|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Objectorg.globus.gsi.trustmanager.PKITrustManager
public class PKITrustManager
This is an implementation of an X509TrustManager which supports the validation of proxy certificates. It uses the Globus CertPathValidator.
JGLOBUS-97 : ability to accept anonymous connections?
Constructor Summary | |
---|---|
PKITrustManager(java.security.cert.CertPathValidatorSpi initValidator,
X509ProxyCertPathParameters initParameters)
Create a trust manager with the pre-configured cert path validator and proxy parameters. |
Method Summary | |
---|---|
void |
checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates,
java.lang.String authType)
Test if the client is trusted based on the certificate chain. |
void |
checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates,
java.lang.String authType)
Test if the server is trusted based on the certificate chain. |
java.security.cert.X509Certificate[] |
getAcceptedIssuers()
Get the collection of trusted certificate issuers. |
java.security.cert.CertPathValidatorResult |
getValidationResult()
Return the result of the last certificate validation. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public PKITrustManager(java.security.cert.CertPathValidatorSpi initValidator, X509ProxyCertPathParameters initParameters)
initValidator
- A cert path validator to be used by this trust manager.initParameters
- The proxy cert parameters, populated with trust store, cert store, etc.Method Detail |
---|
public void checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String authType) throws java.security.cert.CertificateException
checkClientTrusted
in interface javax.net.ssl.X509TrustManager
x509Certificates
- The certificate chain to test for validity.authType
- The authentication type based on the client certificate.
java.security.cert.CertificateException
- If the path validation fails.public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, java.lang.String authType) throws java.security.cert.CertificateException
checkServerTrusted
in interface javax.net.ssl.X509TrustManager
x509Certificates
- The certificate chain to test for validity.authType
- The authentication type based on the server certificate.
java.security.cert.CertificateException
- If the path validation fails.public java.security.cert.X509Certificate[] getAcceptedIssuers()
getAcceptedIssuers
in interface javax.net.ssl.X509TrustManager
public java.security.cert.CertPathValidatorResult getValidationResult()
|
||||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | |||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |