Package akka.remote.artery.tcp.ssl
Class PeerSubjectVerifier
- java.lang.Object
-
- akka.remote.artery.tcp.ssl.PeerSubjectVerifier
-
- All Implemented Interfaces:
SessionVerifier
public final class PeerSubjectVerifier extends java.lang.Object implements SessionVerifier
This is a TLS session verifier that checks the peer has a subject name that matches the subject name of the given certificate. This can be useful to prevent accidentally connecting with other nodes that have certificates that, while being signed by the same certificate authority, belong to different clusters.INTERNAL API
-
-
Constructor Summary
Constructors Constructor Description PeerSubjectVerifier(java.security.cert.X509Certificate peerCertificate)
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description scala.Option<java.lang.Throwable>
verifyClientSession(java.lang.String hostname, javax.net.ssl.SSLSession session)
scala.Option<java.lang.Throwable>
verifyServerSession(java.lang.String hostname, javax.net.ssl.SSLSession session)
-
-
-
Method Detail
-
verifyClientSession
public scala.Option<java.lang.Throwable> verifyClientSession(java.lang.String hostname, javax.net.ssl.SSLSession session)
- Specified by:
verifyClientSession
in interfaceSessionVerifier
-
verifyServerSession
public scala.Option<java.lang.Throwable> verifyServerSession(java.lang.String hostname, javax.net.ssl.SSLSession session)
- Specified by:
verifyServerSession
in interfaceSessionVerifier
-
-