PeerX509TrustManager (Oracle\u00AE Coherence Java API Reference)

Method Summary
`void`	`checkClientTrusted(X509Certificate[] aCert, String sAuthType)` Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.
`void`	`checkPeerTrusted(X509Certificate[] aCert, String sAuthType)` Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.
`void`	`checkServerTrusted(X509Certificate[] aCert, String sAuthType)` Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.
`X509Certificate[]`	`getAcceptedIssuers()` Return an array of certificate authority certificates which are trusted for authenticating peers.
`protected String`	`getCommonName(Principal principal)` Return the common name of the given principal

Field Detail

m_keyStore

protected final KeyStore m_keyStore

The key store used by this TrustManager.

ALGORITHM

public static final String ALGORITHM

The alogorithm used by this TrustManager.

See Also:: Constant Field Values

Constructor Detail

PeerX509TrustManager

public PeerX509TrustManager(KeyStore keyStore)

Create a new PeerTrustManager that requires the peer's certificate to be present in the given key store.

Parameters:: keyStore - the key store that contains the certificates of trusted peers

Method Detail

checkPeerTrusted

public void checkPeerTrusted(X509Certificate[] aCert,
                             String sAuthType)
                      throws CertificateException

Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.

Parameters:: aCert - the certificate chain; sAuthType - the authentication type
Throws:: CertificateException - if the certificate chain is not trusted

checkClientTrusted

public void checkClientTrusted(X509Certificate[] aCert,
                               String sAuthType)
                        throws CertificateException

Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.

Specified by:: checkClientTrusted in interface X509TrustManager

Parameters:: aCert - the certificate chain; sAuthType - the authentication type
Throws:: CertificateException - if the certificate chain is not trusted

checkServerTrusted

public void checkServerTrusted(X509Certificate[] aCert,
                               String sAuthType)
                        throws CertificateException

Determine if the leaf certificate in the given certificate chain is contained in the trusted peer key store.

Specified by:: checkServerTrusted in interface X509TrustManager

Parameters:: aCert - the certificate chain; sAuthType - the authentication type
Throws:: CertificateException - if the certificate chain is not trusted

getAcceptedIssuers

public X509Certificate[] getAcceptedIssuers()

Return an array of certificate authority certificates which are trusted for authenticating peers. Since this trust manager only checks the leaf certificate of supplied certification chains, this method always returns an empty array.

Specified by:: getAcceptedIssuers in interface X509TrustManager

Returns:: the array of certificate authority certificates; always an empty array

getCommonName

protected String getCommonName(Principal principal)

Return the common name of the given principal

Parameters:: principal - the principal
Returns:: the common name of the given principal or null if the principal doesn't have a common name

Overview

Package

Class

Tree

Index

Help

Oracle® Coherence Java API Reference
Release 3.6.0.0
E15725-01

PREV CLASS NEXT CLASS

FRAMES NO FRAMES

SUMMARY: NESTED | FIELD | CONSTR | METHOD

DETAIL: FIELD | CONSTR | METHOD

com.tangosol.net.security Class PeerX509TrustManager

m_keyStore

ALGORITHM

PeerX509TrustManager

checkPeerTrusted

checkClientTrusted

checkServerTrusted

getAcceptedIssuers

getCommonName

com.tangosol.net.security
Class PeerX509TrustManager