OF-892: Unavailability of optional certificates should cause WARN log statements.

f5e017b9 · Guus der Kinderen · Dave Cridland · b8df5086 · f5e017b9
Commit f5e017b9 authored May 26, 2015 by Guus der Kinderen Committed by Dave Cridland May 28, 2015
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 1 deletion

NIOConnection.java src/java/org/jivesoftware/openfire/nio/NIOConnection.java +4 -1

No files found.
--- a/src/java/org/jivesoftware/openfire/nio/NIOConnection.java
+++ b/src/java/org/jivesoftware/openfire/nio/NIOConnection.java
@@ -185,7 +185,10 @@ public class NIOConnection implements Connection {
                return sslSession.getPeerCertificates();
            }
        } catch (SSLPeerUnverifiedException e) {
-            Log.warn("Error retrieving client certificates of: " + session, e);
+            if (Log.isTraceEnabled()) {
+                // This is perfectly acceptable when mutual authentication is not enforced by Openfire configuration.
+                Log.trace( "Peer does not offer certificates in session: " + session, e);
+            }
        }
        return new Certificate[0];
    }