Package io.undertow.server
Class BasicSSLSessionInfo
java.lang.Object
io.undertow.server.BasicSSLSessionInfo
- All Implemented Interfaces:
SSLSessionInfo
Basic SSL session information. This information is generally provided by a front end proxy.
- Author:
- Stuart Douglas
-
Constructor Summary
ConstructorsConstructorDescriptionBasicSSLSessionInfo
(byte[] sessionId, String cypherSuite, String certificate) BasicSSLSessionInfo
(byte[] sessionId, String cypherSuite, String certificate, Integer keySize) BasicSSLSessionInfo
(String sessionId, String cypherSuite, String certificate) BasicSSLSessionInfo
(String sessionId, String cypherSuite, String certificate, Integer keySize) -
Method Summary
Modifier and TypeMethodDescriptionint
This method is no longer supported on java 15 and should be avoided.Gets the peer certificates.byte[]
void
renegotiate
(HttpServerExchange exchange, org.xnio.SslClientAuthMode sslClientAuthMode) Renegotiate in a blocking manner.
-
Constructor Details
-
BasicSSLSessionInfo
public BasicSSLSessionInfo(byte[] sessionId, String cypherSuite, String certificate, Integer keySize) throws CertificateException, CertificateException - Parameters:
sessionId
- The SSL session IDcypherSuite
- The cypher suite namecertificate
- A string representation of the client certificatekeySize
- The key-size used by the cypher- Throws:
CertificateException
- If the client cert could not be decodedCertificateException
- If the client cert could not be decoded
-
BasicSSLSessionInfo
public BasicSSLSessionInfo(byte[] sessionId, String cypherSuite, String certificate) throws CertificateException, CertificateException - Parameters:
sessionId
- The SSL session IDcypherSuite
- The cypher suite namecertificate
- A string representation of the client certificate- Throws:
CertificateException
- If the client cert could not be decodedCertificateException
- If the client cert could not be decoded
-
BasicSSLSessionInfo
public BasicSSLSessionInfo(String sessionId, String cypherSuite, String certificate) throws CertificateException, CertificateException - Parameters:
sessionId
- The encoded SSL session IDcypherSuite
- The cypher suite namecertificate
- A string representation of the client certificate- Throws:
CertificateException
- If the client cert could not be decodedCertificateException
- If the client cert could not be decoded
-
BasicSSLSessionInfo
public BasicSSLSessionInfo(String sessionId, String cypherSuite, String certificate, Integer keySize) throws CertificateException, CertificateException - Parameters:
sessionId
- The encoded SSL session IDcypherSuite
- The cypher suite namecertificate
- A string representation of the client certificatekeySize
- The key-size used by the cypher- Throws:
CertificateException
- If the client cert could not be decodedCertificateException
- If the client cert could not be decoded
-
-
Method Details
-
getSessionId
public byte[] getSessionId()- Specified by:
getSessionId
in interfaceSSLSessionInfo
- Returns:
- The SSL session ID, or null if this could not be determined.
-
getCipherSuite
- Specified by:
getCipherSuite
in interfaceSSLSessionInfo
-
getKeySize
public int getKeySize()- Specified by:
getKeySize
in interfaceSSLSessionInfo
-
getPeerCertificates
Description copied from interface:SSLSessionInfo
Gets the peer certificates. This may force SSL renegotiation.- Specified by:
getPeerCertificates
in interfaceSSLSessionInfo
- Returns:
- The peer certificates
- Throws:
SSLPeerUnverifiedException
-
getPeerCertificateChain
Description copied from interface:SSLSessionInfo
This method is no longer supported on java 15 and should be avoided.- Specified by:
getPeerCertificateChain
in interfaceSSLSessionInfo
- Throws:
SSLPeerUnverifiedException
- See Also:
-
renegotiate
public void renegotiate(HttpServerExchange exchange, org.xnio.SslClientAuthMode sslClientAuthMode) throws IOException Description copied from interface:SSLSessionInfo
Renegotiate in a blocking manner. This will set the client aut TODO: we also need a non-blocking version- Specified by:
renegotiate
in interfaceSSLSessionInfo
- Parameters:
exchange
- The exchangesslClientAuthMode
- The client cert mode to use when renegotiating- Throws:
IOException
-
getSSLSession
- Specified by:
getSSLSession
in interfaceSSLSessionInfo
- Returns:
- The SSL session, or null if it is not applicable
-