Class AbstractVerifier

java.lang.Object

org.apache.http.conn.ssl.AbstractVerifier

All Implemented Interfaces:

HostnameVerifier, X509HostnameVerifier

Direct Known Subclasses:

AllowAllHostnameVerifier, BrowserCompatHostnameVerifier, StrictHostnameVerifier

@Immutable
public abstract class AbstractVerifier
extends Object
implements X509HostnameVerifier

Abstract base class for all standard X509HostnameVerifier implementations.

Since:

4.0

Constructor Summary

Constructors

Constructor	Description
AbstractVerifier()

Method Summary

Modifier and Type	Method	Description
static boolean	acceptableCountryWildcard(String cn)	Deprecated. (4.3.1) should not be a part of public APIs.
static int	countDots(String s)	Counts the number of dots "." in a string.
static String[]	getCNs(X509Certificate cert)
static String[]	getDNSSubjectAlts(X509Certificate cert)	Extracts the array of SubjectAlt DNS names from an X509Certificate.
final void	verify(String host, String[] cns, String[] subjectAlts, boolean strictWithSubDomains)
final void	verify(String host, X509Certificate cert)	Verifies that the host name is an acceptable match with the server's authentication scheme based on the given X509Certificate.
final boolean	verify(String host, SSLSession session)
final void	verify(String host, SSLSocket ssl)	Verifies that the host name is an acceptable match with the server's authentication scheme based on the given SSLSocket.

Methods inherited from class Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface X509HostnameVerifier

verify

Constructor Details

AbstractVerifier

public AbstractVerifier()

Method Details

verify

public final void verify(String host,
 SSLSocket ssl)
                  throws IOException

Description copied from interface: X509HostnameVerifier

Verifies that the host name is an acceptable match with the server's authentication scheme based on the given SSLSocket.

Specified by:

verify in interface X509HostnameVerifier

Parameters:

host - the host.

ssl - the SSL socket.

Throws:

IOException - if an I/O error occurs or the verification process fails.

verify

public final boolean verify(String host,
 SSLSession session)

Specified by:

verify in interface HostnameVerifier

verify

public final void verify(String host,
 X509Certificate cert)
                  throws SSLException

Description copied from interface: X509HostnameVerifier

Verifies that the host name is an acceptable match with the server's authentication scheme based on the given X509Certificate.

Specified by:

verify in interface X509HostnameVerifier

Parameters:

host - the host.

cert - the certificate.

Throws:

SSLException - if the verification process fails.

verify

public final void verify(String host,
 String[] cns,
 String[] subjectAlts,
 boolean strictWithSubDomains)
                  throws SSLException

Throws:

SSLException

acceptableCountryWildcard

@Deprecated
public static boolean acceptableCountryWildcard(String cn)

Deprecated.

(4.3.1) should not be a part of public APIs.

getCNs

public static String[] getCNs(X509Certificate cert)

getDNSSubjectAlts

public static String[] getDNSSubjectAlts(X509Certificate cert)

Extracts the array of SubjectAlt DNS names from an X509Certificate. Returns null if there aren't any.

Note: Java doesn't appear able to extract international characters from the SubjectAlts. It can only extract international characters from the CN field.

(Or maybe the version of OpenSSL I'm using to test isn't storing the international characters correctly in the SubjectAlts?).

Parameters:

cert - X509Certificate

Returns:

Array of SubjectALT DNS names stored in the certificate.

countDots

public static int countDots(String s)

Counts the number of dots "." in a string.

Parameters:

s - string to count dots from

Returns:

number of dots