OpenJDK 1.23 · javax.net.ssl.HttpsURLConnection · APIdia, the JavaDoc alternative

Modifier and Type	Class and Description
private static class	HttpsURLConnection.DefaultHostnameVerifier

Modifier and Type	Field and Description
private static HostnameVerifier	defaultHostnameVerifier `HostnameVerifier` provides a callback mechanism so that implementers of this interface can supply a policy for handling the case where the host to connect to and the server name from the certificate mismatch.
private static SSLSocketFactory	defaultSSLSocketFactory
protected HostnameVerifier	hostnameVerifier The `hostnameVerifier` for this object.
private SSLSocketFactory	sslSocketFactory The `SSLSocketFactory` inherited when an instance of this class is created.

Access	Constructor and Description
protected	HttpsURLConnection(URL the URL url) Creates an `HttpsURLConnection` using the URL specified.

Method Summary

Modifier and Type	Method and Description
public abstract String	Returns: the cipher suite getCipherSuite() Returns the cipher suite in use on this connection.
public static HostnameVerifier	Returns: the default host name verifier getDefaultHostnameVerifier() Gets the default `HostnameVerifier` that is inherited by new instances of this class.
public static SSLSocketFactory	Returns: the default `SSLSocketFactory` getDefaultSSLSocketFactory() Gets the default static `SSLSocketFactory` that is inherited by new instances of this class.
public HostnameVerifier	Returns: the host name verifier getHostnameVerifier() Gets the `HostnameVerifier` in place on this instance.
public abstract Certificate[]	Returns: an ordered array of certificates, with the client's own certificate first followed by any certificate authorities. If no certificates were sent, then null is returned. getLocalCertificates() Returns the certificate(s) that were sent to the server during handshaking.
public Principal	Returns: the principal sent to the server. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. If no principal was sent, then null is returned. getLocalPrincipal() Returns the principal that was sent to the server during handshaking.
public Principal	Returns: the server's principal. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. getPeerPrincipal() Returns the server's principal which was established as part of defining the session.
public abstract Certificate[]	Returns: an ordered array of server certificates, with the peer's own certificate first followed by any certificate authorities. getServerCertificates() Returns the server's certificate chain which was established as part of defining the session.
public Optional<SSLSession>	Returns: an `Optional` containing the `SSLSession` in use on this connection. getSSLSession() Returns an `Optional` containing the `SSLSession` in use on this connection.
public SSLSocketFactory	Returns: the `SSLSocketFactory` getSSLSocketFactory() Gets the SSL socket factory to be used when creating sockets for secure https URL connections.
public static void	setDefaultHostnameVerifier(HostnameVerifier the default host name verifier v) Sets the default `HostnameVerifier` inherited by a new instance of this class.
public static void	setDefaultSSLSocketFactory(SSLSocketFactory the default SSL socket factory sf) Sets the default `SSLSocketFactory` inherited by new instances of this class.
public void	setHostnameVerifier(HostnameVerifier the host name verifier v) Sets the `HostnameVerifier` for this instance.
public void	setSSLSocketFactory(SSLSocketFactory the SSL socket factory sf) Sets the `SSLSocketFactory` to be used when this instance creates sockets for secure https URL connections.

defaultHostnameVerifier	back to summary
private static HostnameVerifier defaultHostnameVerifier `HostnameVerifier` provides a callback mechanism so that implementers of this interface can supply a policy for handling the case where the host to connect to and the server name from the certificate mismatch. The default implementation will deny such connections.

defaultSSLSocketFactory	back to summary
private static SSLSocketFactory defaultSSLSocketFactory

hostnameVerifier	back to summary
protected HostnameVerifier hostnameVerifier The `hostnameVerifier` for this object.

sslSocketFactory	back to summary
private SSLSocketFactory sslSocketFactory The `SSLSocketFactory` inherited when an instance of this class is created.

HttpsURLConnection	back to summary
protected HttpsURLConnection(URL url) Creates an `HttpsURLConnection` using the URL specified. Parameters url:URL the URL

Method Detail

getCipherSuite	back to summary
public abstract String getCipherSuite() Returns the cipher suite in use on this connection. Returns:String the cipher suite Exceptions IllegalStateException: if this method is called before the connection has been established.

getCipherSuite

back to summary

public abstract String getCipherSuite()

Returns the cipher suite in use on this connection.

Returns:String

the cipher suite

Exceptions

IllegalStateException:: if this method is called before the connection has been established.

getDefaultHostnameVerifier back to summary

getDefaultHostnameVerifier	back to summary
public static HostnameVerifier getDefaultHostnameVerifier() Gets the default `HostnameVerifier` that is inherited by new instances of this class. Returns:HostnameVerifier the default host name verifier See Also `setDefaultHostnameVerifier(HostnameVerifier)`

public static HostnameVerifier getDefaultHostnameVerifier()

Gets the default HostnameVerifier that is inherited by new instances of this class.

Returns:HostnameVerifier: the default host name verifier
See Also: setDefaultHostnameVerifier(HostnameVerifier)

getDefaultSSLSocketFactory back to summary

getDefaultSSLSocketFactory	back to summary
public static SSLSocketFactory getDefaultSSLSocketFactory() Gets the default static `SSLSocketFactory` that is inherited by new instances of this class. The socket factories are used when creating sockets for secure https URL connections. Returns:SSLSocketFactory the default `SSLSocketFactory` See Also `setDefaultSSLSocketFactory(SSLSocketFactory)`

public static SSLSocketFactory getDefaultSSLSocketFactory()

Gets the default static SSLSocketFactory that is inherited by new instances of this class.

The socket factories are used when creating sockets for secure https URL connections.

Returns:SSLSocketFactory: the default SSLSocketFactory
See Also: setDefaultSSLSocketFactory(SSLSocketFactory)

getHostnameVerifier back to summary

getHostnameVerifier	back to summary
public HostnameVerifier getHostnameVerifier() Gets the `HostnameVerifier` in place on this instance. Returns:HostnameVerifier the host name verifier See Also `setHostnameVerifier(HostnameVerifier)`, `setDefaultHostnameVerifier(HostnameVerifier)`

public HostnameVerifier getHostnameVerifier()

Gets the HostnameVerifier in place on this instance.

Returns:HostnameVerifier: the host name verifier
See Also: setHostnameVerifier(HostnameVerifier), setDefaultHostnameVerifier(HostnameVerifier)

getLocalCertificates back to summary

getLocalCertificates	back to summary
public abstract Certificate[] getLocalCertificates() Returns the certificate(s) that were sent to the server during handshaking. Note This method is useful only when using certificate-based cipher suites. When multiple certificates are available for use in a handshake, the implementation chooses what it considers the "best" certificate chain available, and transmits that to the other side. This method allows the caller to know which certificate chain was actually sent. Returns:Certificate[] an ordered array of certificates, with the client's own certificate first followed by any certificate authorities. If no certificates were sent, then null is returned. Exceptions IllegalStateException: if this method is called before the connection has been established. See Also `getLocalPrincipal()`

public abstract Certificate[] getLocalCertificates()

Returns the certificate(s) that were sent to the server during handshaking.

Note

This method is useful only when using certificate-based cipher suites.

When multiple certificates are available for use in a handshake, the implementation chooses what it considers the "best" certificate chain available, and transmits that to the other side. This method allows the caller to know which certificate chain was actually sent.

Returns:Certificate[]

an ordered array of certificates, with the client's own certificate first followed by any certificate authorities. If no certificates were sent, then null is returned.

Exceptions

IllegalStateException:: if this method is called before the connection has been established.

See Also

getLocalPrincipal()

getLocalPrincipal back to summary

getLocalPrincipal	back to summary
public Principal getLocalPrincipal() Returns the principal that was sent to the server during handshaking. Note Subclasses should override this method. If not overridden, it will default to returning the X500Principal of the end-entity certificate that was sent to the server for certificate-based ciphersuites or, return null for non-certificate based ciphersuites, such as Kerberos. Returns:Principal the principal sent to the server. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. If no principal was sent, then null is returned. Exceptions IllegalStateException: if this method is called before the connection has been established. Since 1.5 See Also `getLocalCertificates()`, `getPeerPrincipal()`

public Principal getLocalPrincipal()

Returns the principal that was sent to the server during handshaking.

Note

Subclasses should override this method. If not overridden, it will default to returning the X500Principal of the end-entity certificate that was sent to the server for certificate-based ciphersuites or, return null for non-certificate based ciphersuites, such as Kerberos.

Returns:Principal

the principal sent to the server. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. If no principal was sent, then null is returned.

Exceptions

IllegalStateException:: if this method is called before the connection has been established.

Since

1.5

getPeerPrincipal back to summary

getPeerPrincipal	back to summary
public Principal getPeerPrincipal() throws SSLPeerUnverifiedException Returns the server's principal which was established as part of defining the session. Note Subclasses should override this method. If not overridden, it will default to returning the X500Principal of the server's end-entity certificate for certificate-based ciphersuites, or throw an SSLPeerUnverifiedException for non-certificate based ciphersuites, such as Kerberos. Returns:Principal the server's principal. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. Exceptions SSLPeerUnverifiedException: if the peer was not verified IllegalStateException: if this method is called before the connection has been established. Since 1.5 See Also `getServerCertificates()`, `getLocalPrincipal()`

public Principal getPeerPrincipal() throws SSLPeerUnverifiedException

Returns the server's principal which was established as part of defining the session.

Note

Subclasses should override this method. If not overridden, it will default to returning the X500Principal of the server's end-entity certificate for certificate-based ciphersuites, or throw an SSLPeerUnverifiedException for non-certificate based ciphersuites, such as Kerberos.

Returns:Principal

the server's principal. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites.

Exceptions

SSLPeerUnverifiedException:: if the peer was not verified
IllegalStateException:: if this method is called before the connection has been established.

Since

1.5

getServerCertificates back to summary

getServerCertificates	back to summary
public abstract Certificate[] getServerCertificates() throws SSLPeerUnverifiedException Returns the server's certificate chain which was established as part of defining the session. Note This method can be used only when using certificate-based cipher suites; using it with non-certificate-based cipher suites, such as Kerberos, will throw an SSLPeerUnverifiedException. Note The returned value may not be a valid certificate chain and should not be relied on for trust decisions. Returns:Certificate[] an ordered array of server certificates, with the peer's own certificate first followed by any certificate authorities. Exceptions SSLPeerUnverifiedException: if the peer is not verified. IllegalStateException: if this method is called before the connection has been established. See Also `getPeerPrincipal()`

public abstract Certificate[] getServerCertificates() throws SSLPeerUnverifiedException

Returns the server's certificate chain which was established as part of defining the session.

Note

This method can be used only when using certificate-based cipher suites; using it with non-certificate-based cipher suites, such as Kerberos, will throw an SSLPeerUnverifiedException.

Note

The returned value may not be a valid certificate chain and should not be relied on for trust decisions.

Returns:Certificate[]

an ordered array of server certificates, with the peer's own certificate first followed by any certificate authorities.

Exceptions

SSLPeerUnverifiedException:: if the peer is not verified.
IllegalStateException:: if this method is called before the connection has been established.

See Also

getPeerPrincipal()

getSSLSession back to summary

getSSLSession	back to summary
public Optional<SSLSession> getSSLSession() Returns an `Optional` containing the `SSLSession` in use on this connection. Returns an empty `Optional` if the underlying implementation does not support this method. Implementation Specification For compatibility, the default implementation of this method returns an empty `Optional`. Subclasses should override this method with an appropriate implementation since an application may need to access additional parameters associated with the SSL session. Returns:Optional<SSLSession> an `Optional` containing the `SSLSession` in use on this connection. Exceptions IllegalStateException: if this method is called before the connection has been established Since 12 See Also `SSLSession`

public Optional<SSLSession> getSSLSession()

Returns an Optional containing the SSLSession in use on this connection. Returns an empty Optional if the underlying implementation does not support this method.

Implementation Specification

For compatibility, the default implementation of this method returns an empty Optional. Subclasses should override this method with an appropriate implementation since an application may need to access additional parameters associated with the SSL session.

Returns:Optional<SSLSession>

an Optional containing the SSLSession in use on this connection.

Exceptions

IllegalStateException:: if this method is called before the connection has been established

Since

See Also

SSLSession

getSSLSocketFactory back to summary

getSSLSocketFactory	back to summary
public SSLSocketFactory getSSLSocketFactory() Gets the SSL socket factory to be used when creating sockets for secure https URL connections. Returns:SSLSocketFactory the `SSLSocketFactory` See Also `setSSLSocketFactory(SSLSocketFactory)`

public SSLSocketFactory getSSLSocketFactory()

Gets the SSL socket factory to be used when creating sockets for secure https URL connections.

Returns:SSLSocketFactory: the SSLSocketFactory
See Also: setSSLSocketFactory(SSLSocketFactory)

setDefaultHostnameVerifier back to summary

setDefaultHostnameVerifier	back to summary
public static void setDefaultHostnameVerifier(HostnameVerifier v) Sets the default `HostnameVerifier` inherited by a new instance of this class. If this method is not called, the default `HostnameVerifier` assumes the connection should not be permitted. Parameters v:HostnameVerifier the default host name verifier Exceptions IllegalArgumentException: if the `HostnameVerifier` parameter is null. SecurityException: if a security manager exists and its `checkPermission` method does not allow `SSLPermission("setHostnameVerifier")` See Also `getDefaultHostnameVerifier()`

public static void setDefaultHostnameVerifier(HostnameVerifier v)

Sets the default HostnameVerifier inherited by a new instance of this class.

If this method is not called, the default HostnameVerifier assumes the connection should not be permitted.

Parameters

v:HostnameVerifier: the default host name verifier

Exceptions

IllegalArgumentException:: if the HostnameVerifier parameter is null.
SecurityException:: if a security manager exists and its checkPermission method does not allow SSLPermission("setHostnameVerifier")

See Also

getDefaultHostnameVerifier()

setDefaultSSLSocketFactory back to summary

setDefaultSSLSocketFactory	back to summary
public static void setDefaultSSLSocketFactory(SSLSocketFactory sf) Sets the default `SSLSocketFactory` inherited by new instances of this class. The socket factories are used when creating sockets for secure https URL connections. Parameters sf:SSLSocketFactory the default SSL socket factory Exceptions IllegalArgumentException: if the SSLSocketFactory parameter is null. SecurityException: if a security manager exists and its `checkSetFactory` method does not allow a socket factory to be specified. See Also `getDefaultSSLSocketFactory()`

public static void setDefaultSSLSocketFactory(SSLSocketFactory sf)

Sets the default SSLSocketFactory inherited by new instances of this class.

The socket factories are used when creating sockets for secure https URL connections.

Parameters

sf:SSLSocketFactory: the default SSL socket factory

Exceptions

IllegalArgumentException:: if the SSLSocketFactory parameter is null.
SecurityException:: if a security manager exists and its checkSetFactory method does not allow a socket factory to be specified.

See Also

getDefaultSSLSocketFactory()

setHostnameVerifier back to summary

setHostnameVerifier	back to summary
public void setHostnameVerifier(HostnameVerifier v) Sets the `HostnameVerifier` for this instance. New instances of this class inherit the default static hostname verifier set by `setDefaultHostnameVerifier`. Calls to this method replace this object's `HostnameVerifier`. Parameters v:HostnameVerifier the host name verifier Exceptions IllegalArgumentException: if the `HostnameVerifier` parameter is null. See Also `getHostnameVerifier()`, `setDefaultHostnameVerifier(HostnameVerifier)`

public void setHostnameVerifier(HostnameVerifier v)

Sets the HostnameVerifier for this instance.

New instances of this class inherit the default static hostname verifier set by setDefaultHostnameVerifier. Calls to this method replace this object's HostnameVerifier.

Parameters

v:HostnameVerifier: the host name verifier

Exceptions

IllegalArgumentException:: if the HostnameVerifier parameter is null.

setSSLSocketFactory back to summary

setSSLSocketFactory	back to summary
public void setSSLSocketFactory(SSLSocketFactory sf) Sets the `SSLSocketFactory` to be used when this instance creates sockets for secure https URL connections. New instances of this class inherit the default static `SSLSocketFactory` set by `setDefaultSSLSocketFactory`. Calls to this method replace this object's `SSLSocketFactory`. Parameters sf:SSLSocketFactory the SSL socket factory Exceptions IllegalArgumentException: if the `SSLSocketFactory` parameter is null. SecurityException: if a security manager exists and its `checkSetFactory` method does not allow a socket factory to be specified. See Also `getSSLSocketFactory()`

public void setSSLSocketFactory(SSLSocketFactory sf)

Sets the SSLSocketFactory to be used when this instance creates sockets for secure https URL connections.

New instances of this class inherit the default static SSLSocketFactory set by setDefaultSSLSocketFactory. Calls to this method replace this object's SSLSocketFactory.

Parameters

sf:SSLSocketFactory: the SSL socket factory

Exceptions

IllegalArgumentException:: if the SSLSocketFactory parameter is null.
SecurityException:: if a security manager exists and its checkSetFactory method does not allow a socket factory to be specified.

See Also

getSSLSocketFactory()

public abstract Class HttpsURLConnection

Nested and Inner Type Summary

Field Summary

Constructor Summary

Method Summary

Field Detail

Constructor Detail

Method Detail

private Class HttpsURLConnection.DefaultHostnameVerifier

Constructor Summary

Method Summary

Constructor Detail

Method Detail