Seal - Core/com.jermey.seal.core.config/CTConfigurationBuilder

CTConfigurationBuilder

class CTConfigurationBuilder(source)

DSL builder for CTConfiguration.

Usage:

val config = ctConfiguration {
    +"*.example.com"       // include host
    -"internal.example.com" // exclude host
    policy = ChromeCtPolicy()
    failOnError = false    // fail-open (default)
    logger = { host, result -> println("CT: $host -> $result") }
}

Constructors

CTConfigurationBuilder

constructor()

Properties

var failOnError: Boolean

Whether to throw/fail on CT verification failure. Defaults to false (fail-open).

var logger: (host: String, result: VerificationResult) -> Unit?

Optional callback to log verification results.

var logListCache: LogListCache?

Optional custom cache for the log list. If null, an in-memory cache is used.

var logListMaxAge: <Error class: unknown class>

Maximum age of the cached log list before refresh. Defaults to 70 days.

logListNetworkDataSource

var logListNetworkDataSource: LogListDataSource?

Optional custom network data source for fetching the log list.

var logListUrl: String

URL of the CT log list JSON. Defaults to Google's V3 log list.

var policy: CTPolicy

CT compliance policy. Defaults to ChromeCtPolicy.

Functions

fun build(): CTConfiguration

Build the immutable CTConfiguration.

operator fun String.unaryMinus()

Exclude a host pattern from CT verification.

operator fun String.unaryPlus()

Include a host pattern for CT verification.

fun useApplePolicy()

Use Apple's CT policy. Requires 2+ distinct operators (any). More lenient than Chrome.

useChromePolicy

fun useChromePolicy()

Use Chrome's CT policy (default). Requires Google + non-Google operator diversity.