nl.altindag.ssl.trustmanager

Class UnsafeX509ExtendedTrustManager

java.lang.Object

javax.net.ssl.X509ExtendedTrustManager

nl.altindag.ssl.trustmanager.UnsafeX509ExtendedTrustManager

All Implemented Interfaces:

TrustManager, X509TrustManager

public final class UnsafeX509ExtendedTrustManager
extends X509ExtendedTrustManager

An insecure TrustManager that trusts all X.509 certificates without any verification.

NOTE: Never use this UnsafeX509ExtendedTrustManager in production. It is purely for testing purposes, and thus it is very insecure.

Suppressed warning: java:S4830 - "Server certificates should be verified during SSL/TLS connections" This TrustManager doesn't validate certificates and should not be used at production. It is just meant to be used for testing purposes and it is designed not to verify server certificates.

NOTE: Please don't use this class directly as it is part of the internal API. Class name and methods can be changed any time. Instead use the TrustManagerUtils which provides the same functionality while it has a stable API because it is part of the public API.

Author:

Hakan Altindag

Method Summary

Modifier and Type	Method and Description
void	checkClientTrusted(X509Certificate[] certificates, String authType)
void	checkClientTrusted(X509Certificate[] certificates, String authType, Socket socket)
void	checkClientTrusted(X509Certificate[] certificates, String authType, SSLEngine sslEngine)
void	checkServerTrusted(X509Certificate[] certificates, String authType)
void	checkServerTrusted(X509Certificate[] certificates, String authType, Socket socket)
void	checkServerTrusted(X509Certificate[] certificates, String authType, SSLEngine sslEngine)
X509Certificate[]	getAcceptedIssuers()
static X509ExtendedTrustManager	getInstance()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

getInstance

public static X509ExtendedTrustManager getInstance()

checkClientTrusted

public void checkClientTrusted(X509Certificate[] certificates,
                               String authType)

checkClientTrusted

public void checkClientTrusted(X509Certificate[] certificates,
                               String authType,
                               Socket socket)

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

checkClientTrusted

public void checkClientTrusted(X509Certificate[] certificates,
                               String authType,
                               SSLEngine sslEngine)

Specified by:

checkClientTrusted in class X509ExtendedTrustManager

checkServerTrusted

public void checkServerTrusted(X509Certificate[] certificates,
                               String authType)

checkServerTrusted

public void checkServerTrusted(X509Certificate[] certificates,
                               String authType,
                               Socket socket)

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

checkServerTrusted

public void checkServerTrusted(X509Certificate[] certificates,
                               String authType,
                               SSLEngine sslEngine)

Specified by:

checkServerTrusted in class X509ExtendedTrustManager

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()