Module org.newsclub.net.unix.ssl

Package org.newsclub.net.unix.ssl

Class FilterX509TrustManager

java.lang.Object

org.newsclub.net.unix.ssl.FilterX509TrustManager

All Implemented Interfaces:

TrustManager, X509TrustManager

Direct Known Subclasses:

ValidatingX509TrustManager

public abstract class FilterX509TrustManager
extends Object
implements X509TrustManager

An X509TrustManager that may intercept CertificateExceptions.

Author:

Christian Kohlschütter

Constructor Summary

Constructors

Modifier	Constructor	Description
protected	FilterX509TrustManager(X509TrustManager wrapped)	Constructs this instance with the given wrapped X509TrustManager.

Method Summary

Modifier and Type	Method	Description
final void	checkClientTrusted(X509Certificate[] chain, String authType)
final void	checkServerTrusted(X509Certificate[] chain, String authType)
X509Certificate[]	getAcceptedIssuers()
protected abstract void	onCertificateException(boolean checkClient, CertificateException e, X509Certificate[] chain, String authType)	Called whenever the wrapped X509TrustManager throws an exception when checking client or server certificate chains.
protected abstract void	onCertificateTrusted(boolean checkClient, X509Certificate[] chain, String authType)	Called whenever the wrapped X509TrustManager trusted a given client or server certificate chains.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

FilterX509TrustManager

protected FilterX509TrustManager(X509TrustManager wrapped)

Constructs this instance with the given wrapped X509TrustManager.

Parameters:

wrapped - Thw wrapped instance.

Method Details

checkClientTrusted

public final void checkClientTrusted(X509Certificate[] chain,
 String authType)
                              throws CertificateException

Specified by:

checkClientTrusted in interface X509TrustManager

Throws:

CertificateException

checkServerTrusted

public final void checkServerTrusted(X509Certificate[] chain,
 String authType)
                              throws CertificateException

Specified by:

checkServerTrusted in interface X509TrustManager

Throws:

CertificateException

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()

Specified by:

getAcceptedIssuers in interface X509TrustManager

onCertificateException

protected abstract void onCertificateException(boolean checkClient,
 CertificateException e,
 X509Certificate[] chain,
 String authType)
                                        throws CertificateException

Called whenever the wrapped X509TrustManager throws an exception when checking client or server certificate chains.

Parameters:

checkClient - If true, we're checking a client certificate chain, if false a server's.

e - The caught exception

chain - The (potentially partial) certificate chain

authType - The authType.

Throws:

CertificateException - if desired.

onCertificateTrusted

protected abstract void onCertificateTrusted(boolean checkClient,
 X509Certificate[] chain,
 String authType)
                                      throws CertificateException

Called whenever the wrapped X509TrustManager trusted a given client or server certificate chains.

Parameters:

checkClient - If true, we're checking a client certificate chain, if false a server's.

chain - The (potentially partial) certificate chain

authType - The authType.

Throws:

CertificateException - if desired.