public abstract class

X509ExtendedKeyManager

extends Object
implements X509KeyManager
java.lang.Object
   ↳ javax.net.ssl.X509ExtendedKeyManager

Class Overview

Abstract class that provides for extension of the X509KeyManager interface.

Methods in this class should be overriden to provide actual implementations.

Summary

Protected Constructors
X509ExtendedKeyManager()
Constructor used by subclasses only.
Public Methods
String chooseEngineClientAlias(String[] keyType, Principal[] issuers, SSLEngine engine)
Choose an alias to authenticate the client side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).
String chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine)
Choose an alias to authenticate the server side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).
[Expand]
Inherited Methods
From class java.lang.Object
From interface javax.net.ssl.X509KeyManager

Protected Constructors

protected X509ExtendedKeyManager ()

Constructor used by subclasses only.

Public Methods

public String chooseEngineClientAlias (String[] keyType, Principal[] issuers, SSLEngine engine)

Choose an alias to authenticate the client side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).

The default implementation returns null.

Parameters
keyType the key algorithm type name(s), ordered with the most-preferred key type first.
issuers the list of acceptable CA issuer subject names or null if it does not matter which issuers are used.
engine the SSLEngine to be used for this connection. This parameter can be null, which indicates that implementations of this interface are free to select an alias applicable to any engine.
Returns
  • the alias name for the desired key, or null if there are no matches.

public String chooseEngineServerAlias (String keyType, Principal[] issuers, SSLEngine engine)

Choose an alias to authenticate the server side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).

The default implementation returns null.

Parameters
keyType the key algorithm type name.
issuers the list of acceptable CA issuer subject names or null if it does not matter which issuers are used.
engine the SSLEngine to be used for this connection. This parameter can be null, which indicates that implementations of this interface are free to select an alias applicable to any engine.
Returns
  • the alias name for the desired key, or null if there are no matches.