• Home
• cn.lnkdoc.sdk
• awesome-uia-sdk
• 2.7.2
• source code
• CertsTrustManager.kt

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

cn.lnkdoc.sdk.uia.common.util.trust.CertsTrustManager.kt Maven / Gradle / Ivy

package cn.lnkdoc.sdk.uia.common.util.trust

import java.security.cert.CertificateException
import java.security.cert.X509Certificate
import javax.net.ssl.X509TrustManager


/**
 * @author langkye
 * @since 1.0.0.RELEASE
 */
class CertsTrustManager : X509TrustManager {
    /**
     * Given the partial or complete certificate chain provided by the
     * peer, build a certificate path to a trusted root and return if
     * it can be validated and is trusted for client SSL
     * authentication based on the authentication type.
     *
     *
     * The authentication type is determined by the actual certificate
     * used. For instance, if RSAPublicKey is used, the authType
     * should be "RSA". Checking is case-sensitive.
     *
     * @param chain    the peer certificate chain
     * @param authType the authentication type based on the client certificate
     * @throws IllegalArgumentException if null or zero-length chain
     * is passed in for the chain parameter or if null or zero-length
     * string is passed in for the  authType parameter
     * @throws CertificateException     if the certificate chain is not trusted
     * by this TrustManager.
     */
    @Throws(CertificateException::class)
    override fun checkClientTrusted(chain: Array, authType: String) {
    }

    /**
     * Given the partial or complete certificate chain provided by the
     * peer, build a certificate path to a trusted root and return if
     * it can be validated and is trusted for server SSL
     * authentication based on the authentication type.
     *
     *
     * The authentication type is the key exchange algorithm portion
     * of the cipher suites represented as a String, such as "RSA",
     * "DHE_DSS". Note: for some exportable cipher suites, the key
     * exchange algorithm is determined at run time during the
     * handshake. For instance, for TLS_RSA_EXPORT_WITH_RC4_40_MD5,
     * the authType should be RSA_EXPORT when an ephemeral RSA key is
     * used for the key exchange, and RSA when the key from the server
     * certificate is used. Checking is case-sensitive.
     *
     * @param chain    the peer certificate chain
     * @param authType the key exchange algorithm used
     * @throws IllegalArgumentException if null or zero-length chain
     * is passed in for the chain parameter or if null or zero-length
     * string is passed in for the  authType parameter
     * @throws CertificateException     if the certificate chain is not trusted
     * by this TrustManager.
     */
    @Throws(CertificateException::class)
    override fun checkServerTrusted(chain: Array, authType: String) {
    }

    /**
     * Return an array of certificate authority certificates
     * which are trusted for authenticating peers.
     *
     * @return a non-null (possibly empty) array of acceptable
     * CA issuer certificates.
     */
    override fun getAcceptedIssuers(): Array {
        return arrayOf()
    }
}