public class


extends AbstractVerifier
   ↳ org.apache.http.conn.ssl.AbstractVerifier
     ↳ org.apache.http.conn.ssl.StrictHostnameVerifier

Class Overview

The Strict HostnameVerifier works the same way as Sun Java 1.4, Sun Java 5, Sun Java 6-rc. It's also pretty close to IE6. This implementation appears to be compliant with RFC 2818 for dealing with wildcards.

The hostname must match either the first CN, or any of the subject-alts. A wildcard can occur in the CN, and in any of the subject-alts. The one divergence from IE6 is how we only check the first CN. IE6 allows a match against any of the CNs present. We decided to follow in Sun Java 1.4's footsteps and only check the first CN. (If you need to check all the CN's, feel free to write your own implementation!).

A wildcard such as "*" matches only subdomains in the same level, for example "". It does not match deeper subdomains such as "".


Public Constructors
Public Methods
final String toString()
final void verify(String host, String[] cns, String[] subjectAlts)
Inherited Methods
From class org.apache.http.conn.ssl.AbstractVerifier
From class java.lang.Object
From interface
From interface org.apache.http.conn.ssl.X509HostnameVerifier

Public Constructors

public StrictHostnameVerifier ()

Also: HttpClient

Public Methods

public final String toString ()

Also: HttpClient

public final void verify (String host, String[] cns, String[] subjectAlts)

Also: HttpClient