Safe Haskell | Safe-Infered |
---|
- type CertVerifierFunc = ByteString -> [X509] -> IO TLSCertificateUsage
- data CertVerifier = CertVerifier {}
- certVerifierInsecure :: CertVerifier
- certVerifierFromPemFile :: FilePath -> IO (Either String CertVerifier)
- certVerifierFromRootCerts :: [X509] -> ByteString -> [X509] -> IO TLSCertificateUsage
- certVerifierFromDbX509s :: CertVerifier
Documentation
= ByteString | The server's host name. |
-> [X509] | The server's certificate chain. |
-> IO TLSCertificateUsage | Whether the certificate chain is valid or not. |
data CertVerifier Source
How the server's SSL certificate will be verified.
CertVerifier | |
|
certVerifierInsecure :: CertVerifierSource
A dummy implementation that doesn't perform any verification.
certVerifierFromPemFile :: FilePath -> IO (Either String CertVerifier)Source
Reads certificates in PEM format from the given file and uses those as the roots when
verifying certificates. This function basically just loads the certificates and delegates
to certVerifierFromRootCerts
for the actual checking.
certVerifierFromRootCertsSource
:: [X509] | The set of trusted root certificates. |
-> ByteString | The remote server's domain name. |
-> [X509] | The certificate chain provided by the remote server. |
-> IO TLSCertificateUsage |
A certificate validation routine. It's in IO
to match what Enumerator
expects, but we don't actually do any I/O.
certVerifierFromDbX509s :: CertVerifierSource
Use the buildin Dropbox certificates.