Hi Saminda,
i guess yuo mean first export,then import :)
ok, it works that way.Strange though that it is not documented somewhere.
now, the next step should be to enforce rampart to do the client config
automatically -
e.g. using keystores, setting https endpoint?
Regards,
Nencho
2007/5/24, Saminda Abeyruwan <[EMAIL PROTECTED]>:
Hi,
You are trying the SSL connection. Thus, you need the server's https
connectors public key first. There's nothing to do with client.jks and
server.jks coming from Rampart here.
So this is what you should have do.
First get hold of the wso2wsas.jks key store. I've seen this prior mails.
As you can see wso2wsas.jks key store is bound with https connector in
server side.
1. First create a client side key store. As follows,
*keytool -genkey -alias client -keyalg RSA -keystore clientKeyStore*
Then,
2. You need to export the public key from wso2wsas.jks. First you need to
import the certificate.
*keytool -import -alias wso2wsas -file wso2wsas.cer -keystore
{location}/wso2wsas.jks*
3. They export this certificate to client keystore.
*keytool -export -alias wso2wsas -keystore clientKeyStore -rfc -file
wso2wsas.cer*
4. Then set the prior mention properties.
HTH
Saminda
On 5/24/07, Nencho Lupanov < [EMAIL PROTECTED]> wrote:
>
> Hi Saminda ,
>
> I havent pointed those.
> I am pretty new at jsse, i don't now what are the values for those.
> I only have the keystores that comes with the rampart samples -
> client.jks,server.jks but how
> do i know wht trustStroe are they using and what is the password for it?
>
> thanks,
> Nencho
>
>
> 2007/5/24, Saminda Abeyruwan <[EMAIL PROTECTED]>:
> >
> > Hi,
> >
> > Did you set,
> >
> > /////////////////
> > System.setProperty("javax.net.ssl.trustStore","{store location}");
> >
> > System.setProperty("javax.net.ssl.trustStorePassword","{store
> > password}");
> > ///////////////
> >
> > properties in you client.
> >
> > The {store location} is the client key store and it should import the
> > public key of "wso2wsas".
> > {store password} is the key store password to access prior.
> >
> > Do buzz if need further assistance.
> >
> > Thank you
> >
> > Saminda
> >
> >
> >
> > On 5/24/07, Nencho Lupanov < [EMAIL PROTECTED] > wrote:
> > >
> > > Hi Paul,
> > >
> > > The server is Tomcat5.5.
> > > and this is the ssl config:
> > >
> > >
> > > <!-- Define a SSL HTTP/1.1 Connector on port 9443 -->
> > >
> > > <Connector port="9443" maxHttpHeaderSize ="8192"
maxThreads="150"minSpareThreads
> > > ="25" maxSpareThreads="75" enableLookups ="false"disableUploadTimeout
> > > ="true" acceptCount="100" scheme="https" secure="true" clientAuth="
> > > false" sslProtocol="TLS" keystoreFile="C:\Documents and
> > > Settings\bgnlu\.wso2wsas\conf\wso2wsas.jks " keystorePass="wso2wsas"
> > > />
> > > I am using the keystores that comes with the rampart samples.
> > > Thanks,
> > >
> > > Neencho
> > >
> > >
> > >
> > > 2007/5/24, Paul Fremantle <[EMAIL PROTECTED]>:
> > > >
> > > > What is the server?
> > > >
> > > > Paul
> > > >
> > > > On 5/24/07, Nencho Lupanov < [EMAIL PROTECTED]> wrote:
> > > > > Hi Paul ,
> > > > >
> > > > > My endoint reference that the client is using is:
> > > > >
> > > > >
> > > > > https://localhost:9443/axis2/services/sample01
> > > > >
> > > > > Anyway, I cannot send anything to this endpoint, I am capturing
> > > > packets with
> > > > > tcpmon and nothing cames up from the client.
> > > > >
> > > > > the client is silent only that it throws exception:
> > > > >
> > > > > [java] Exception in thread "main"
> > > > org.apache.axis2.AxisFault:
> > > > > Unconnected s
> > > > > ockets not implemented; nested exception is:
> > > > > [java] java.net.SocketException: Unconnected sockets
> > > > not
> > > > > implemented; n
> > > > > ested exception is:
> > > > > [java] org.apache.axis2.AxisFault: Unconnected sockets
> > > > not
> > > > > implemented;
> > > > > nested exception is:
> > > > > [java] java.net.SocketException : Unconnected sockets
> > > > not
> > > > > implemented
> > > > > [java] at
> > > > > org.apache.axis2.transport.http.CommonsHTTPTransportSender.in
> > > > <http://org.apache.axis2.transport.http.commonshttptransportsender.in/>
> > > > > voke(CommonsHTTPTransportSender.java:227)
> > > > > [java] at org.apache.axis2.engine.AxisEngine.send
> > > > > (AxisEngine.java:674)
> > > > > [java] at
> > > > > org.apache.axis2.description.OutInAxisOperationClient.send (Ou
> > > > > tInAxisOperation.java:237)
> > > > >
> > > > >
> > > > >
> > > > > Do you have any idea what is this about.I am working onn this
> > > > since i would
> > > > > like to fix the transport binding but i face lack of support
> > > > about this.
> > > > >
> > > > >
> > > > >
> > > > > thanks,
> > > > >
> > > > > Nencho
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > 2007/5/24, Paul Fremantle < [EMAIL PROTECTED]>:
> > > > > >
> > > > > > Nencho
> > > > > >
> > > > > > If you target a service with an HTTPS url it will
> > > > automatically do HTTPS.
> > > > > >
> > > > > > Paul
> > > > > >
> > > > > > On 5/24/07, Nencho Lupanov < [EMAIL PROTECTED]>
> > > > wrote:
> > > > > > > Hi all,
> > > > > > >
> > > > > > > is there a way to configure a https sender for the service
> > > > client?
> > > > > > >
> > > > > > > thanks,
> > > > > > > Nencho
> > > > > >
> > > > > >
> > > > > > --
> > > > > > Paul Fremantle
> > > > > > Co-Founder and VP of Technical Sales, WSO2
> > > > > > OASIS WS-RX TC Co-chair
> > > > > >
> > > > > > blog: http://pzf.fremantle.org
> > > > > > [EMAIL PROTECTED]
> > > > > >
> > > > > > "Oxygenating the Web Service Platform", www.wso2.com
> > > > > >
> > > > > >
> > > > >
> > > > ---------------------------------------------------------------------
> > > > > > To unsubscribe, e-mail:
> > > > > [EMAIL PROTECTED]
> > > > > > For additional commands, e-mail: [EMAIL PROTECTED]
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > >
> > > >
> > > > --
> > > > Paul Fremantle
> > > > Co-Founder and VP of Technical Sales, WSO2
> > > > OASIS WS-RX TC Co-chair
> > > >
> > > > blog: http://pzf.fremantle.org
> > > > [EMAIL PROTECTED]
> > > >
> > > > "Oxygenating the Web Service Platform", www.wso2.com
> > > >
> > > >
> > > > ---------------------------------------------------------------------
> > > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > > For additional commands, e-mail: [EMAIL PROTECTED]
> > > >
> > > >
> > >
> >
> >
> > --
> > Saminda Abeyruwan
> >
> > Software Engineer
> > WSO2 Inc. - www.wso2.org
>
>
>
--
Saminda Abeyruwan
Software Engineer
WSO2 Inc. - www.wso2.org
