I don't get it. I am the client. The server is on the other side. I can test/connect to the server using OpenSSL which by the way takes all these parameters (certificate, key, truststore, protocol, cipher).
Thanks Vadim. (310)765-3812 ________________________________ From: Thilina Mahesh Buddhika [mailto:[email protected]] Sent: Wednesday, December 09, 2009 10:28 AM To: [email protected] Subject: Re: Creating Web Service client using HTTPS from wsdl files AFAIK these configuration needs to be happen at the transport level and it depends on the app server you are using for the deployment. The related documentation of that app server will give you a thorough insight into these configuration options. thanks. /thilina Thilina Mahesh Buddhika http://blog.thilinamb.com On Wed, Dec 9, 2009 at 10:03 PM, Vadim Letitchevski <[email protected]<mailto:[email protected]>> wrote: Thank you Thhilina. What about the rest of it - protocol and cipher? Thanks Vadim. ________________________________ From: Thilina Mahesh Buddhika [mailto:[email protected]<mailto:[email protected]>] Sent: Wednesday, December 09, 2009 5:13 AM To: [email protected]<mailto:[email protected]> Subject: Re: Creating Web Service client using HTTPS from wsdl files hi, Some of the properties you mentioned, like two-way authentication has to be enabled in the SSL settings in the app-server where the Axis2 is deployed. For example, in Tomcat following configuration segment available in server.xml holds some of these parameters. <Connector port="8443" maxHttpHeaderSize="8192" SSLEnabled="true" maxThreads="150" minSpareThreads="25" maxSpareThreads="75" enableLookups="false" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true" clientAuth="false" sslProtocol="TLS" keystoreFile="keystore.jks" keystorePass="wso2carbon" /> It depends on the app server you are using. Some times it is required to set some system variables to support these parameters. For example, if you have enabled clientAuth(two-way authentication), then you have to set "javax.net.ssl.keyStore" and "javax.net.ssl.keyStorePassword" system properties. thanks. /thilina Thilina Mahesh Buddhika http://blog.thilinamb.com On Wed, Dec 9, 2009 at 6:50 AM, Vadim Letitchevski <[email protected]<mailto:[email protected]>> wrote: I am trying to configure my client auto-generated from WSDL to use SSL. I have read already the recommendations to set these: System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore"); System.setProperty("javax.net.ssl.trustStorePassword", "changeit"); Unfortunately this is not all I need to set. I care about using only TLS1, only NULL-SHA Cipher, two way authentication and keep-alive. The problem is, I can't find any mentioning of the property names which are needed for me, neither a full list of supported ssl properties and their values which can be set with System.setProperty() as well. Thanks Vadim. (310)765-3812
