Bypass key name check when validating SSL server cert.
authorcantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
committercantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Mon, 17 Oct 2005 22:03:36 +0000 (22:03 +0000)
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@1882 ab3bd59b-922f-494d-bb5f-6f0a3c29deca

src/edu/internet2/middleware/shibboleth/serviceprovider/ShibHttpHook.java

index e53f3b3..c15ae4a 100644 (file)
@@ -227,7 +227,7 @@ public class ShibHttpHook implements HTTPHook {
 
         public void checkServerTrusted(X509Certificate[] certs, String arg1) 
             throws CertificateException {
-            if (trust.validate(certs[0],certs,role)) {
+            if (trust.validate(certs[0],certs,role,false)) {
                 log.debug("ShibHttpHook accepted AA Server Certificate.");
                 return;
             }