Package | Description |
---|---|
eu.emi.security.authn.x509 |
Contains API of the library.
|
eu.emi.security.authn.x509.helpers |
Consists of general purpose classes, helping to implement generic functionality of the library.
|
eu.emi.security.authn.x509.helpers.pkipath |
Helper classes for internal, low level, logic of certificate path validation.
|
eu.emi.security.authn.x509.helpers.ssl |
Helper classes, implementing SSL/TLS/network related functions.
|
eu.emi.security.authn.x509.impl |
Contains implementation classes of the library.
|
Modifier and Type | Interface and Description |
---|---|
interface |
X509CertChainValidatorExt
Extends the main
X509CertChainValidator interface with some additional methods
which are commonly provided by the most validator implementations, but are not
strictly required for the sole validation. |
Constructor and Description |
---|
CommonX509TrustManager(X509CertChainValidator validator)
The constructor.
|
Modifier and Type | Class and Description |
---|---|
class |
BinaryCertChainValidator
A simplistic
X509CertChainValidator implementation which always fails or accepts certificates,
basing on the constructor argument. |
Modifier and Type | Class and Description |
---|---|
class |
AbstractValidator
Base implementation of
X509CertChainValidator . |
class |
PlainCRLValidator
An abstract validator which provides a CRL support common for validators
using
PlainCRLStoreSpi . |
Modifier and Type | Field and Description |
---|---|
protected X509CertChainValidator |
SSLTrustManager.validator |
Constructor and Description |
---|
SSLTrustManager(X509CertChainValidator validator) |
Modifier and Type | Class and Description |
---|---|
class |
DirectoryCertChainValidator
The certificate validator which uses a flexible set of certificates and CRL locations.
|
class |
InMemoryKeystoreCertChainValidator
The certificate validator which uses Java
KeyStore as a truststore. |
class |
KeystoreCertChainValidator
The certificate validator which uses Java
KeyStore as a truststore. |
class |
OpensslCertChainValidator
The certificate validator which uses OpenSSL directory as a truststore.
|
Modifier and Type | Method and Description |
---|---|
static javax.net.ssl.SSLServerSocketFactory |
SocketFactoryCreator.getServerSocketFactory(X509Credential c,
X509CertChainValidator v)
Same as
SocketFactoryCreator.getServerSocketFactory(X509Credential, X509CertChainValidator, SecureRandom)
using SecureRandom implementation as the last argument. |
static javax.net.ssl.SSLServerSocketFactory |
SocketFactoryCreator.getServerSocketFactory(X509Credential c,
X509CertChainValidator v,
java.security.SecureRandom r)
Returns an
SSLServerSocketFactory configured to check
client certificates with a provided validator. |
static javax.net.ssl.SSLSocketFactory |
SocketFactoryCreator.getSocketFactory(X509Credential c,
X509CertChainValidator v)
Same as
SocketFactoryCreator.getSocketFactory(X509Credential, X509CertChainValidator, SecureRandom)
using SecureRandom implementation as the last argument. |
static javax.net.ssl.SSLSocketFactory |
SocketFactoryCreator.getSocketFactory(X509Credential c,
X509CertChainValidator v,
java.security.SecureRandom r)
Returns an
SSLSocketFactory configured to check
servers' certificates with a provided validator. |
static javax.net.ssl.SSLContext |
SocketFactoryCreator.getSSLContext(X509Credential c,
X509CertChainValidator v,
java.security.SecureRandom r)
Low level interface.
|
static javax.net.ssl.X509TrustManager |
SocketFactoryCreator.getSSLTrustManager(X509CertChainValidator v)
Creates a SSL trustmanager which uses the provided validator.
|