Bypass key name check when validating SSL server cert.

author cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>

Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)

committer cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>

Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
author cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
committer cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
diff --git a/src/edu/internet2/middleware/shibboleth/serviceprovider/ShibHttpHook.java b/src/edu/internet2/middleware/shibboleth/serviceprovider/ShibHttpHook.java

index e53f3b3..c15ae4a 100644 (file)
--- a/src/edu/internet2/middleware/shibboleth/serviceprovider/ShibHttpHook.java
+++ b/src/edu/internet2/middleware/shibboleth/serviceprovider/ShibHttpHook.java
@@ -227,7 +227,7 @@ public class ShibHttpHook implements HTTPHook {
  
          public void checkServerTrusted(X509Certificate[] certs, String arg1) 
              throws CertificateException {
-            if (trust.validate(certs[0],certs,role)) {
+            if (trust.validate(certs[0],certs,role,false)) {
                  log.debug("ShibHttpHook accepted AA Server Certificate.");
                  return;
              }
author	cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
	Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
committer	cantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
	Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)