Oracle Fusion Middleware
Oracle WebLogic Server API Reference
11g Release 1 (10.3.6)

Part Number E13941-06

weblogic.security.SSL
Interface TrustManagerJSSE


Deprecated. 04/2003 TrustManager should be used instead

public interface TrustManagerJSSE

The TrustManager interface permits the user to override certain validation errors in the peer's certificate chain and allow the handshake to continue. This interface also permits the user to perform additional validation on the peer certificate chain and interrupt the handshake if need be.


Field Summary
static int ERR_CERT_CHAIN_INCOMPLETE
          Deprecated. An incomplete certificate chain is when a chain does not include a self signed root CA certificate
static int ERR_CERT_CHAIN_INVALID
          Deprecated. An invalid certificate chain is when a certificate is not issued by the succeeding certificate in the chain
static int ERR_CERT_CHAIN_UNTRUSTED
          Deprecated. None of the certificates in the chain can be found in the list of trusted certificates
static int ERR_CERT_EXPIRED
          Deprecated. An expired certificate
static int ERR_NONE
          Deprecated. No error has been detected
static int ERR_SIGNATURE_INVALID
          Deprecated. A certificate has an invalid signature when the public key of the succeeding certificate does not verify the signature in the certificate
 
Method Summary
 boolean certificateCallback(X509Certificate[] chain, int validateErr)
          Deprecated. Called by the SSL library when a peer presents a certificate chain.
 

Field Detail

ERR_NONE

static final int ERR_NONE
Deprecated. 
No error has been detected

See Also:
Constant Field Values

ERR_CERT_CHAIN_INVALID

static final int ERR_CERT_CHAIN_INVALID
Deprecated. 
An invalid certificate chain is when a certificate is not issued by the succeeding certificate in the chain

See Also:
Constant Field Values

ERR_CERT_EXPIRED

static final int ERR_CERT_EXPIRED
Deprecated. 
An expired certificate

See Also:
Constant Field Values

ERR_CERT_CHAIN_INCOMPLETE

static final int ERR_CERT_CHAIN_INCOMPLETE
Deprecated. 
An incomplete certificate chain is when a chain does not include a self signed root CA certificate

See Also:
Constant Field Values

ERR_SIGNATURE_INVALID

static final int ERR_SIGNATURE_INVALID
Deprecated. 
A certificate has an invalid signature when the public key of the succeeding certificate does not verify the signature in the certificate

See Also:
Constant Field Values

ERR_CERT_CHAIN_UNTRUSTED

static final int ERR_CERT_CHAIN_UNTRUSTED
Deprecated. 
None of the certificates in the chain can be found in the list of trusted certificates

See Also:
Constant Field Values
Method Detail

certificateCallback

boolean certificateCallback(X509Certificate[] chain,
                            int validateErr)
Deprecated. 
Called by the SSL library when a peer presents a certificate chain. This can be used to override certain errors in the peer certificate chain to allow the handshake to continue. The parameter validateErr indicates the validation errors present in the certificate chain. validateErr has the following properties: ERR_CERT_CHAIN_INVALID bit is set if the certificate chain is invalid; ERR_CERT_EXPIRED bit is set if any of the certificates are expired; ERR_CERT_CHAIN_INCOMPLETE bit is set if the certificate chain is incomplete; ERR_SIGNATURE_INVALID bit is set if any of the certificates have an invaid signature; ERR_CERT_CHAIN_UNTRUSTED bit is set if the certificate chain is not trusted.


Copyright 1996, 2011, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.

Oracle Fusion Middleware
Oracle WebLogic Server API Reference
11g Release 1 (10.3.6)

Part Number E13941-06