Hi,
I am running a tomcat server that has a valid certificate from Thwate. In my HTTP client code I am letting the library handle the SSL validation and I am not using any custom trust validation. Now, everything works fine but the problem is precisely this. It works fine even when if I specify the IP address of the server in the URL. Since the certificate is signed against my server's domain name, if I access the URL with IP address I expect the library to throw exception as the domain names doesn't match. This is what precisely happens when I try to access the server from a browser by typing the server's IP address instead of the domain name. I get a warning message stating that the domain name and the URL that I entered doesn't match. Is there any way I let the library explicitly validate the domain name and throw me an exception in case it detects a mismatch? Thanks, Partha
