Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8241003 Deprecate "denigrated" java.security.cert APIs that represent DNs as Principal or String objects
  3. JDK-8252392

Release Note: Deprecated the java.security.cert APIs That Represent DNs as Principal or String Objects

    XMLWordPrintable

    Details

      Description

      The following APIs have been deprecated:
      ```
      java.security.cert.X509Certificate.getIssuerDN()
      java.security.cert.X509Certificate.getSubjectDN()
      java.security.cert.X509CRL.getIssuerDN()
      java.security.cert.X509CertSelector.setIssuer(String)
      java.security.cert.X509CertSelector.setSubject(String)
      java.security.cert.X509CertSelector.getIssuerAsString()
      java.security.cert.X509CertSelector.getSubjectAsString()
      java.security.cert.X509CRLSelector.addIssuerName(String)
      ```
      These APIs either take or return Distinguished Names as `Principal` or `String` objects and can cause issues due to loss of encoding information or differences when comparing names across different Principal implementations. All of them have alternative APIs that use `X500Principal` objects instead.

        Attachments

          Activity

            People

            Assignee:
            mullan Sean Mullan
            Reporter:
            mullan Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: