Sample code for 30+ languages & platforms
C++

Require SSL Server Certificate Domain Match

See more HTTP Examples

Demonstrates how to require that the SSL server certificate's domain matches the intended domain.

Chilkat C++ Downloads

C++
#include <CkHttp.h>

void ChilkatSample(void)
    {
    bool success = false;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkHttp http;

    // Call SetSslCertRequirement to require that the SSL server certificate's domain
    // matches only the domain we are intending to communicate with.

    // In this example we will test with the URL https://wrong.host.badssl.com/
    // which intentionally has an SSL certificate that does not match "wrong.host.badssl.com"

    http.SetSslCertRequirement("SAN","wrong.host.badssl.com");

    // Also validate the server cert..
    http.put_RequireSslCertVerify(true);

    // Try sending the request.  It should fail within the SSL/TLS handshake
    // because the server's certificate does not match the domain "wrong.host.badssl.com"
    const char *html = http.quickGetStr("https://wrong.host.badssl.com/");
    if (http.get_LastMethodSuccess() == false) {
        std::cout << http.lastErrorText() << "\r\n";
    }
    else {
        std::cout << "Unexpected success." << "\r\n";
    }
    }