Package org.bouncycastle.est.jcajce
Class JsseDefaultHostnameAuthorizer
- java.lang.Object
-
- org.bouncycastle.est.jcajce.JsseDefaultHostnameAuthorizer
-
- All Implemented Interfaces:
JsseHostnameAuthorizer
public class JsseDefaultHostnameAuthorizer extends Object implements JsseHostnameAuthorizer
A typical hostname authorizer for verifying a hostname against the available certificates.
-
-
Constructor Summary
Constructors Constructor Description JsseDefaultHostnameAuthorizer(Set<String> knownSuffixes)
Base constructor.
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description static boolean
isValidNameMatch(String name, String dnsName, Set<String> suffixes)
boolean
verified(String name, SSLSession context)
Verify the passed in host name according to the context object.boolean
verify(String name, X509Certificate cert)
-
-
-
Constructor Detail
-
JsseDefaultHostnameAuthorizer
public JsseDefaultHostnameAuthorizer(Set<String> knownSuffixes)
Base constructor.The authorizer attempts to perform matching (including the use of the wildcard) in accordance with RFC 6125.
Known suffixes is a list of public domain suffixes that can't be used as wild cards for example *.com, or c*c.com, as a dns wildcard could match every/most .com domains if a registrar were issue it. If *.com is in the known suffixes list will not be allowed to match.
- Parameters:
knownSuffixes
- a set of suffixes that cannot be wild-carded, e.g. { ".com", ".net", ".org" }
-
-
Method Detail
-
verified
public boolean verified(String name, SSLSession context) throws IOException
Description copied from interface:JsseHostnameAuthorizer
Verify the passed in host name according to the context object.- Specified by:
verified
in interfaceJsseHostnameAuthorizer
- Parameters:
name
- name of the host to be verified.context
- context object to do the verification under.- Returns:
- true if name verified, false otherwise.
- Throws:
IOException
-
verify
public boolean verify(String name, X509Certificate cert) throws IOException
- Throws:
IOException
-
isValidNameMatch
public static boolean isValidNameMatch(String name, String dnsName, Set<String> suffixes) throws IOException
- Throws:
IOException
-
-