Uploaded image for project: 'Directory Client API'
  1. Directory Client API
  2. DIRAPI-91

Use SUN default TrustManager

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 1.0.0-M11, 1.0.0-M12
    • 1.0.0-M13
    • None

    Description

      I want to connect to an OpenLDAP directory with LDAPS.
      With JNDI, I just need to modify the common keystore, or to add a specific one with javax.net.ssl.trustStore.
      With DIRAPI, I need to provide a TrustManager (which I eventually can initialize with SUN one).

      I suggest to initialize the default TrustManager to SUN one. This can be done in LdapConnectionConfig by replacing:
      TrustManagerFactory tmFactory = TrustManagerFactory.getInstance( trustMgmtAlgo );
      tmFactory.init( KeyStore.getInstance( KeyStore.getDefaultType() ) );
      with:
      TrustManagerFactory tmFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
      tmFactory.init((KeyStore)null);

      Attachments

        Activity

          People

            elecharny Emmanuel L├ęcharny
            rouazana Raphael Ouazana
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: