1/* 2 * Copyright (c) 2000, 2017, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. Oracle designates this 8 * particular file as subject to the "Classpath" exception as provided 9 * by Oracle in the LICENSE file that accompanied this code. 10 * 11 * This code is distributed in the hope that it will be useful, but WITHOUT 12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 14 * version 2 for more details (a copy is included in the LICENSE file that 15 * accompanied this code). 16 * 17 * You should have received a copy of the GNU General Public License version 18 * 2 along with this work; if not, write to the Free Software Foundation, 19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 20 * 21 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 22 * or visit www.oracle.com if you need additional information or have any 23 * questions. 24 */ 25 26/* 27 * NOTE: this file was copied from javax.net.ssl.X509TrustManager 28 */ 29 30package com.sun.net.ssl; 31 32import java.security.cert.X509Certificate; 33 34/** 35 * Instance of this interface manage which X509 certificates 36 * may be used to authenticate the remote side of a secure 37 * socket. Decisions may be based on trusted certificate 38 * authorities, certificate revocation lists, online 39 * status checking or other means. 40 * 41 * @deprecated As of JDK 1.4, this implementation-specific class was 42 * replaced by {@link javax.net.ssl.X509TrustManager}. 43 */ 44@Deprecated(since="1.4") 45public interface X509TrustManager extends TrustManager { 46 /** 47 * Given the partial or complete certificate chain 48 * provided by the peer, build a certificate path 49 * to a trusted root and return true if it can be 50 * validated and is trusted for client SSL authentication. 51 * 52 * @param chain the peer certificate chain 53 */ 54 public boolean isClientTrusted(X509Certificate[] chain); 55 56 /** 57 * Given the partial or complete certificate chain 58 * provided by the peer, build a certificate path 59 * to a trusted root and return true if it can be 60 * validated and is trusted for server SSL authentication. 61 * 62 * @param chain the peer certificate chain 63 */ 64 public boolean isServerTrusted(X509Certificate[] chain); 65 66 /** 67 * Return an array of certificate authority certificates 68 * which are trusted for authenticating peers. 69 * 70 * @return the acceptable CA issuer certificates 71 */ 72 public X509Certificate[] getAcceptedIssuers(); 73} 74