DatabaseClientFactory.SSLHostnameVerifier (MarkLogic Java Client API 8.1.0)

Summary:
Nested |
Field |
Constr |
Method

Detail:
Field |
Constr |
Method

SEARCH:

All Known Implementing Classes:: DatabaseClientFactory.SSLHostnameVerifier.Builtin

Enclosing class:: DatabaseClientFactory

public static interface DatabaseClientFactory.SSLHostnameVerifier

An SSLHostnameVerifier checks whether a hostname is acceptable during SSL authentication. By default, COMMON is used, allowing any level of subdomains for SSL certificates with wildcard domains. If only one level of subdomains is allowed for SSL certificates with wildcard domains, use STRICT.

Nested Class Summary

Nested Classes

Modifier and Type

Interface

Description

static class

DatabaseClientFactory.SSLHostnameVerifier.Builtin

Builtin supports builtin implementations of SSLHostnameVerifier.

static class

DatabaseClientFactory.SSLHostnameVerifier.HostnameVerifierAdapter

HostnameVerifierAdapter verifies the hostname,SSLSession and X509Certificate certificate.
Field Summary

Fields

Modifier and Type

Field

Description

static final DatabaseClientFactory.SSLHostnameVerifier.Builtin

ANY

The ANY SSLHostnameVerifier allows any hostname, which can be useful during initial development when a valid SSL certificate is not available but is not recommended for production because it would permit an invalid SSL certificate.

static final DatabaseClientFactory.SSLHostnameVerifier.Builtin

COMMON

The COMMON SSLHostnameVerifier applies common rules for checking hostnames during SSL authentication (similar to org.apache.http.conn.ssl.BrowserCompatHostnameVerifier).

static final DatabaseClientFactory.SSLHostnameVerifier.Builtin

STRICT

The STRICT SSLHostnameVerifier applies strict rules for checking hostnames during SSL authentication (similar to org.apache.http.conn.ssl.StrictHostnameVerifier).
Method Summary

Modifier and Type

Method

Description

void

verify(String hostname, String[] cns, String[] subjectAlts)

Checks during SSL authentication that a hostname matches the Common Name or "DNS" Subject alts from the SSL certificate presented by the server.

Field Details
- ANY
  
  static final DatabaseClientFactory.SSLHostnameVerifier.Builtin ANY
  
  The ANY SSLHostnameVerifier allows any hostname, which can be useful during initial development when a valid SSL certificate is not available but is not recommended for production because it would permit an invalid SSL certificate.
- COMMON
  
  static final DatabaseClientFactory.SSLHostnameVerifier.Builtin COMMON
  
  The COMMON SSLHostnameVerifier applies common rules for checking hostnames during SSL authentication (similar to org.apache.http.conn.ssl.BrowserCompatHostnameVerifier). It allows any level of subdomains for SSL certificates with wildcard domains.
- STRICT
  
  static final DatabaseClientFactory.SSLHostnameVerifier.Builtin STRICT
  
  The STRICT SSLHostnameVerifier applies strict rules for checking hostnames during SSL authentication (similar to org.apache.http.conn.ssl.StrictHostnameVerifier). It allows one level of subdomain for SSL certificates with wildcard domains like RFC 2818.
Method Details
- verify
  
  void verify(String hostname, String[] cns, String[] subjectAlts) throws SSLException
  
  Checks during SSL authentication that a hostname matches the Common Name or "DNS" Subject alts from the SSL certificate presented by the server.
  
  Parameters:
  
  hostname - the DNS host name of the server
  
  cns - common names from the SSL certificate presented by the server
  
  subjectAlts - alternative subject names from the SSL certificate presented by the server
  
  Throws:
  
  SSLException - if the hostname isn't acceptable

Interface DatabaseClientFactory.SSLHostnameVerifier

Nested Class Summary

Field Summary

Method Summary

Field Details

ANY

COMMON

STRICT

Method Details

verify