Class JSSNativeTrustManager
- java.lang.Object
-
- org.mozilla.jss.provider.javax.crypto.JSSNativeTrustManager
-
- All Implemented Interfaces:
javax.net.ssl.TrustManager,javax.net.ssl.X509TrustManager
public class JSSNativeTrustManager extends java.lang.Object implements javax.net.ssl.X509TrustManagerJSSNativeTrustManager is a JSSEngine TrustManager utilizing existing native certificate checking functionality of NSS and JSS, compatible with the old SSLSocket checks. Note: This class isn't compatible with external (non-JSS) SSLEngines. The only configuration possible is in CryptoManager's OCSP Policy, which this obeys. No other configuration is possible. This is more performant than other TrustManagers, because it saves a JNI call and handles the NSS callback directly.
-
-
Constructor Summary
Constructors Constructor Description JSSNativeTrustManager()
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description voidcheckClientTrusted(java.security.cert.X509Certificate[] certChain, java.lang.String authType)voidcheckServerTrusted(java.security.cert.X509Certificate[] certChain, java.lang.String authType)java.security.cert.X509Certificate[]getAcceptedIssuers()
-
-
-
Method Detail
-
checkClientTrusted
public void checkClientTrusted(java.security.cert.X509Certificate[] certChain, java.lang.String authType) throws java.security.cert.CertificateException- Specified by:
checkClientTrustedin interfacejavax.net.ssl.X509TrustManager- Throws:
java.security.cert.CertificateException
-
checkServerTrusted
public void checkServerTrusted(java.security.cert.X509Certificate[] certChain, java.lang.String authType) throws java.security.cert.CertificateException- Specified by:
checkServerTrustedin interfacejavax.net.ssl.X509TrustManager- Throws:
java.security.cert.CertificateException
-
getAcceptedIssuers
public java.security.cert.X509Certificate[] getAcceptedIssuers()
- Specified by:
getAcceptedIssuersin interfacejavax.net.ssl.X509TrustManager
-
-