net / org.apache.tuweni.net.tls / VertxTrustOptions / whitelistClients

whitelistClients

static fun whitelistClients(knownClientsFile: Path): TrustOptions (source)

Require clients to present known certificates, or CA-signed certificates.

If a certificate is not CA-signed, then its common name and fingerprint must be present in the knownClientsFile.

Parameters

knownClientsFile - The path to the file containing fingerprints by common name.

Return
A Vert.x TrustOptions.

static fun whitelistClients(repository: FingerprintRepository): TrustOptions (source)

Require clients to present known certificates, or CA-signed certificates.

If a certificate is not CA-signed, then its common name and fingerprint must be present in the knownClientsFile.

Parameters

repository - The repository containing fingerprints by common name.

Return
A Vert.x TrustOptions.

static fun whitelistClients(knownClientsFile: Path, acceptCASigned: Boolean): TrustOptions (source)

Require clients to present known certificates.

The common name and fingerprint for a client certificate must be present in knownClientsFile.

Parameters

knownClientsFile - The path to the file containing fingerprints by common name.

acceptCASigned - If true, CA-signed certificates will always be accepted.

Return
A Vert.x TrustOptions.

static fun whitelistClients(repository: FingerprintRepository, acceptCASigned: Boolean): TrustOptions (source)

Require clients to present known certificates.

The common name and fingerprint for a client certificate must be present in knownClientsFile.

Parameters

repository - The repository containing fingerprints by common name.

acceptCASigned - If true, CA-signed certificates will always be accepted.

Return
A Vert.x TrustOptions.

static fun whitelistClients(knownClientsFile: Path, tmf: TrustManagerFactory): TrustOptions (source)

Require clients to present known certificates, or CA-signed certificates.

If a certificate is not CA-signed, then its common name and fingerprint must be present in the knownClientsFile.

Parameters

knownClientsFile - The path to the file containing fingerprints by common name.

tmf - A TrustManagerFactory for checking client certificates against a CA.

Return
A Vert.x TrustOptions.

static fun whitelistClients(repository: FingerprintRepository, tmf: TrustManagerFactory): TrustOptions (source)

Require clients to present known certificates, or CA-signed certificates.

If a certificate is not CA-signed, then its common name and fingerprint must be present in the knownClientsFile.

Parameters

repository - The repository containing fingerprints by common name.

tmf - A TrustManagerFactory for checking client certificates against a CA.

Return
A Vert.x TrustOptions.