Details
-
Enhancement
-
Resolution: Fixed
-
P3
-
15
-
b14
-
generic
Description
8 java.security.cert API methods use the term "denigrated" to discourage developers from using methods that take/return Distinguished Names as Principal or String objects. All of them recommend using other methods instead that that take/return an X500Principal. They should instead be deprecated. To be more consistent with modern JDK nomenclature, the "denigrated" term should be removed and the APIs should be identified for official deprecation.
The 8 methods are:
java.security.cert.X509Certificate.getIssuerDN()
java.security.cert.X509Certificate.getSubjectDN()
java.security.cert.X509CRL.getIssuerDN()
java.security.cert.X509CertSelector.setIssuer(String)
java.security.cert.X509CertSelector.setSubject(String)
java.security.cert.X509CertSelector.getIssuerAsString()
java.security.cert.X509CertSelector.getSubjectAsString()
java.security.cert.X509CRLSelector.addIssuerName(String)
The 8 methods are:
java.security.cert.X509Certificate.getIssuerDN()
java.security.cert.X509Certificate.getSubjectDN()
java.security.cert.X509CRL.getIssuerDN()
java.security.cert.X509CertSelector.setIssuer(String)
java.security.cert.X509CertSelector.setSubject(String)
java.security.cert.X509CertSelector.getIssuerAsString()
java.security.cert.X509CertSelector.getSubjectAsString()
java.security.cert.X509CRLSelector.addIssuerName(String)
Attachments
Issue Links
- csr for
-
JDK-8250970 Deprecate "denigrated" java.security.cert APIs that represent DNs as Principal or String objects
- Closed
- relates to
-
JDK-4959744 Denigrate X509Certificate.getSubjectDN() & co
- Resolved