net.trajano.commons.testing

Class DisableSslCertificateCheckUtil

java.lang.Object

net.trajano.commons.testing.DisableSslCertificateCheckUtil

public final class DisableSslCertificateCheckUtil
extends Object

Disables SSL certificate checks. Primarily used for doing integration testing against self-signed servers.

Field Summary

Fields

Modifier and Type	Field and Description
private static boolean	disabled Flag to indicate that certificate checks are disabled.
private static Logger	LOG Logger.
static HostnameVerifier	NULL_HOSTNAME_VERIFIER Null host name verifier.
static X509TrustManager	NULL_TRUST_MANAGER Null trust manager.
private static HostnameVerifier	originalHostnameVerifier Original hostname verifier, set by {disableChecks().
private static SSLSocketFactory	originalSslSocketFactory Original SSL Socket factory, set by {disableChecks().

Constructor Summary

Constructors

Modifier	Constructor and Description
private	DisableSslCertificateCheckUtil() Prevent instantiation of utility class.

Method Summary

Methods

Modifier and Type	Method and Description
static SSLContext	buildUnsecureSslContext() Constructs an unsecure SSL context.
static void	disableChecks() Disable trust checks for SSL connections.
static void	reenableChecks() This will re-enable the SSL checks after it was disabled by disableChecks().

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

disabled

private static boolean disabled

Flag to indicate that certificate checks are disabled. If this is true, then the process to disable the checks are not executed again.

LOG

private static final Logger LOG

Logger.

NULL_HOSTNAME_VERIFIER

public static final HostnameVerifier NULL_HOSTNAME_VERIFIER

Null host name verifier. Made it a constant to prevent new instantiations. Made public so the instance can be retrieved directly.

NULL_TRUST_MANAGER

public static final X509TrustManager NULL_TRUST_MANAGER

Null trust manager. Made it a constant to prevent new instantiations. Made public so the instance can be retrieved directly.

originalHostnameVerifier

private static HostnameVerifier originalHostnameVerifier

Original hostname verifier, set by {disableChecks().

originalSslSocketFactory

private static SSLSocketFactory originalSslSocketFactory

Original SSL Socket factory, set by {disableChecks().

Constructor Detail

DisableSslCertificateCheckUtil

private DisableSslCertificateCheckUtil()

Prevent instantiation of utility class.

Method Detail

buildUnsecureSslContext

public static SSLContext buildUnsecureSslContext()
                                          throws GeneralSecurityException

Constructs an unsecure SSL context. This SSL context is configured with a NULL_TRUST_MANAGER. There is no guarantee that the SSLContext is thread-safe so new ones have to get created in order to be safe.

The TLSv1 is guaranteed to be present according to the SSLContext javadoc. The SSLContext.getInstance(String) method is used rather than SSLContext.getDefault() as the default context would have already been initialized therefore it would not allow us to execute SSLContext.init(javax.net.ssl.KeyManager[], TrustManager[], java.security.SecureRandom) .

Returns:

an unsecure SSL context.

Throws:

GeneralSecurityException

disableChecks

public static void disableChecks()
                          throws GeneralSecurityException

Disable trust checks for SSL connections. Saves the present ones if it is not the disabled ones.

Throws:

GeneralSecurityException - thrown when there is a problem disabling the SSL. Shouldn't happen unless there is something wrong with the Java implementation.

reenableChecks

public static void reenableChecks()

This will re-enable the SSL checks after it was disabled by disableChecks().