directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Raphaël Ouazana (JIRA) <>
Subject [jira] [Reopened] (DIRAPI-91) Use SUN default TrustManager
Date Fri, 05 Oct 2012 08:18:47 GMT


Raphaël Ouazana reopened DIRAPI-91:

I don't think the provided reason is good. It is possible to use self signed certificate with
SUN default TrustManager as soon as you configure it. The goal of this ticket is precisely
to allow to configure it.
> Use SUN default TrustManager
> ----------------------------
>                 Key: DIRAPI-91
>                 URL:
>             Project: Directory Client API
>          Issue Type: Improvement
>    Affects Versions: 1.0.0-M11, 1.0.0-M12
>            Reporter: Raphaël Ouazana
> I want to connect to an OpenLDAP directory with LDAPS.
> With JNDI, I just need to modify the common keystore, or to add a specific one with
> With DIRAPI, I need to provide a TrustManager (which I eventually can initialize with
SUN one).
> I suggest to initialize the default TrustManager to SUN one. This can be done in LdapConnectionConfig
by replacing:
>             TrustManagerFactory tmFactory = TrustManagerFactory.getInstance( trustMgmtAlgo
>             tmFactory.init( KeyStore.getInstance( KeyStore.getDefaultType() ) );
> with:
>             TrustManagerFactory tmFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
>             tmFactory.init((KeyStore)null);

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message