Apache
 » 
Apache Web Services
 » 
Axis
 » 
Axis - User

[axis-user] Axis https Client

View: New views
4 Messages — Rating Filter:   Alert me  

[axis-user] Axis https Client

by BRACHET Maxime :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hi,

I am trying to code a simple webservice using https.
I use Axis2 deployed in Tomcat 5.5.26.
I configured the https connector, with a Certificate signed by my CA.
When I load the same jks for the server and the client using :
        System.setProperty("javax.net.ssl.trustStore", "jks");
        System.setProperty("javax.net.ssl.trustStorePassword", "password");
It works.
But If I used a jks wich contain only my CA self signed certificate it doesn't work.

The certificates I have are the followings :
CA.crt, pem, format , self signed
container.crt, pem format, CA signed
container.key, pem format, CA signed
I don't want to give the container crt and key to my client.

I someone have useful links with documentation or sample.

Thanks in advance.

Regards,
Maxime.

Re: [axis-user] Axis https Client

by BRACHET Maxime :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Problem resolved,
It come from the way to add the CA certificate to the keystore.
for thoses who are interested :
keytool -import -trustcacerts -alias "sensible-name-for-ca" -file CAcert.crt -keystore MYSTORE.jks

from http://shib.kuleuven.be/docs/ssl_commands.shtml

Regards,
Maxime.

2008/6/12 BRACHET Maxime <mixam85@...>:
Hi,

I am trying to code a simple webservice using https.
I use Axis2 deployed in Tomcat 5.5.26.
I configured the https connector, with a Certificate signed by my CA.
When I load the same jks for the server and the client using :
        System.setProperty("javax.net.ssl.trustStore", "jks");
        System.setProperty("javax.net.ssl.trustStorePassword", "password");
It works.
But If I used a jks wich contain only my CA self signed certificate it doesn't work.

The certificates I have are the followings :
CA.crt, pem, format , self signed
container.crt, pem format, CA signed
container.key, pem format, CA signed
I don't want to give the container crt and key to my client.

I someone have useful links with documentation or sample.

Thanks in advance.

Regards,
Maxime.

Re: [axis-user] Axis https Client

by Karthik R :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hello Brachet,
Can you tell me how it got resolved

BRACHET Maxime wrote:
Problem resolved,
It come from the way to add the CA certificate to the keystore.
for thoses who are interested :
keytool -import -trustcacerts -alias "sensible-name-for-ca" -file CAcert.crt -keystore MYSTORE.jks

from http://shib.kuleuven.be/docs/ssl_commands.shtml

Regards,
Maxime.

2008/6/12 BRACHET Maxime <mixam85@...>:
Hi,

I am trying to code a simple webservice using https.
I use Axis2 deployed in Tomcat 5.5.26.
I configured the https connector, with a Certificate signed by my CA.
When I load the same jks for the server and the client using :
        System.setProperty("javax.net.ssl.trustStore", "jks");
        System.setProperty("javax.net.ssl.trustStorePassword", "password");
It works.
But If I used a jks wich contain only my CA self signed certificate it doesn't work.

The certificates I have are the followings :
CA.crt, pem, format , self signed
container.crt, pem format, CA signed
container.key, pem format, CA signed
I don't want to give the container crt and key to my client.

I someone have useful links with documentation or sample.

Thanks in advance.

Regards,
Maxime.


--------------------------------------------------------------------- To unsubscribe, e-mail: axis-user-unsubscribe@... For additional commands, e-mail: axis-user-help@...

Re: [axis-user] Axis https Client

by BRACHET Maxime :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hi,

The problems come from the methods I utilized to add the CA certificate to the keystore.
I was first using :
keytool -import -alias container -file /etc/grid-security/container -keystore /home/globus/ca.keystore

so when I started my Java axis client it give me the following error :
Exception in thread "main" org.apache.axis2.AxisFault: Unconnected sockets not implemented

now using this command:
keytool -import -trustcacerts -alias "sensible-name-for-ca" -file CAcert.crt -keystore MYSTORE.jks
it generate a valid jks with my trusted CA certificate in.

Regards,
Maxime.

2008/6/12 Karthik R <karthikr.thillai@...>:
Hello Brachet,
Can you tell me how it got resolved


BRACHET Maxime wrote:
Problem resolved,
It come from the way to add the CA certificate to the keystore.
for thoses who are interested :
keytool -import -trustcacerts -alias "sensible-name-for-ca" -file CAcert.crt -keystore MYSTORE.jks

from http://shib.kuleuven.be/docs/ssl_commands.shtml

Regards,
Maxime.

2008/6/12 BRACHET Maxime <mixam85@...>:
Hi,

I am trying to code a simple webservice using https.
I use Axis2 deployed in Tomcat 5.5.26.
I configured the https connector, with a Certificate signed by my CA.
When I load the same jks for the server and the client using :
        System.setProperty("javax.net.ssl.trustStore", "jks");
        System.setProperty("javax.net.ssl.trustStorePassword", "password");
It works.
But If I used a jks wich contain only my CA self signed certificate it doesn't work.

The certificates I have are the followings :
CA.crt, pem, format , self signed
container.crt, pem format, CA signed
container.key, pem format, CA signed
I don't want to give the container crt and key to my client.

I someone have useful links with documentation or sample.

Thanks in advance.

Regards,
Maxime.


--------------------------------------------------------------------- To unsubscribe, e-mail: axis-user-unsubscribe@... For additional commands, e-mail: axis-user-help@...

Free embeddable forum powered by Nabble Forum Help