org.jenkinsci.remoting.protocol.cert

Class ValidityCheckingX509ExtendedTrustManager

java.lang.Object

javax.net.ssl.X509ExtendedTrustManager

org.jenkinsci.remoting.protocol.cert.ValidityCheckingX509ExtendedTrustManager

All Implemented Interfaces:

TrustManager, X509TrustManager

public class ValidityCheckingX509ExtendedTrustManager
extends X509ExtendedTrustManager

An X509ExtendedTrustManager that checks the validity of the chain before continuing with the (optional) delegate X509ExtendedTrustManager.

Since:

3.0

Constructor Summary

Constructors

Constructor and Description
ValidityCheckingX509ExtendedTrustManager() Constructor for a X509ExtendedTrustManager that will trust any certificates that are currently valid.
ValidityCheckingX509ExtendedTrustManager(X509ExtendedTrustManager delegate) Constructor for a X509ExtendedTrustManager that will trust any certificates that are both currently valid and trusted by the supplied X509ExtendedTrustManager.

Method Summary

Modifier and Type	Method and Description
void	checkClientTrusted(X509Certificate[] chain, String authType)
void	checkClientTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkClientTrusted(X509Certificate[] chain, String authType, SSLEngine engine)
void	checkServerTrusted(X509Certificate[] chain, String authType)
void	checkServerTrusted(X509Certificate[] chain, String authType, Socket socket)
void	checkServerTrusted(X509Certificate[] chain, String authType, SSLEngine engine)
X509Certificate[]	getAcceptedIssuers()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ValidityCheckingX509ExtendedTrustManager

public ValidityCheckingX509ExtendedTrustManager()

Constructor for a X509ExtendedTrustManager that will trust any certificates that are currently valid.

ValidityCheckingX509ExtendedTrustManager

public ValidityCheckingX509ExtendedTrustManager(@NonNull
                                                X509ExtendedTrustManager delegate)

Constructor for a X509ExtendedTrustManager that will trust any certificates that are both currently valid and trusted by the supplied X509ExtendedTrustManager.

Parameters:

delegate - the supplied X509ExtendedTrustManager that all certificates must additionally be trusted by in order for a currently valid certificate to be trusted.

Method Detail

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
                               String authType,
                               Socket socket)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
                               String authType,
                               Socket socket)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
                               String authType,
                               SSLEngine engine)
                        throws CertificateException

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
                               String authType,
                               SSLEngine engine)
                        throws CertificateException

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

Throws:

CertificateException

checkClientTrusted

public void checkClientTrusted(X509Certificate[] chain,
                               String authType)
                        throws CertificateException

Throws:

CertificateException

checkServerTrusted

public void checkServerTrusted(X509Certificate[] chain,
                               String authType)
                        throws CertificateException

Throws:

CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()