com.splicemachine.db.impl.drda

Class NaiveTrustManager

java.lang.Object

com.splicemachine.db.impl.drda.NaiveTrustManager

All Implemented Interfaces:

javax.net.ssl.TrustManager, javax.net.ssl.X509TrustManager

public class NaiveTrustManager
extends java.lang.Object
implements javax.net.ssl.X509TrustManager

This is a naive trust manager we use when we don't want server authentication. Any certificate will be accepted.

Method Summary

Modifier and Type	Method and Description
void	checkClientTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) Checks wether the we trust the client.
void	checkServerTrusted(java.security.cert.X509Certificate[] chain, java.lang.String authType) Checks wether the we trust the server, which we allways will.
java.security.cert.X509Certificate[]	getAcceptedIssuers() Return an array of certificate authority certificates which are trusted for authenticating peers.
static javax.net.SocketFactory	getSocketFactory() Generate a socket factory with this trust manager.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

getSocketFactory

public static javax.net.SocketFactory getSocketFactory()
                                                throws java.security.NoSuchAlgorithmException,
                                                       java.security.KeyManagementException,
                                                       java.security.NoSuchProviderException,
                                                       java.security.KeyStoreException,
                                                       java.security.UnrecoverableKeyException,
                                                       java.security.cert.CertificateException,
                                                       java.io.IOException

Generate a socket factory with this trust manager. Derby Utility routine which is not part of the X509TrustManager interface.

Throws:

java.security.NoSuchAlgorithmException

java.security.KeyManagementException

java.security.NoSuchProviderException

java.security.KeyStoreException

java.security.UnrecoverableKeyException

java.security.cert.CertificateException

java.io.IOException

checkClientTrusted

public void checkClientTrusted(java.security.cert.X509Certificate[] chain,
                               java.lang.String authType)
                        throws java.security.cert.CertificateException

Checks wether the we trust the client. Since this trust manager is just for the Derby clients, this routine is actually never called, but need to be here when we implement X509TrustManager.

Specified by:

checkClientTrusted in interface javax.net.ssl.X509TrustManager

Parameters:

chain - The client's certificate chain

authType - authorization type (e.g. "RSA" or "DHE_DSS")

Throws:

java.security.cert.CertificateException

checkServerTrusted

public void checkServerTrusted(java.security.cert.X509Certificate[] chain,
                               java.lang.String authType)
                        throws java.security.cert.CertificateException

Checks wether the we trust the server, which we allways will.

Specified by:

checkServerTrusted in interface javax.net.ssl.X509TrustManager

Parameters:

chain - The server's certificate chain

authType - authorization type (e.g. "RSA" or "DHE_DSS")

Throws:

java.security.cert.CertificateException

getAcceptedIssuers

public java.security.cert.X509Certificate[] getAcceptedIssuers()

Return an array of certificate authority certificates which are trusted for authenticating peers. Not relevant for this trust manager.

Specified by:

getAcceptedIssuers in interface javax.net.ssl.X509TrustManager