Module java.base
Package javax.net.ssl

Class HandshakeCompletedEvent

java.lang.Object
java.util.EventObject
javax.net.ssl.HandshakeCompletedEvent
All Implemented Interfaces:
Serializable

public class HandshakeCompletedEvent
extends EventObject
This event indicates that an SSL handshake completed on a given SSL connection. All of the core information about that handshake's result is captured through an "SSLSession" object. As a convenience, this event class provides direct access to some important session attributes.

The source of this event is the SSLSocket on which handshaking just completed.

Since:
1.4
See Also:
SSLSocket, HandshakeCompletedListener, SSLSession, Serialized Form
  • Constructor Details

    • HandshakeCompletedEvent

      public HandshakeCompletedEvent​(SSLSocket sock, SSLSession s)
      Constructs a new HandshakeCompletedEvent.
      Parameters:
      sock - the SSLSocket acting as the source of the event
      s - the SSLSession this event is associated with
  • Method Details

    • getSession

      public SSLSession getSession()
      Returns the session that triggered this event.
      Returns:
      the SSLSession for this handshake
    • getCipherSuite

      public String getCipherSuite()
      Returns the cipher suite in use by the session which was produced by the handshake. (This is a convenience method for getting the ciphersuite from the SSLsession.)
      Returns:
      the name of the cipher suite negotiated during this session.
    • getLocalCertificates

      public Certificate[] getLocalCertificates()
      Returns the certificate(s) that were sent to the peer during handshaking. Note: This method is useful only when using certificate-based cipher suites. When multiple certificates are available for use in a handshake, the implementation chooses what it considers the "best" certificate chain available, and transmits that to the other side. This method allows the caller to know which certificate chain was actually used.
      Returns:
      an ordered array of certificates, with the local certificate first followed by any certificate authorities. If no certificates were sent, then null is returned.
      See Also:
      getLocalPrincipal()
    • getPeerCertificates

      public Certificate[] getPeerCertificates() throws SSLPeerUnverifiedException
      Returns the identity of the peer which was established as part of defining the session. Note: This method can be used only when using certificate-based cipher suites; using it with non-certificate-based cipher suites, such as Kerberos, will throw an SSLPeerUnverifiedException.

      Note: The returned value may not be a valid certificate chain and should not be relied on for trust decisions.

      Returns:
      an ordered array of the peer certificates, with the peer's own certificate first followed by any certificate authorities.
      Throws:
      SSLPeerUnverifiedException - if the peer is not verified.
      See Also:
      getPeerPrincipal()
    • getPeerCertificateChain

      @Deprecated(since="9", forRemoval=true) public X509Certificate[] getPeerCertificateChain() throws SSLPeerUnverifiedException
      Deprecated, for removal: This API element is subject to removal in a future version.
      The getPeerCertificates() method that returns an array of java.security.cert.Certificate should be used instead.
      Returns the identity of the peer which was identified as part of defining the session. Note: This method can be used only when using certificate-based cipher suites; using it with non-certificate-based cipher suites, such as Kerberos, will throw an SSLPeerUnverifiedException.

      Note: The returned value may not be a valid certificate chain and should not be relied on for trust decisions.

      Note: this method exists for compatibility with previous releases. New applications should use getPeerCertificates() instead.

      Returns:
      an ordered array of peer X.509 certificates, with the peer's own certificate first followed by any certificate authorities. (The certificates are in the original JSSE X509Certificate format).
      Throws:
      SSLPeerUnverifiedException - if the peer is not verified.
      UnsupportedOperationException - if the underlying provider does not implement the SSLSession.getPeerCertificateChain() operation.
      See Also:
      getPeerPrincipal()
    • getPeerPrincipal

      public Principal getPeerPrincipal() throws SSLPeerUnverifiedException
      Returns the identity of the peer which was established as part of defining the session.
      Returns:
      the peer's principal. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites.
      Throws:
      SSLPeerUnverifiedException - if the peer's identity has not been verified
      Since:
      1.5
      See Also:
      getPeerCertificates(), getLocalPrincipal()
    • getLocalPrincipal

      public Principal getLocalPrincipal()
      Returns the principal that was sent to the peer during handshaking.
      Returns:
      the principal sent to the peer. Returns an X500Principal of the end-entity certificate for X509-based cipher suites, and KerberosPrincipal for Kerberos cipher suites. If no principal was sent, then null is returned.
      Since:
      1.5
      See Also:
      getLocalCertificates(), getPeerPrincipal()
    • getSocket

      public SSLSocket getSocket()
      Returns the socket which is the source of this event. (This is a convenience function, to let applications write code without type casts.)
      Returns:
      the socket on which the connection was made.