A channel type that carries a TLS certificate between a server and a client connecting to it.
Channels of this kind always have
In this case, handlers SHOULD accept or reject the certificate, using
the relevant methods on the provided object, or MAY just
For example, channels of this kind can pop up while a client is connecting to an XMPP server.
A
The hostname or domain that the user expects to connect to. Clients
SHOULD use the
The identities of the server we expect
This property MUST NOT be the empty list; it MUST
contain the value of the
The primary use for this property is for XMPP services hosted by Google Apps. When connecting to Google Talk using an @gmail.com JID, the server correctly presents a certificate for gmail.com; however, for domains hosted via Google Apps, a certificate for talk.google.com is offered, due to unresolved technical limitations.
If the user has explicitly chosen to create a Google Talk
account, then trusting a certificate for talk.google.com
is reasonable. To handle this case, the connection manager may add
the values of any or all of the server,
fallback-server and extra-identities parameters;
the Google Talk account creation user interface may set these
parameters appropriately, or the user may set them for accounts
with other services.