Struct rustls::NoClientAuth

pub struct NoClientAuth;

Turns off client authentication.

Implementations

impl NoClientAuth

pub fn new() -> Arc<dyn ClientCertVerifier>

Constructs a NoClientAuth and wraps it in an Arc.

Trait Implementations

impl ClientCertVerifier for NoClientAuth

fn offer_client_auth(&self) -> bool

Returns true to enable the server to request a client certificate and false to skip requesting a client certificate. Defaults to true.

fn client_auth_root_subjects(
    &self,
    _sni: Option<&DNSName>
) -> Option<DistinguishedNames>

Returns the subject names of the client authentication trust anchors to share with the client when requesting client authentication.

fn verify_client_cert(
    &self,
    _presented_certs: &[Certificate],
    _sni: Option<&DNSName>
) -> Result<ClientCertVerified, TLSError>

Verify a certificate chain. presented_certs is the certificate chain from the client.

fn client_auth_mandatory(&self, _sni: Option<&DNSName>) -> Option<bool>

Return Some(true) to require a client certificate and Some(false) to make client authentication optional. Return None to abort the connection. Defaults to Some(self.offer_client_auth()).

fn verify_tls12_signature(
    &self,
    message: &[u8],
    cert: &Certificate,
    dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>

Verify a signature allegedly by the given server certificate.

fn verify_tls13_signature(
    &self,
    message: &[u8],
    cert: &Certificate,
    dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>

Verify a signature allegedly by the given server certificate.

fn supported_verify_schemes(&self) -> Vec<SignatureScheme>

Return the list of SignatureSchemes that this verifier will handle, in verify_tls12_signature and verify_tls13_signature calls.