diff options
author | Jesse McConnell | 2012-03-08 19:56:00 +0000 |
---|---|---|
committer | Jesse McConnell | 2012-03-08 19:56:00 +0000 |
commit | 6c81941142b9efe2b5b80198268ae75687dc6374 (patch) | |
tree | 4ada91deda609bab1e62e2f950457dff0d14d69b | |
parent | 8db57b56ba47b65de5363efaa9eafea068a12f37 (diff) | |
download | org.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.tar.gz org.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.tar.xz org.eclipse.jetty.project-6c81941142b9efe2b5b80198268ae75687dc6374.zip |
[Bug 373567] cert validation issue with ocsp and crldp always being enabled when validating turned on fixed
-rw-r--r-- | jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java | 11 |
1 files changed, 8 insertions, 3 deletions
diff --git a/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java b/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java index fb2d284388..8e5024ac98 100644 --- a/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java +++ b/jetty-util/src/main/java/org/eclipse/jetty/util/security/CertificateValidator.java @@ -232,10 +232,15 @@ public class CertificateValidator } // Enable On-Line Certificate Status Protocol (OCSP) support - Security.setProperty("ocsp.enable","true"); - + if (_enableOCSP) + { + Security.setProperty("ocsp.enable","true"); + } // Enable Certificate Revocation List Distribution Points (CRLDP) support - System.setProperty("com.sun.security.enableCRLDP","true"); + if (_enableCRLDP) + { + System.setProperty("com.sun.security.enableCRLDP","true"); + } // Build certification path CertPathBuilderResult buildResult = CertPathBuilder.getInstance("PKIX").build(pbParams); |