Certificates - Code Search

docs/fr/docs/deployment/https.md

Maintenant, du point de vue d'un développeur, voici plusieurs choses à avoir en tête en pensant au HTTPS :

* Pour le HTTPS, le serveur a besoin de "certificats" générés par une tierce partie.
    * Ces certificats sont en fait acquis auprès de la tierce partie, et non "générés".
* Les certificats ont une durée de vie.
    * Ils expirent.
    * Puis ils doivent être renouvelés et acquis à nouveau auprès de la tierce partie.

Created: Sun Dec 28 07:19:09 GMT 2025

- Last Modified: Tue Aug 06 04:48:30 GMT 2024

- 4.1K bytes

- Click Count (0)

github.com/minio/minio

internal/config/errors.go

	)

	ErrTLSReadError = newErrFn(
		"Cannot read the TLS certificate",
		"Please check if the certificate has the proper owner and read permissions",
		"",
	)

	ErrTLSUnexpectedData = newErrFn(
		"Invalid TLS certificate",
		"Please check your certificate",
		"",
	)

	ErrTLSNoPassword = newErrFn(
		"Missing TLS password",

Created: Sun Dec 28 19:28:13 GMT 2025

- Last Modified: Tue Aug 12 18:20:36 GMT 2025

- 9.4K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/CertificatePinnerKotlinTest.kt

    assertTrue(pin.matchesCertificate(certA1.certificate))
    assertFalse(pin.matchesCertificate(certB1.certificate))
  }

  @Test fun testMatchesSha1() {
    val pin = Pin("example.com", certC1Sha1Pin)
    assertTrue(pin.matchesCertificate(certC1.certificate))
    assertFalse(pin.matchesCertificate(certB1.certificate))
  }

  @Test fun pinList() {
    val builder =

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Wed Mar 19 19:25:20 GMT 2025

- 8.2K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/KotlinDeprecationErrorTest.kt

    builder = builder.heldCertificate(heldCertificate, heldCertificate.certificate())
    builder = builder.addTrustedCertificate(heldCertificate.certificate())
  }

  @Test @Disabled
  fun heldCertificate() {
    val heldCertificate: HeldCertificate = HeldCertificate.Builder().build()
    val certificate: X509Certificate = heldCertificate.certificate()
    val keyPair: KeyPair = heldCertificate.keyPair()
  }

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Fri Dec 27 13:39:56 GMT 2024

- 13.3K bytes

- Click Count (0)

github.com/minio/minio

internal/logger/help.go

			Sensitive:   true,
			Secret:      true,
		},
		config.HelpKV{
			Key:         ClientCert,
			Description: "mTLS certificate for webhook authentication",
			Optional:    true,
			Type:        "string",
			Sensitive:   true,
		},
		config.HelpKV{
			Key:         ClientKey,
			Description: "mTLS certificate key for webhook authentication",
			Optional:    true,
			Type:        "string",
			Sensitive:   true,
		},

Created: Sun Dec 28 19:28:13 GMT 2025

- Last Modified: Wed Sep 11 22:20:42 GMT 2024

- 7.4K bytes

- Click Count (0)

github.com/square/okhttp

okhttp/src/jvmTest/kotlin/okhttp3/internal/tls/ClientAuthTest.kt

      val keyManager =
        newKeyManager(
          null,
          serverCert,
          serverIntermediateCa.certificate,
        )
      val trustManager =
        newTrustManager(
          null,
          Arrays.asList(serverRootCa.certificate, clientRootCa.certificate),
          emptyList(),
        )
      val sslContext = SSLContext.getInstance("TLS")
      sslContext.init(

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Tue Nov 04 19:13:52 GMT 2025

- 13K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/der/CertificateAdapters.kt

        )
      },
    )

  /**
   * ```
   * Certificate ::= SEQUENCE  {
   *   tbsCertificate       TBSCertificate,
   *   signatureAlgorithm   AlgorithmIdentifier,
   *   signatureValue       BIT STRING
   * }
   * ```
   */
  internal val certificate: BasicDerAdapter<Certificate> =
    Adapters.sequence(
      "Certificate",
      tbsCertificate,
      algorithmIdentifier,

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Wed Mar 19 19:25:20 GMT 2025

- 13.6K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/src/test/java/okhttp3/tls/CertificatesTest.kt

      8V0vxo1pHXnbBrnxhS/Z3TBerw8RyQqcaWOdp+pBXyIWmR+jHk9cHZCqQveTIBsY
      jaA9VEhgdaVhxBsT2qzUNDsXlOzGsliznDfoqETb
      -----END CERTIFICATE-----
      
      """.trimIndent()
    val certificate = certificateString.decodeCertificatePem()
    assertEquals(certificateString, certificate.certificatePem())
  }

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Mon Jan 08 01:13:22 GMT 2024

- 1.6K bytes

- Click Count (0)

github.com/square/okhttp

okhttp-tls/src/main/kotlin/okhttp3/tls/internal/TlsUtil.kt

  ): X509KeyManager {
    val keyStore = newEmptyKeyStore(keyStoreType)
    if (heldCertificate != null) {
      val chain = arrayOfNulls<Certificate>(1 + intermediates.size)
      chain[0] = heldCertificate.certificate
      intermediates.copyInto(chain, 1)
      keyStore.setKeyEntry("private", heldCertificate.keyPair.private, password, chain)
    }

    // https://github.com/bcgit/bc-java/issues/1160

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Wed Mar 19 19:25:20 GMT 2025

- 4.3K bytes

- Click Count (1)

github.com/square/okhttp

samples/guide/src/main/java/okhttp3/recipes/CertificatePinning.java

    try (Response response = client.newCall(request).execute()) {
      if (!response.isSuccessful()) throw new IOException("Unexpected code " + response);

      for (Certificate certificate : response.handshake().peerCertificates()) {
        System.out.println(CertificatePinner.pin(certificate));
      }
    }
  }

  public static void main(String... args) throws Exception {
    new CertificatePinning().run();
  }

Created: Fri Dec 26 11:42:13 GMT 2025

- Last Modified: Sun Dec 08 21:30:01 GMT 2019

- 1.7K bytes

- Click Count (0)

Search Options