trait TlsDirectives extends AnyRef

Source
TlsDirectives.scala
Linear Supertypes
Type Hierarchy
Ordering
  1. Alphabetic
  2. By Inheritance
Inherited
  1. TlsDirectives
  2. AnyRef
  3. Any
Implicitly
  1. by any2stringadd
  2. by StringFormat
  3. by Ensuring
  4. by ArrowAssoc
  1. Hide All
  2. Show All
Visibility
  1. Public
  2. Protected

Value Members

  1. def extractClientCertificate: Directive1[X509Certificate]

    Extract the client certificate, or reject the request with a TlsClientUnverifiedRejection.

    Extract the client certificate, or reject the request with a TlsClientUnverifiedRejection.

    Using this directives requires tls-session info parsing to be enabled: akka.http.server.parsing.tls-session-info-header = on

    The javax.net.ssl.SSLEngine for the server needs to be set up with setWantClientAuth(true) or setNeedClientAuth(true) or else every request will be failed.

  2. def extractSslSession: Directive1[SSLSession]

    Extract the current SSLSession.

    Extract the current SSLSession.

    Note: Using this directives requires tls-session info parsing to be enabled: akka.http.server.parsing.tls-session-info-header = on

  3. def requireClientCertificateIdentity(cnRegex: Regex): Directive0

    Require the client to be authenticated, if not reject the request with a TlsClientUnverifiedRejection, also require the one of the client certificate ip or dns SANs (Subject Alternative Name) or if non exists, the CN (Common Name) to match the given regular expression, if not the request is rejected with a TlsClientIdentityRejection

    Require the client to be authenticated, if not reject the request with a TlsClientUnverifiedRejection, also require the one of the client certificate ip or dns SANs (Subject Alternative Name) or if non exists, the CN (Common Name) to match the given regular expression, if not the request is rejected with a TlsClientIdentityRejection

    Using this directives requires tls-session info parsing to be enabled: akka.http.server.parsing.tls-session-info-header = on

    The javax.net.ssl.SSLEngine for the server needs to be set up with setWantClientAuth(true) or setNeedClientAuth(true) or else every request will be failed.