Package org.omegazero.net.util

Class TrustManagerUtil

java.lang.Object

org.omegazero.net.util.TrustManagerUtil

public class TrustManagerUtil
extends Object

Constructor Summary

Constructors

Constructor	Description
TrustManagerUtil()

Method Summary

Modifier and Type	Method	Description
static void	addDefaultCertificates(KeyStore ks)	Adds the certificates that the default trust manager trusts to the given KeyStore.
static TrustManager[]	getTrustAllManager()	Returns a trust manager array containing a single trust manager that accepts all certificates. Warning: Trusting all certificates when using SSL is inherently dangerous as it defeats most of the purpose of it.
static TrustManager[]	getTrustManagersWithAdditionalCertificateFiles(Collection<String> additionalTrustCertificateFiles)	Loads the certificates from the given file paths using SSLUtil.loadCertificateFromPEM(String) and generates an array of trust managers using getTrustManagersWithAdditionalCertificates(Collection). The given certificate files must only contain a single certificate each.
static TrustManager[]	getTrustManagersWithAdditionalCertificates(Collection<X509Certificate> additionalTrustCertificates)	Generates an array of trust managers which are configured to accept all certificates that the default trust manager trusts in addition to the certificates passed in additionalTrustCertificates.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

TrustManagerUtil

public TrustManagerUtil()

Method Details

getTrustManagersWithAdditionalCertificates

public static TrustManager[] getTrustManagersWithAdditionalCertificates(Collection<X509Certificate> additionalTrustCertificates)
                                                                 throws GeneralSecurityException,
IOException

Generates an array of trust managers which are configured to accept all certificates that the default trust manager trusts in addition to the certificates passed in additionalTrustCertificates.

Parameters:

additionalTrustCertificates - The collection of certificates to trust in addition to the default ones. May be null to not trust any additional certificates

Returns:

The trust manager array

Throws:

GeneralSecurityException

IOException

See Also:

• addDefaultCertificates(KeyStore)

getTrustManagersWithAdditionalCertificateFiles

public static TrustManager[] getTrustManagersWithAdditionalCertificateFiles(Collection<String> additionalTrustCertificateFiles)
                                                                     throws GeneralSecurityException,
IOException

Loads the certificates from the given file paths using SSLUtil.loadCertificateFromPEM(String) and generates an array of trust managers using getTrustManagersWithAdditionalCertificates(Collection).

The given certificate files must only contain a single certificate each.

Parameters:

additionalTrustCertificateFiles - The collection of file paths to load additional certificates from

Returns:

The trust manager array

Throws:

GeneralSecurityException

IOException

See Also:

• getTrustManagersWithAdditionalCertificates(Collection)

addDefaultCertificates

public static void addDefaultCertificates(KeyStore ks)
                                   throws GeneralSecurityException

Adds the certificates that the default trust manager trusts to the given KeyStore.

Parameters:

ks -

Throws:

GeneralSecurityException

getTrustAllManager

public static TrustManager[] getTrustAllManager()

Returns a trust manager array containing a single trust manager that accepts all certificates.

Warning: Trusting all certificates when using SSL is inherently dangerous as it defeats most of the purpose of it. This should be used for testing purposes only.

Returns:

The trust manager array