public abstract class

AbstractVerifier

extends Object
implements X509HostnameVerifier
java.lang.Object
   ↳ org.apache.http.conn.ssl.AbstractVerifier
Known Direct Subclasses

Class Overview

Abstract base class for all standard X509HostnameVerifier implementations.

Summary

Public Constructors
AbstractVerifier()
Public Methods
static boolean acceptableCountryWildcard(String cn)
static int countDots(String s)
Counts the number of dots "." in a string.
static String[] getCNs(X509Certificate cert)
static String[] getDNSSubjectAlts(X509Certificate cert)
Extracts the array of SubjectAlt DNS names from an X509Certificate.
final void verify(String host, String[] cns, String[] subjectAlts, boolean strictWithSubDomains)
final boolean verify(String host, SSLSession session)
final void verify(String host, X509Certificate cert)
Verifies that the host name is an acceptable match with the server's authentication scheme based on the given X509Certificate.
final void verify(String host, SSLSocket ssl)
Verifies that the host name is an acceptable match with the server's authentication scheme based on the given SSLSocket.
[Expand]
Inherited Methods
From class java.lang.Object
From interface javax.net.ssl.HostnameVerifier
From interface org.apache.http.conn.ssl.X509HostnameVerifier

Public Constructors

public AbstractVerifier ()

Also: HttpClient

Public Methods

public static boolean acceptableCountryWildcard (String cn)

Also: HttpClient

public static int countDots (String s)

Also: HttpClient

Counts the number of dots "." in a string.

Parameters
s string to count dots from
Returns
  • number of dots

public static String[] getCNs (X509Certificate cert)

Also: HttpClient

public static String[] getDNSSubjectAlts (X509Certificate cert)

Also: HttpClient

Extracts the array of SubjectAlt DNS names from an X509Certificate. Returns null if there aren't any.

Note: Java doesn't appear able to extract international characters from the SubjectAlts. It can only extract international characters from the CN field.

(Or maybe the version of OpenSSL I'm using to test isn't storing the international characters correctly in the SubjectAlts?).

Parameters
cert X509Certificate
Returns
  • Array of SubjectALT DNS names stored in the certificate.

public final void verify (String host, String[] cns, String[] subjectAlts, boolean strictWithSubDomains)

Also: HttpClient

Throws
SSLException

public final boolean verify (String host, SSLSession session)

Also: HttpClient

public final void verify (String host, X509Certificate cert)

Also: HttpClient

Verifies that the host name is an acceptable match with the server's authentication scheme based on the given X509Certificate.

Parameters
host the host.
cert the certificate.
Throws
SSLException

public final void verify (String host, SSLSocket ssl)

Also: HttpClient

Verifies that the host name is an acceptable match with the server's authentication scheme based on the given SSLSocket.

Parameters
host the host.
ssl the SSL socket.
Throws
IOException