ssl-config icon indicating copy to clipboard operation
ssl-config copied to clipboard
verified publisher icon lightbend

SSLLooseConfig.acceptAnyCertificate does not allow expired certs

Open LogicalTime opened this issue 7 years ago • 2 comments

When acceptAnyCertificate(true) I get a cert expired exception. Below is a list of the causes from the stack trace. SSLHandshakeException: General SSL Engine Problem Validator Exception: PKIX path validation failed CertPathValidator Exception: validity check failed CertificateExpiredException: NotAfter ....

This may be related to #69

LogicalTime avatar Jul 11 '18 15:07 LogicalTime

I don't think acceptAnyCertificate ever made any promises about accepting expired certificates -- only that it would accept certificates that would fail an identity check.

wsargent avatar Aug 23 '18 04:08 wsargent

It's a decision to be made. Let's make the decision and add it to the documentation.

LogicalTime avatar Aug 24 '18 19:08 LogicalTime