tuweni / org.apache.tuweni.net.tls / TrustManagerFactories / recordClientFingerprints

recordClientFingerprints

static fun recordClientFingerprints(knownClientsFile: Path): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints for those that are not CA-signed.

Excepting when a client presents a CA-signed certificate, the certificate fingerprint will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

knownClientsFile - The path to a file in which to record fingerprints.

Return
A trust manager factory.

static fun recordClientFingerprints(repository: FingerprintRepository): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints for those that are not CA-signed.

Excepting when a client presents a CA-signed certificate, the certificate fingerprint will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

repository - The repository in which to record fingerprints.

Return
A trust manager factory.

static fun recordClientFingerprints(knownClientsFile: Path, skipCASigned: Boolean): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints.

For all connections, the fingerprint of the presented certificate will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

knownClientsFile - The path to a file in which to record fingerprints.

skipCASigned - If true, CA-signed certificates are not recorded.

Return
A trust manager factory.

static fun recordClientFingerprints(repository: FingerprintRepository, skipCASigned: Boolean): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints.

For all connections, the fingerprint of the presented certificate will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

repository - The repository in which to record fingerprints.

skipCASigned - If true, CA-signed certificates are not recorded.

Return
A trust manager factory.

static fun recordClientFingerprints(knownClientsFile: Path, tmf: TrustManagerFactory): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints for those that are not CA-signed.

Excepting when a client presents a CA-signed certificate, the certificate fingerprint will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

knownClientsFile - The path to a file in which to record fingerprints.

tmf - A TrustManagerFactory for checking server certificates against a CA.

Return
A trust manager factory.

static fun recordClientFingerprints(repository: FingerprintRepository, tmf: TrustManagerFactory): TrustManagerFactory (source)

Accept all client certificates, recording certificate fingerprints for those that are not CA-signed.

Excepting when a client presents a CA-signed certificate, the certificate fingerprint will be written to knownClientsFile.

Important: this provides no security as it is vulnerable to man-in-the-middle attacks.

Parameters

repository - The repository in which to record fingerprints.

tmf - A TrustManagerFactory for checking server certificates against a CA.

Return
A trust manager factory.