Package org.wildfly.security.ssl

Class X509RevocationTrustManager

java.lang.Object

javax.net.ssl.X509ExtendedTrustManager

org.wildfly.security.ssl.X509RevocationTrustManager

All Implemented Interfaces:

TrustManager, X509TrustManager

public class X509RevocationTrustManager
extends X509ExtendedTrustManager

Extension to the X509TrustManager interface to support OCSP and CRL verification.

Author:

Martin Mazanek

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static class	X509RevocationTrustManager.Builder

Method Summary

Modifier and Type	Method	Description
static X509RevocationTrustManager.Builder	builder()	Create new X509RevocationTtustManager.Builder instance
void	checkClientTrusted(X509Certificate[] chain, String authType)
void	checkClientTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkClientTrusted(X509Certificate[] chain, String authType, SSLEngine sslEngine)
void	checkServerTrusted(X509Certificate[] chain, String authType)
void	checkServerTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkServerTrusted(X509Certificate[] chain, String authType, SSLEngine sslEngine)
X509Certificate[]	getAcceptedIssuers()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Details

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType)
                        throws CertificateException

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType)
                        throws CertificateException

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType,
 Socket socket)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType,
 Socket socket)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType,
 SSLEngine sslEngine)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType,
 SSLEngine sslEngine)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()

builder

public static X509RevocationTrustManager.Builder builder()

Create new X509RevocationTtustManager.Builder instance

Returns:

new Builder instance