Struct rustls::AllowAnyAnonymousOrAuthenticatedClient [−][src]
pub struct AllowAnyAnonymousOrAuthenticatedClient { /* fields omitted */ }
Expand description
A ClientCertVerifier
that will allow both anonymous and authenticated
clients, without any name checking.
Client authentication will be requested during the TLS handshake. If the
client offers a certificate then this acts like
AllowAnyAuthenticatedClient
, otherwise this acts like NoClientAuth
.
Implementations
Construct a new AllowAnyAnonymousOrAuthenticatedClient
.
roots
is the list of trust anchors to use for certificate validation.
Trait Implementations
Returns true
to enable the server to request a client certificate and
false
to skip requesting a client certificate. Defaults to true
. Read more
Return Some(true)
to require a client certificate and Some(false)
to make
client authentication optional. Return None
to abort the connection.
Defaults to Some(self.offer_client_auth())
. Read more
Returns the subject names of the client authentication trust anchors to share with the client when requesting client authentication. Read more
fn verify_client_cert(
&self,
presented_certs: &[Certificate],
sni: Option<&DNSName>
) -> Result<ClientCertVerified, TLSError>
fn verify_client_cert(
&self,
presented_certs: &[Certificate],
sni: Option<&DNSName>
) -> Result<ClientCertVerified, TLSError>
Verify a certificate chain. presented_certs
is the certificate chain from the client. Read more
fn verify_tls12_signature(
&self,
message: &[u8],
cert: &Certificate,
dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>
fn verify_tls12_signature(
&self,
message: &[u8],
cert: &Certificate,
dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>
Verify a signature allegedly by the given server certificate. Read more
fn verify_tls13_signature(
&self,
message: &[u8],
cert: &Certificate,
dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>
fn verify_tls13_signature(
&self,
message: &[u8],
cert: &Certificate,
dss: &DigitallySignedStruct
) -> Result<HandshakeSignatureValid, TLSError>
Verify a signature allegedly by the given server certificate. Read more
Return the list of SignatureSchemes that this verifier will handle,
in verify_tls12_signature
and verify_tls13_signature
calls. Read more