Class TrustAllStrategy

  • All Implemented Interfaces:
    TrustStrategy, TrustStrategy

    public class TrustAllStrategy
    extends java.lang.Object
    implements TrustStrategy
    A trust strategy that accepts all certificates as trusted. Verification of all other certificates is done by the trust manager configured in the SSL context.
    Since:
    4.5.4
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      boolean isTrusted​(java.security.cert.X509Certificate[] chain, java.lang.String authType)
      Determines whether the certificate chain can be trusted without consulting the trust manager configured in the actual SSL context.
      • Methods inherited from class java.lang.Object

        equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • TrustAllStrategy

        public TrustAllStrategy()
    • Method Detail

      • isTrusted

        public boolean isTrusted​(java.security.cert.X509Certificate[] chain,
                                 java.lang.String authType)
                          throws java.security.cert.CertificateException
        Description copied from interface: TrustStrategy
        Determines whether the certificate chain can be trusted without consulting the trust manager configured in the actual SSL context. This method can be used to override the standard JSSE certificate verification process.

        Please note that, if this method returns false, the trust manager configured in the actual SSL context can still clear the certificate as trusted.

        Specified by:
        isTrusted in interface TrustStrategy
        Parameters:
        chain - the peer certificate chain
        authType - the authentication type based on the client certificate
        Returns:
        true if the certificate can be trusted without verification by the trust manager, false otherwise.
        Throws:
        java.security.cert.CertificateException - thrown if the certificate is not trusted or invalid.