Re: CloseableHttpClient and custom verification of SSL session

Hello, I guess it depends on the definition of "verifying session", for example I was using the TrustStrategy to do (additional) certificate public key info pinning: pinnedCertTrust = new PinnedCertTrust("...="); // this context falls back to system trust material (but first checks pinning)

RE: CloseableHttpClient and custom verification of SSL session

Hi Oleg, Thanks for your response. I had thought of using custom HostnameVerifier. However, it only gets called if the default hostname verification fails and that won’t work for me. We need to do the custom verification for the server certificate when the default hostname verification is

Re: CloseableHttpClient and custom verification of SSL session

On August 21, 2016 10:50:47 PM GMT+02:00, Sachin Nikumbh wrote: >Hi all, > >I am using CloseableHttpClient to support HTTPS. I need to do some >client >side verification after receiving the server certificate. This needs to >happen immediately after the SSL handshake and