W3cubDocs

Class X509ExtendedKeyManager

java.lang.Object

javax.net.ssl.X509ExtendedKeyManager

All Implemented Interfaces:: KeyManager, X509KeyManager

public abstract class X509ExtendedKeyManager extends Object implements X509KeyManager

Abstract class that provides for extension of the X509KeyManager interface.

Methods in this class should be overridden to provide actual implementations.

Since:: 1.5

Constructor Summary

X509ExtendedKeyManager()

Modifier	Constructor	Description
`protected`	Constructor used by subclasses only.

Method Summary

Modifier and Type	Method	Description
`String`	`chooseEngineClientAlias(String[] keyType, Principal[] issuers, SSLEngine engine)`	Choose an alias to authenticate the client side of an `SSLEngine` connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).
`String`	`chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine)`	Choose an alias to authenticate the server side of an `SSLEngine` connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).

Methods declared in class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods declared in interface javax.net.ssl.X509KeyManager

chooseClientAlias, chooseServerAlias, getCertificateChain, getClientAliases, getPrivateKey, getServerAliases

Constructor Details

X509ExtendedKeyManager

protected X509ExtendedKeyManager()

Constructor used by subclasses only.

Method Details

chooseEngineClientAlias

public String chooseEngineClientAlias(String[] keyType, Principal[] issuers, SSLEngine engine)

Choose an alias to authenticate the client side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).

The default implementation returns null.

Parameters:: keyType - the key algorithm type name(s), ordered with the most-preferred key type first.; issuers - the list of acceptable CA issuer subject names or null if it does not matter which issuers are used.; engine - the SSLEngine to be used for this connection. This parameter can be null, which indicates that implementations of this interface are free to select an alias applicable to any engine.
Returns:: the alias name for the desired key, or null if there are no matches.

chooseEngineServerAlias

public String chooseEngineServerAlias(String keyType, Principal[] issuers, SSLEngine engine)

Choose an alias to authenticate the server side of an SSLEngine connection given the public key type and the list of certificate issuer authorities recognized by the peer (if any).

The default implementation returns null.

Parameters:: keyType - the key algorithm type name.; issuers - the list of acceptable CA issuer subject names or null if it does not matter which issuers are used.; engine - the SSLEngine to be used for this connection. This parameter can be null, which indicates that implementations of this interface are free to select an alias applicable to any engine.
Returns:: the alias name for the desired key, or null if there are no matches.

© 1993, 2023, Oracle and/or its affiliates. All rights reserved.
Documentation extracted from Debian's OpenJDK Development Kit package.
Licensed under the GNU General Public License, version 2, with the Classpath Exception.
Various third party code in OpenJDK is licensed under different licenses (see Debian package).
Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates.
https://docs.oracle.com/en/java/javase/21/docs/api/java.base/javax/net/ssl/X509ExtendedKeyManager.html