com.unboundid.util.ssl
Class HostNameSSLSocketVerifier
java.lang.Object
com.unboundid.util.ssl.SSLSocketVerifier
com.unboundid.util.ssl.HostNameSSLSocketVerifier
@NotMutable
@ThreadSafety(level=COMPLETELY_THREADSAFE)
public final class HostNameSSLSocketVerifier
- extends SSLSocketVerifier
This class provides an implementation of an SSLSocket
verifier that
will verify that the presented server certificate includes the address to
which the client intended to establish a connection. It will check the CN
attribute of the certificate subject, as well as certain subjectAltName
extensions, including dNSName, uniformResourceIdentifier, and iPAddress.
Method Summary |
void |
verifySSLSocket(java.lang.String host,
int port,
javax.net.ssl.SSLSocket sslSocket)
Verifies that the provided SSLSocket is acceptable and the
connection should be allowed to remain established. |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
HostNameSSLSocketVerifier
public HostNameSSLSocketVerifier(boolean allowWildcards)
- Creates a new instance of this
SSLSocket
verifier.
- Parameters:
allowWildcards
- Indicates whether to allow wildcard certificates
which contain an asterisk as the first component of
a CN subject attribute or dNSName subjectAltName
extension.
verifySSLSocket
public void verifySSLSocket(java.lang.String host,
int port,
javax.net.ssl.SSLSocket sslSocket)
throws LDAPException
- Verifies that the provided
SSLSocket
is acceptable and the
connection should be allowed to remain established.
- Specified by:
verifySSLSocket
in class SSLSocketVerifier
- Parameters:
host
- The address to which the client intended the connection
to be established.port
- The port to which the client intended the connection to
be established.sslSocket
- The SSLSocket
that should be verified.
- Throws:
LDAPException
- If a problem is identified that should prevent the
provided SSLSocket
from remaining
established.