Package net.snowflake.client.core.crl
Class CRLValidator
- java.lang.Object
-
- net.snowflake.client.core.crl.CRLValidator
-
@SnowflakeJdbcInternalApi public class CRLValidator extends Object
-
-
Constructor Summary
Constructors Constructor Description CRLValidator(CertRevocationCheckMode revocationCheckMode, boolean allowCertificatesWithoutCrlUrl, org.apache.http.impl.client.CloseableHttpClient httpClient, CRLCacheManager cacheManager, Telemetry telemetryClient)
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description static voidregisterValidator(HttpClientSettingsKey key, CRLValidator validator)static voidsetTelemetryClientForKey(HttpClientSettingsKey key, Telemetry telemetryClient)Multiple sessions may share the same HttpClientSettingsKey thus CRL telemetry might be sent for wrong session.booleanvalidateCertificateChains(List<X509Certificate[]> certificateChains)Validates certificate chains against CRLs.
-
-
-
Constructor Detail
-
CRLValidator
public CRLValidator(CertRevocationCheckMode revocationCheckMode, boolean allowCertificatesWithoutCrlUrl, org.apache.http.impl.client.CloseableHttpClient httpClient, CRLCacheManager cacheManager, Telemetry telemetryClient)
-
-
Method Detail
-
validateCertificateChains
public boolean validateCertificateChains(List<X509Certificate[]> certificateChains)
Validates certificate chains against CRLs.- Parameters:
certificateChains- the verified certificate chains to validate- Returns:
- true if validation passes, false otherwise
-
setTelemetryClientForKey
public static void setTelemetryClientForKey(HttpClientSettingsKey key, Telemetry telemetryClient)
Multiple sessions may share the same HttpClientSettingsKey thus CRL telemetry might be sent for wrong session. We accept this limitation.
-
registerValidator
public static void registerValidator(HttpClientSettingsKey key, CRLValidator validator)
-
-