org.aoju.bus.http.secure

Class CertificateChainCleaner

java.lang.Object

org.aoju.bus.http.secure.CertificateChainCleaner

Direct Known Subclasses:

BasicCertificateChainCleaner

public abstract class CertificateChainCleaner
extends Object

从Java在TLS api中构建的原始数组中计算有效的证书链。 清理链返回一个证书列表， 其中第一个元素是chain[0]， 每个证书由后面的证书签名，最后一个证书是受信任的CA证书. 使用链清理器可以省略与TLS握手无关的意外证书， 并提取受信任的CA证书，以便进行证书固定

Since:

JDK 1.8+

Version:

5.5.0

Author:

Kimi Liu

Constructor Summary

Constructors

Constructor and Description
CertificateChainCleaner()

Method Summary

Modifier and Type	Method and Description
abstract List<Certificate>	clean(List<Certificate> chain, String hostname)
static CertificateChainCleaner	get(X509Certificate... caCerts)
static CertificateChainCleaner	get(X509TrustManager trustManager)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

CertificateChainCleaner

public CertificateChainCleaner()

Method Detail

get

public static CertificateChainCleaner get(X509TrustManager trustManager)

get

public static CertificateChainCleaner get(X509Certificate... caCerts)

clean

public abstract List<Certificate> clean(List<Certificate> chain,
                                        String hostname)
                                 throws SSLPeerUnverifiedException

Throws:

SSLPeerUnverifiedException