Package io.undertow.server

Class ConnectionSSLSessionInfo

java.lang.Object

io.undertow.server.ConnectionSSLSessionInfo

All Implemented Interfaces:

SSLSessionInfo

public class ConnectionSSLSessionInfo
extends Object
implements SSLSessionInfo

SSL session information that is read directly from the SSL session of the XNIO connection

Author:

Stuart Douglas

Constructor Summary

Constructors

Constructor	Description
ConnectionSSLSessionInfo(org.xnio.channels.SslChannel channel, HttpServerConnection serverConnection)

Method Summary

Modifier and Type	Method	Description
String	getCipherSuite()
X509Certificate[]	getPeerCertificateChain()	Deprecated.
Certificate[]	getPeerCertificates()	Gets the peer certificates.
byte[]	getSessionId()
SSLSession	getSSLSession()
void	renegotiate(HttpServerExchange exchange, org.xnio.SslClientAuthMode sslClientAuthMode)	Renegotiate in a blocking manner.
void	renegotiateBufferRequest(HttpServerExchange exchange, org.xnio.SslClientAuthMode newAuthMode)
void	renegotiateNoRequest(HttpServerExchange exchange, org.xnio.SslClientAuthMode newAuthMode)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface io.undertow.server.SSLSessionInfo

getKeySize

Constructor Details

ConnectionSSLSessionInfo

public ConnectionSSLSessionInfo(org.xnio.channels.SslChannel channel,
 HttpServerConnection serverConnection)

Method Details

getSessionId

public byte[] getSessionId()

Specified by:

getSessionId in interface SSLSessionInfo

Returns:

The SSL session ID, or null if this could not be determined.

getCipherSuite

public String getCipherSuite()

Specified by:

getCipherSuite in interface SSLSessionInfo

getPeerCertificates

public Certificate[] getPeerCertificates()
                                  throws SSLPeerUnverifiedException,
RenegotiationRequiredException

Description copied from interface: SSLSessionInfo

Gets the peer certificates. This may force SSL renegotiation.

Specified by:

getPeerCertificates in interface SSLSessionInfo

Returns:

The peer certificates

Throws:

SSLPeerUnverifiedException

RenegotiationRequiredException - If the session

getPeerCertificateChain

@Deprecated(since="2.2.3",
            forRemoval=false)
public X509Certificate[] getPeerCertificateChain()
                                          throws SSLPeerUnverifiedException,
RenegotiationRequiredException

Deprecated.

Description copied from interface: SSLSessionInfo

This method is no longer supported on java 15 and should be avoided.

Specified by:

getPeerCertificateChain in interface SSLSessionInfo

Throws:

SSLPeerUnverifiedException

RenegotiationRequiredException

See Also:

• SSLSession.getPeerCertificateChain()

renegotiate

public void renegotiate(HttpServerExchange exchange,
 org.xnio.SslClientAuthMode sslClientAuthMode)
                 throws IOException

Description copied from interface: SSLSessionInfo

Renegotiate in a blocking manner. This will set the client aut TODO: we also need a non-blocking version

Specified by:

renegotiate in interface SSLSessionInfo

Parameters:

exchange - The exchange

sslClientAuthMode - The client cert mode to use when renegotiating

Throws:

IOException

getSSLSession

public SSLSession getSSLSession()

Specified by:

getSSLSession in interface SSLSessionInfo

Returns:

The SSL session, or null if it is not applicable

renegotiateBufferRequest

public void renegotiateBufferRequest(HttpServerExchange exchange,
 org.xnio.SslClientAuthMode newAuthMode)
                              throws IOException

Throws:

IOException

renegotiateNoRequest

public void renegotiateNoRequest(HttpServerExchange exchange,
 org.xnio.SslClientAuthMode newAuthMode)
                          throws IOException

Throws:

IOException