IT. Expert System.

Java Standard Edition (SE)

SSLParameters


compact1, compact2, compact3
javax.net.ssl

Class SSLParameters

    • Constructor Detail

      • SSLParameters

        public SSLParameters()
        Constructs SSLParameters.

        The values of cipherSuites, protocols, cryptographic algorithm constraints, endpoint identification algorithm, server names and server name matchers are set to null, useCipherSuitesOrder, wantClientAuth and needClientAuth are set to false.

      • SSLParameters

        public SSLParameters(String[] cipherSuites)
        Constructs SSLParameters from the specified array of ciphersuites.

        Calling this constructor is equivalent to calling the no-args constructor followed by setCipherSuites(cipherSuites);.

        Parameters:
        cipherSuites - the array of ciphersuites (or null)
      • SSLParameters

        public SSLParameters(String[] cipherSuites,
                             String[] protocols)
        Constructs SSLParameters from the specified array of ciphersuites and protocols.

        Calling this constructor is equivalent to calling the no-args constructor followed by setCipherSuites(cipherSuites); setProtocols(protocols);.

        Parameters:
        cipherSuites - the array of ciphersuites (or null)
        protocols - the array of protocols (or null)
    • Method Detail

      • getCipherSuites

        public String[] getCipherSuites()
        Returns a copy of the array of ciphersuites or null if none have been set.
        Returns:
        a copy of the array of ciphersuites or null if none have been set.
      • setCipherSuites

        public void setCipherSuites(String[] cipherSuites)
        Sets the array of ciphersuites.
        Parameters:
        cipherSuites - the array of ciphersuites (or null)
      • getProtocols

        public String[] getProtocols()
        Returns a copy of the array of protocols or null if none have been set.
        Returns:
        a copy of the array of protocols or null if none have been set.
      • setProtocols

        public void setProtocols(String[] protocols)
        Sets the array of protocols.
        Parameters:
        protocols - the array of protocols (or null)
      • getWantClientAuth

        public boolean getWantClientAuth()
        Returns whether client authentication should be requested.
        Returns:
        whether client authentication should be requested.
      • setWantClientAuth

        public void setWantClientAuth(boolean wantClientAuth)
        Sets whether client authentication should be requested. Calling this method clears the needClientAuth flag.
        Parameters:
        wantClientAuth - whether client authentication should be requested
      • getNeedClientAuth

        public boolean getNeedClientAuth()
        Returns whether client authentication should be required.
        Returns:
        whether client authentication should be required.
      • setNeedClientAuth

        public void setNeedClientAuth(boolean needClientAuth)
        Sets whether client authentication should be required. Calling this method clears the wantClientAuth flag.
        Parameters:
        needClientAuth - whether client authentication should be required
      • setAlgorithmConstraints

        public void setAlgorithmConstraints(AlgorithmConstraints constraints)
        Sets the cryptographic algorithm constraints, which will be used in addition to any configured by the runtime environment.

        If the constraints parameter is non-null, every cryptographic algorithm, key and algorithm parameters used in the SSL/TLS handshake must be permitted by the constraints.

        Parameters:
        constraints - the algorithm constraints (or null)
        Since:
        1.7
      • setEndpointIdentificationAlgorithm

        public void setEndpointIdentificationAlgorithm(String algorithm)
        Sets the endpoint identification algorithm.

        If the algorithm parameter is non-null or non-empty, the endpoint identification/verification procedures must be handled during SSL/TLS handshaking. This is to prevent man-in-the-middle attacks.

        Parameters:
        algorithm - The standard string name of the endpoint identification algorithm (or null). See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.
        Since:
        1.7
        See Also:
        X509ExtendedTrustManager
      • getServerNames

        public final List<SNIServerName> getServerNames()
        Returns a List containing all SNIServerNames of the Server Name Indication (SNI) parameter, or null if none has been set.

        This method is only useful to SSLSockets or SSLEngines operating in client mode.

        For SSL/TLS connections, the underlying SSL/TLS provider may specify a default value for a certain server name type. In client mode, it is recommended that, by default, providers should include the server name indication whenever the server can be located by a supported server name type.

        It is recommended that providers initialize default Server Name Indications when creating SSLSocket/SSLEngines. In the following examples, the server name could be represented by an instance of SNIHostName which has been initialized with the hostname "www.example.com" and type StandardConstants.SNI_HOST_NAME.

             Socket socket =
                 sslSocketFactory.createSocket("www.example.com", 443);
         
        or
             SSLEngine engine =
                 sslContext.createSSLEngine("www.example.com", 443);
         

        Returns:
        null or an immutable list of non-null SNIServerNames
        Since:
        1.8
        See Also:
        List, setServerNames(List)
      • getSNIMatchers

        public final Collection<SNIMatcher> getSNIMatchers()
        Returns a Collection containing all SNIMatchers of the Server Name Indication (SNI) parameter, or null if none has been set.

        This method is only useful to SSLSockets or SSLEngines operating in server mode.

        For better interoperability, providers generally will not define default matchers so that by default servers will ignore the SNI extension and continue the handshake.

        Returns:
        null or an immutable collection of non-null SNIMatchers
        Since:
        1.8
        See Also:
        SNIMatcher, setSNIMatchers(Collection)
      • setUseCipherSuitesOrder

        public final void setUseCipherSuitesOrder(boolean honorOrder)
        Sets whether the local cipher suites preference should be honored.
        Parameters:
        honorOrder - whether local cipher suites order in #getCipherSuites should be honored during SSL/TLS handshaking.
        Since:
        1.8
        See Also:
        getUseCipherSuitesOrder()
      • getUseCipherSuitesOrder

        public final boolean getUseCipherSuitesOrder()
        Returns whether the local cipher suites preference should be honored.
        Returns:
        whether local cipher suites order in #getCipherSuites should be honored during SSL/TLS handshaking.
        Since:
        1.8
        See Also:
        setUseCipherSuitesOrder(boolean)


Content

Android Reference

Java basics

Java Enterprise Edition (EE)

Java Standard Edition (SE)

SQL

HTML

PHP

CSS

Java Script

MYSQL

JQUERY

VBS

REGEX

C

C++

C#

Design patterns

RFC (standard status)

RFC (proposed standard status)

RFC (draft standard status)

RFC (informational status)

RFC (experimental status)

RFC (best current practice status)

RFC (historic status)

RFC (unknown status)

IT dictionary

License.
All information of this service is derived from the free sources and is provided solely in the form of quotations. This service provides information and interfaces solely for the familiarization (not ownership) and under the "as is" condition.
Copyright 2016 © ELTASK.COM. All rights reserved.
Site is optimized for mobile devices.
Downloads: 113 / 158782863. Delta: 0.04578 с