Property
GioDtlsClientConnection:validation-flags
deprecated: 2.74 since: 2.48
Description [src]
What steps to perform when validating a certificate received from
a server. Server certificates that fail to validate in any of the
ways indicated here will be rejected unless the application
overrides the default via GDtlsConnection::accept-certificate
.
GLib guarantees that if certificate verification fails, at least one
flag will be set, but it does not guarantee that all possible flags
will be set. Accordingly, you may not safely decide to ignore any
particular type of error. For example, it would be incorrect to mask
G_TLS_CERTIFICATE_EXPIRED
if you want to allow expired certificates,
because this could potentially be the only error flag set even if
other problems exist with the certificate. Therefore, there is no
safe way to use this property. This is not a horrible problem,
though, because you should not be attempting to ignore validation
errors anyway. If you really must ignore TLS certificate errors,
connect to GDtlsConnection::accept-certificate
.
Type:GTlsCertificateFlags
Available since: 2.48
Deprecated since: 2.74
Do not attempt to ignore validation errors.
Default value | G_TLS_CERTIFICATE_UNKNOWN_CA | G_TLS_CERTIFICATE_BAD_IDENTITY | G_TLS_CERTIFICATE_NOT_ACTIVATED | G_TLS_CERTIFICATE_EXPIRED | G_TLS_CERTIFICATE_REVOKED | G_TLS_CERTIFICATE_INSECURE | G_TLS_CERTIFICATE_GENERIC_ERROR |
Getter method | g_dtls_client_connection_get_validation_flags() |
Setter method | g_dtls_client_connection_set_validation_flags() |