public class JsseDefaultHostnameAuthorizer extends java.lang.Object implements JsseHostnameAuthorizer
Constructor and Description |
---|
JsseDefaultHostnameAuthorizer(java.util.Set<java.lang.String> knownSuffixes)
Base constructor.
|
Modifier and Type | Method and Description |
---|---|
static boolean |
isValidNameMatch(java.lang.String name,
java.lang.String dnsName,
java.util.Set<java.lang.String> suffixes) |
boolean |
verified(java.lang.String name,
javax.net.ssl.SSLSession context)
Verify the passed in host name according to the context object.
|
boolean |
verify(java.lang.String name,
java.security.cert.X509Certificate cert) |
public JsseDefaultHostnameAuthorizer(java.util.Set<java.lang.String> knownSuffixes)
The authorizer attempts to perform matching (including the use of the wildcard) in accordance with RFC 6125.
Known suffixes is a list of public domain suffixes that can't be used as wild cards for example *.com, or c*c.com, as a dns wildcard could match every/most .com domains if a registrar were issue it. If *.com is in the known suffixes list will not be allowed to match.
knownSuffixes
- a set of suffixes that cannot be wild-carded, e.g. { ".com", ".net", ".org" }public boolean verified(java.lang.String name, javax.net.ssl.SSLSession context) throws java.io.IOException
JsseHostnameAuthorizer
verified
in interface JsseHostnameAuthorizer
name
- name of the host to be verified.context
- context object to do the verification under.java.io.IOException
public boolean verify(java.lang.String name, java.security.cert.X509Certificate cert) throws java.io.IOException
java.io.IOException
public static boolean isValidNameMatch(java.lang.String name, java.lang.String dnsName, java.util.Set<java.lang.String> suffixes) throws java.io.IOException
java.io.IOException