[][src]Trait rustls::ClientCertVerifier

pub trait ClientCertVerifier: Send + Sync {
    fn client_auth_root_subjects(&self) -> DistinguishedNames;
fn verify_client_cert(
        &self,
        presented_certs: &[Certificate]
    ) -> Result<ClientCertVerified, TLSError>; fn offer_client_auth(&self) -> bool { ... }
fn client_auth_mandatory(&self) -> bool { ... } }

Something that can verify a client certificate chain

Required methods

fn client_auth_root_subjects(&self) -> DistinguishedNames

Returns the subject names of the client authentication trust anchors to share with the client when requesting client authentication.

fn verify_client_cert(
    &self,
    presented_certs: &[Certificate]
) -> Result<ClientCertVerified, TLSError>

Verify a certificate chain presented_certs is rooted in roots. Does no further checking of the certificate.

Loading content...

Provided methods

fn offer_client_auth(&self) -> bool

Returns true to enable the server to request a client certificate and false to skip requesting a client certificate. Defaults to true.

fn client_auth_mandatory(&self) -> bool

Returns true to require a client certificate and false to make client authentication optional. Defaults to self.offer_client_auth().

Loading content...

Implementors

impl ClientCertVerifier for AllowAnyAnonymousOrAuthenticatedClient[src]

impl ClientCertVerifier for AllowAnyAuthenticatedClient[src]

impl ClientCertVerifier for NoClientAuth[src]

Loading content...