X509TrustManagerExtensions

X509TrustManager wrapper exposing Android-added features.

The checkServerTrusted method allows callers to perform additional verification of certificate chains after they have been successfully verified by the platform.

Summary

Public Constructors
	X509TrustManagerExtensions(X509TrustManager tm) Constructs a new X509TrustManagerExtensions wrapper.

Public Constructors

X509TrustManagerExtensions(X509TrustManager tm)

Constructs a new X509TrustManagerExtensions wrapper.

Public Methods
List<X509Certificate>	checkServerTrusted(X509Certificate[] chain, String authType, String host) Verifies the given certificate chain.
boolean	isUserAddedCertificate(X509Certificate cert) Checks whether a CA certificate is added by an user.

Public Methods

List<X509Certificate>

checkServerTrusted(X509Certificate[] chain, String authType, String host)

Verifies the given certificate chain.

boolean

isUserAddedCertificate(X509Certificate cert)

Checks whether a CA certificate is added by an user.

[Expand]

Inherited Methods

From class java.lang.Object

Object	clone() Creates and returns a copy of this `Object`.
boolean	equals(Object o) Compares this instance with the specified object and indicates if they are equal.
void	finalize() Invoked when the garbage collector has detected that this instance is no longer reachable.
final Class<?>	getClass() Returns the unique instance of `Class` that represents this object's class.
int	hashCode() Returns an integer hash code for this object.
final void	notify() Causes a thread which is waiting on this object's monitor (by means of calling one of the `wait()` methods) to be woken up.
final void	notifyAll() Causes all threads which are waiting on this object's monitor (by means of calling one of the `wait()` methods) to be woken up.
String	toString() Returns a string containing a concise, human-readable description of this object.
final void	wait() Causes the calling thread to wait until another thread calls the `notify()` or `notifyAll()` method of this object.
final void	wait(long millis, int nanos) Causes the calling thread to wait until another thread calls the `notify()` or `notifyAll()` method of this object or until the specified timeout expires.
final void	wait(long millis) Causes the calling thread to wait until another thread calls the `notify()` or `notifyAll()` method of this object or until the specified timeout expires.

Public Constructors

public X509TrustManagerExtensions (X509TrustManager tm)

Added in API level 17

Constructs a new X509TrustManagerExtensions wrapper.

Parameters

tm	A `X509TrustManager` as returned by TrustManagerFactory.getInstance();

Throws

IllegalArgumentException	If tm is an unsupported TrustManager type.

Public Methods

public List<X509Certificate> checkServerTrusted (X509Certificate[] chain, String authType, String host)

Added in API level 17

Verifies the given certificate chain.

See checkServerTrusted(X509Certificate[], String) for a description of the chain and authType parameters. The final parameter, host, should be the hostname of the server.

Returns

the properly ordered chain used for verification as a list of X509Certificates.

Throws

CertificateException	if the chain does not verify correctly.

public boolean isUserAddedCertificate (X509Certificate cert)

Added in API level 21

Checks whether a CA certificate is added by an user.

Since checkServerTrusted(X509Certificate[], String) allows its parameter chain to chain up to user-added CA certificates, this method can be used to perform additional policies for user-added CA certificates.

Returns

true to indicate that the certificate was added by the user, false otherwise.

Results

Classes

Class Overview

Summary

Public Constructors

public X509TrustManagerExtensions (X509TrustManager tm)

Parameters

Throws

Public Methods

public List<X509Certificate> checkServerTrusted (X509Certificate[] chain, String authType, String host)

Returns

Throws

public boolean isUserAddedCertificate (X509Certificate cert)

Returns

java.lang.Object
↳	android.net.http.X509TrustManagerExtensions