@NotMutable @ThreadSafety(level=COMPLETELY_THREADSAFE) public final class JVMDefaultTrustManager extends java.lang.Object implements javax.net.ssl.X509TrustManager, java.io.Serializable
jre/lib/security/cacerts
or lib/security/cacerts
file in the
Java installation (in both Sun/Oracle and IBM-based JVMs), but if neither of
those files exist (or if they cannot be parsed as a JKS or PKCS#12 keystore),
then we will search for the file below the Java home directory.Modifier and Type | Method and Description |
---|---|
void |
checkClientTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Checks to determine whether the provided client certificate chain should be
trusted.
|
void |
checkServerTrusted(java.security.cert.X509Certificate[] chain,
java.lang.String authType)
Checks to determine whether the provided server certificate chain should be
trusted.
|
java.security.cert.X509Certificate[] |
getAcceptedIssuers()
Retrieves the accepted issuer certificates for this trust manager.
|
java.io.File |
getCACertsFile()
Retrieves the path to the the file containing the JVM's default set of
trusted issuers.
|
static JVMDefaultTrustManager |
getInstance()
Retrieves the singleton instance of this trust manager.
|
java.util.Collection<java.security.cert.X509Certificate> |
getTrustedIssuerCertificates()
Retrieves the certificates included in this trust manager.
|
public static JVMDefaultTrustManager getInstance()
public java.io.File getCACertsFile() throws java.security.cert.CertificateException
java.security.cert.CertificateException
- If a problem was encountered while
initializing this trust manager.public java.util.Collection<java.security.cert.X509Certificate> getTrustedIssuerCertificates() throws java.security.cert.CertificateException
java.security.cert.CertificateException
- If a problem was encountered while
initializing this trust manager.public void checkClientTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkClientTrusted
in interface javax.net.ssl.X509TrustManager
chain
- The client certificate chain for which to make the
determination.authType
- The authentication type based on the client certificate.java.security.cert.CertificateException
- If the provided client certificate chain
should not be trusted.public void checkServerTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) throws java.security.cert.CertificateException
checkServerTrusted
in interface javax.net.ssl.X509TrustManager
chain
- The server certificate chain for which to make the
determination.authType
- The key exchange algorithm used.java.security.cert.CertificateException
- If the provided server certificate chain
should not be trusted.public java.security.cert.X509Certificate[] getAcceptedIssuers()
getAcceptedIssuers
in interface javax.net.ssl.X509TrustManager