Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8241003

Deprecate "denigrated" java.security.cert APIs that represent DNs as Principal or String objects

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Resolved
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: 15
    • Fix Version/s: 16
    • Component/s: security-libs
    • Subcomponent:
    • Resolved In Build:
      b14
    • CPU:
      generic

      Description

      8 java.security.cert API methods use the term "denigrated" to discourage developers from using methods that take/return Distinguished Names as Principal or String objects. All of them recommend using other methods instead that that take/return an X500Principal. They should instead be deprecated. To be more consistent with modern JDK nomenclature, the "denigrated" term should be removed and the APIs should be identified for official deprecation.

      The 8 methods are:
      java.security.cert.X509Certificate.getIssuerDN()
      java.security.cert.X509Certificate.getSubjectDN()
      java.security.cert.X509CRL.getIssuerDN()
      java.security.cert.X509CertSelector.setIssuer(String)
      java.security.cert.X509CertSelector.setSubject(String)
      java.security.cert.X509CertSelector.getIssuerAsString()
      java.security.cert.X509CertSelector.getSubjectAsString()
      java.security.cert.X509CRLSelector.addIssuerName(String)

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              mullan Sean Mullan
              Reporter:
              coffeys Sean Coffey
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: