TLS_SERVER_ENDPOINT

Method Summary

Modifier and Type	Method	Description
static String	getDigestAlgorithm(String sigAlgOID)	Get the digest algorithm that would be used for a given signature algorithm OID.
static void	handleChannelBindingCallback(ChannelBindingCallback channelBindingCallback, X509Certificate[] serverCerts)	Convenience method to handle a channel binding callback.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

TLS_SERVER_ENDPOINT

public static final String TLS_SERVER_ENDPOINT

See Also:

• Constant Field Values

Method Details

getDigestAlgorithm

public static String getDigestAlgorithm(String sigAlgOID)

Get the digest algorithm that would be used for a given signature algorithm OID.

Parameters:

sigAlgOID - the signature algorithm OID (must not be null)

Returns:

the digest algorithm, or null if the OID is not recognized

handleChannelBindingCallback

public static void handleChannelBindingCallback(ChannelBindingCallback channelBindingCallback,
 X509Certificate[] serverCerts)
                                         throws UnsupportedCallbackException

Convenience method to handle a channel binding callback.

Parameters:

channelBindingCallback - the callback (must not be null)

serverCerts - the server certificate chain

Throws:

UnsupportedCallbackException - if the server certificates are not present or unsupported and the callback is not optional