tuweni / org.apache.tuweni.net.tls / VertxTrustOptions

VertxTrustOptions

class VertxTrustOptions (source)

Vert.x TrustOptions for fingerprinting clients and servers.

This class depends upon the Vert.X library being available on the classpath, along with its dependencies. See https://vertx.io/download/. Vert.X can be included using the gradle dependency 'io.vertx:vertx-core'.

Functions

recordClientFingerprints

Accept all client certificates, recording certificate fingerprints for those that are not CA-signed.

static fun recordClientFingerprints(knownClientsFile: Path!): TrustOptions!
static fun recordClientFingerprints(repository: FingerprintRepository!): TrustOptions!
static fun recordClientFingerprints(knownClientsFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun recordClientFingerprints(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

Accept all client certificates, recording certificate fingerprints.

static fun recordClientFingerprints(knownClientsFile: Path!, skipCASigned: Boolean): TrustOptions!
static fun recordClientFingerprints(repository: FingerprintRepository!, skipCASigned: Boolean): TrustOptions!

recordServerFingerprints

Accept all server certificates, recording certificate fingerprints for those that are not CA-signed.

static fun recordServerFingerprints(knownServersFile: Path!): TrustOptions!
static fun recordServerFingerprints(repository: FingerprintRepository!): TrustOptions!
static fun recordServerFingerprints(knownServersFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun recordServerFingerprints(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

Accept all server certificates, recording certificate fingerprints.

static fun recordServerFingerprints(knownServersFile: Path!, skipCASigned: Boolean): TrustOptions!
static fun recordServerFingerprints(repository: FingerprintRepository!, skipCASigned: Boolean): TrustOptions!

trustClientOnFirstAccess

Accept CA-signed client certificates, and otherwise trust client certificates on first access.

static fun trustClientOnFirstAccess(knownClientsFile: Path!): TrustOptions!
static fun trustClientOnFirstAccess(repository: FingerprintRepository!): TrustOptions!

Trust client certificates on first access.

static fun trustClientOnFirstAccess(knownClientsFile: Path!, acceptCASigned: Boolean): TrustOptions!
static fun trustClientOnFirstAccess(repository: FingerprintRepository!, acceptCASigned: Boolean): TrustOptions!

Accept CA-signed certificates, and otherwise trust client certificates on first access.

static fun trustClientOnFirstAccess(knownClientsFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun trustClientOnFirstAccess(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

trustServerOnFirstUse

Accept CA-signed certificates, and otherwise trust server certificates on first use.

static fun trustServerOnFirstUse(knownServersFile: Path!): TrustOptions!
static fun trustServerOnFirstUse(repository: FingerprintRepository!): TrustOptions!
static fun trustServerOnFirstUse(knownServersFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun trustServerOnFirstUse(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

Trust server certificates on first use.

static fun trustServerOnFirstUse(knownServersFile: Path!, acceptCASigned: Boolean): TrustOptions!
static fun trustServerOnFirstUse(repository: FingerprintRepository!, acceptCASigned: Boolean): TrustOptions!

whitelistClients

Require clients to present known certificates, or CA-signed certificates.

static fun whitelistClients(knownClientsFile: Path!): TrustOptions!
static fun whitelistClients(repository: FingerprintRepository!): TrustOptions!
static fun whitelistClients(knownClientsFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun whitelistClients(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

Require clients to present known certificates.

static fun whitelistClients(knownClientsFile: Path!, acceptCASigned: Boolean): TrustOptions!
static fun whitelistClients(repository: FingerprintRepository!, acceptCASigned: Boolean): TrustOptions!

whitelistServers

Require servers to present known certificates, or CA-signed certificates.

static fun whitelistServers(knownServersFile: Path!): TrustOptions!
static fun whitelistServers(repository: FingerprintRepository!): TrustOptions!
static fun whitelistServers(knownServersFile: Path!, tmf: TrustManagerFactory!): TrustOptions!
static fun whitelistServers(repository: FingerprintRepository!, tmf: TrustManagerFactory!): TrustOptions!

Require servers to present known certificates.

static fun whitelistServers(knownServersFile: Path!, acceptCASigned: Boolean): TrustOptions!
static fun whitelistServers(repository: FingerprintRepository!, acceptCASigned: Boolean): TrustOptions!