Package org.jenkinsci.remoting.protocol.cert

Class ValidityCheckingX509ExtendedTrustManager

java.lang.Object

javax.net.ssl.X509ExtendedTrustManager

org.jenkinsci.remoting.protocol.cert.ValidityCheckingX509ExtendedTrustManager

All Implemented Interfaces:

TrustManager, X509TrustManager

public class ValidityCheckingX509ExtendedTrustManager
extends X509ExtendedTrustManager

An X509ExtendedTrustManager that checks the validity of the chain before continuing with the (optional) delegate X509ExtendedTrustManager.

Since:

3.0

Constructor Summary

Constructors

Constructor	Description
ValidityCheckingX509ExtendedTrustManager()	Constructor for a X509ExtendedTrustManager that will trust any certificates that are currently valid.
ValidityCheckingX509ExtendedTrustManager(X509ExtendedTrustManager delegate)	Constructor for a X509ExtendedTrustManager that will trust any certificates that are both currently valid and trusted by the supplied X509ExtendedTrustManager.

Method Summary

Modifier and Type	Method	Description
void	checkClientTrusted(X509Certificate[] chain, String authType)
void	checkClientTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkClientTrusted(X509Certificate[] chain, String authType, SSLEngine engine)
void	checkServerTrusted(X509Certificate[] chain, String authType)
void	checkServerTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkServerTrusted(X509Certificate[] chain, String authType, SSLEngine engine)
X509Certificate[]	getAcceptedIssuers()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

ValidityCheckingX509ExtendedTrustManager

public ValidityCheckingX509ExtendedTrustManager()

Constructor for a X509ExtendedTrustManager that will trust any certificates that are currently valid.

ValidityCheckingX509ExtendedTrustManager

public ValidityCheckingX509ExtendedTrustManager(@NonNull
 X509ExtendedTrustManager delegate)

Constructor for a X509ExtendedTrustManager that will trust any certificates that are both currently valid and trusted by the supplied X509ExtendedTrustManager.

Parameters:

delegate - the supplied X509ExtendedTrustManager that all certificates must additionally be trusted by in order for a currently valid certificate to be trusted.

Method Details

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType,
 Socket socket)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType,
 Socket socket)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType,
 SSLEngine engine)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType,
 SSLEngine engine)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
 String authType)
                        throws CertificateException

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
 String authType)
                        throws CertificateException

Throws:

CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()