Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES
SUMMARY:  INNER | FIELD | CONSTR | METHOD DETAIL:  FIELD | CONSTR | METHOD

iaik.security.ssl
Interface ClientTrustDecider

Deprecated. see SSLContext JavaDoc and separate document for the new authentication framework

public interface ClientTrustDecider
extends TrustDecider

Field Summary
static byte dss_ephemeral_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte dss_fixed_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte dss_sign
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte fortezza_dms
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_ephemeral_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_fixed_dh
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
static byte rsa_sign
          Deprecated. A possible certificate type for a CertificateRequest handshake message.
 
Method Summary
 SSLCertificate getCertificate(byte[] certificateTypes, Principal[] certificateAuthorities, java.lang.String keyExchangeAlgorithm)
          Deprecated. Returns a client certificate.
 PrivateKey getPrivateKey()
          Deprecated. Returns the private key belonging to the certificate returned by getCertificate().
 
Methods inherited from interface iaik.security.ssl.TrustDecider
isTrustedPeer
 

Field Detail

rsa_sign

public static final byte rsa_sign
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which can be used for signing.

dss_sign

public static final byte dss_sign
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which can be used for signing.

rsa_fixed_dh

public static final byte rsa_fixed_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which includes fixed Diffie-Hellman parameters.

dss_fixed_dh

public static final byte dss_fixed_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which includes fixed Diffie-Hellman parameters.

rsa_ephemeral_dh

public static final byte rsa_ephemeral_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a RSA certificate which includes ephemeral Diffie-Hellman parameters.

dss_ephemeral_dh

public static final byte dss_ephemeral_dh
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a DSS certificate which includes ephemeral Diffie-Hellman parameters.

fortezza_dms

public static final byte fortezza_dms
Deprecated. 
A possible certificate type for a CertificateRequest handshake message. Denotes a fortezza certificate.
Method Detail

getCertificate

public SSLCertificate getCertificate(byte[] certificateTypes,
                                     Principal[] certificateAuthorities,
                                     java.lang.String keyExchangeAlgorithm)
Deprecated. 
Returns a client certificate. If a SSL server requests a client certificate it sends a CertificateRequest message. This message also includes a list of accepted certificate types and a list oft accepted certification authorities (subject or issuer of self signed top level CAs). If a client SSLSocket receives such a message it calls this method to get a certificate which can be sendet back to the server. Immediately after calling this method the getPrivateKey() method is called to retrieve the corresponding private key.

If there is no TrustDecider set in a SSLClientContext a NoCertificate warning is sent to the server.

By implementing this interface someone can use his own procedure to access the client certificates.

Parameters:
certificateTypes - the certificate types the server requieres
certificateAuthorities - the certification authorities the server accepts
Returns:
a client certificate list (list[0] = client certificate) or null if no appropriate certificate is found.

getPrivateKey

public PrivateKey getPrivateKey()
Deprecated. 
Returns the private key belonging to the certificate returned by getCertificate().
Returns:
the private key
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES
SUMMARY:  INNER | FIELD | CONSTR | METHOD DETAIL:  FIELD | CONSTR | METHOD