An SSLEngine can either demand, allow or ignore its peer’s authentication
(via certificates), where Need
will fail the handshake if the peer does
not provide valid credentials, Want
allows the peer to send credentials
and verifies them if provided, and None
disables peer certificate
verification.
An SSLEngine can either demand, allow or ignore its peer’s authentication
(via certificates), where Need
will fail the handshake if the peer does
not provide valid credentials, Want
allows the peer to send credentials
and verifies them if provided, and None
disables peer certificate
verification.
See the documentation for SSLEngine::setWantClientAuth
for more information.
A certificate exception that contains underlying exceptions.
A keymanager that wraps other X509 key managers.
A trust manager that is a composite of several smaller trust managers.
A trust manager that is a composite of several smaller trust managers. It is responsible for verifying the credentials received from a peer.
Creates an SSL context builder from info objects.
Add a disabled but complaining hostname verifier.
A fake key store
A fake key store
Was: play.core.server.ssl.FakeKeyStore
A fake key store
A fake key store
Was: play.core.server.ssl.FakeKeyStore
Builds a keystore from a file containing PEM encoded certificates, using CertificateFactory internally.
Builds a keystore from a file containing PEM encoded certificates, using CertificateFactory internally.
java.security.cert.CertificateFactory
The key manager config.
Configuration for a keystore.
Configuration for a keystore.
A key store must either provide a file path, or a data String.
Either key store path or data must be defined, but not both.
The SSL configuration.
SSL debug configuration.
Configuration for specifying loose (potentially dangerous) ssl config.
Carries values which will be later set on an SSLParameters object.
A simple SSL context builder.
A simple SSL context builder. If the keyManagers or trustManagers are empty, then null is used in the init method. Likewise, if secureRandom is None then null is used.
Builds a keystore from a string containing PEM encoded certificates, using CertificateFactory internally.
Builds a keystore from a string containing PEM encoded certificates, using CertificateFactory internally.
java.security.cert.CertificateFactory
Configures global system properties on the JSSE implementation, if defined.
Configures global system properties on the JSSE implementation, if defined.
WARNING: This class sets system properties to configure JSSE code which typically uses static initialization on load. Because of this, if classes are loaded in BEFORE this code has a chance to operate, you may find that this code works inconsistently. The solution is to set the system properties on the command line explicitly (or in the case of "ocsp.enable", in the security property file).
The trust manager config.
Configuration for a trust store.
Configuration for a trust store.
A trust store must either provide a file path, or a data String.
(Since version 0.5.0) not operative
(Since version 0.5.0) not operative
(Since version 0.4.0) DefaultHostnameVerifier has been deprecated and does nothing. Please use the javax.net.debug system property.
(Since version 0.4.0) Setting system properties in JSSE after JVM initialization is unreliable. Please set the java.security.debug system property at startup.
http://docs.oracle.com/javase/8/docs/technotes/guides/security/certpath/CertPathProgGuide.html
A builder for setting the system property options in "javax.net.debug" and in "java.security.debug' (in the case of "certpath").
A builder for setting the system property options in "javax.net.debug" and in "java.security.debug' (in the case of "certpath").
(Since version 0.4.0) Setting system properties in JSSE after JVM initialization is unreliable. Please set the javax.net.debug system property at startup.
http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/ReadDebug.html
http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#Debug
(Since version 0.4.0) MonkeyPatcher has been deprecated and does nothing. Please use the javax.net.debug system property.
SSL handshake debugging options.
SSL handshake debugging options.
(Since version 0.4.0) not operative
SSL record debugging options.
SSL record debugging options.
(Since version 0.4.0) not operative
A fake key store with a selfsigned CA and a certificate issued by that CA.
A fake key store with a selfsigned CA and a certificate issued by that CA. Includes a trustedCertEntry
for
each of the two certificates.
Your keystore contains 4 entries sslconfig-user-trust, Oct 4, 2018, trustedCertEntry, Certificate fingerprint (SHA1): 19:2D:20:F0:36:59:E3:AD:C1:AA:55:82:0D:D2:94:5D:B3:75:3F:F8 sslconfig-user, Oct 4, 2018, PrivateKeyEntry, Certificate fingerprint (SHA1): 19:2D:20:F0:36:59:E3:AD:C1:AA:55:82:0D:D2:94:5D:B3:75:3F:F8 sslconfig-CA-trust, Oct 4, 2018, trustedCertEntry, Certificate fingerprint (SHA1): 9B:78:6B:4F:E4:B6:4D:EF:3E:3E:06:32:7A:53:83:28:96:7F:12:C7 sslconfig-CA, Oct 4, 2018, PrivateKeyEntry, Certificate fingerprint (SHA1): 9B:78:6B:4F:E4:B6:4D:EF:3E:3E:06:32:7A:53:83:28:96:7F:12:C7
Was: play.core.server.ssl.FakeKeyStore
A fake key store with a single, selfsigned certificate and keypair.
A fake key store with a single, selfsigned certificate and keypair. Includes also a trustedCertEntry
for
that certificate.
Your keystore contains 2 entries sslconfig-selfsigned-trust, Oct 4, 2018, trustedCertEntry, Certificate fingerprint (SHA1): 19:2D:20:F0:36:59:E3:AD:C1:AA:55:82:0D:D2:94:5D:B3:75:3F:F8 sslconfig-selfsigned, Oct 4, 2018, PrivateKeyEntry, Certificate fingerprint (SHA1): 19:2D:20:F0:36:59:E3:AD:C1:AA:55:82:0D:D2:94:5D:B3:75:3F:F8
Was: play.core.server.ssl.FakeKeyStore
Factory for creating SSL config (for use from Java).
(Since version 0.4.0) not operative
(Since version 0.4.0) not operative