TrustAllTrustManager.java

/*                                                                             
 * Copyright 2004,2005 The Apache Software Foundation.                         
 *                                                                             
 * Licensed under the Apache License, Version 2.0 (the "License");             
 * you may not use this file except in compliance with the License.            
 * You may obtain a copy of the License at                                     
 *                                                                             
 *      http://www.apache.org/licenses/LICENSE-2.0                             
 *                                                                             
 * Unless required by applicable law or agreed to in writing, software         
 * distributed under the License is distributed on an "AS IS" BASIS,           
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.    
 * See the License for the specific language governing permissions and         
 * limitations under the License.                                              
 */
package org.apache.axis2.java.security;

import javax.net.ssl.X509TrustManager;

/**
 * Normally when we connect over HTTPS, if the server sends us a certificate that is not well
 * known,  we have to specify a keystore using system properties:
 * <p/>
 * System.setProperty("javax.net.ssl.trustStore","path to keystore" );
 * System.setProperty("javax.net.ssl.trustStorePassword","apache");
 * <p/>
 * Using this X509TrustManager we can allow the client to disregard the certificate and trust the
 * server. One of the reason this may be done is because clients are sometimes deployed on systems
 * where the developers haveno access to the file system and therefore cannot configure the
 * keystores.
 * <p/>
 * This TrustManager can be used in the client stub as follows:
 * <p/>
 * <pre>
 * <code>
 * SSLContext sslCtx = SSLContext.getInstance("http");
 * sslCtx.init(null, new TrustManager[] {new TrustAllTrustManager()}, null);
 * stub._getServiceClient().getOptions().setProperty(HTTPConstants.CUSTOM_PROTOCOL_HANDLER,
 *          new Protocol("https",(ProtocolSocketFactory)new SSLProtocolSocketFactory(sslCtx),443));
 * </code>
 * </pre>
 * @see SSLProtocolSocketFactory
 */
public class TrustAllTrustManager implements X509TrustManager {
    public java.security.cert.X509Certificate[] getAcceptedIssuers() {
        return null;
    }

    public void checkClientTrusted(java.security.cert.X509Certificate[] certs, String authType) {
    }

    public void checkServerTrusted(java.security.cert.X509Certificate[] certs, String authType) {
    }
}