The "name" for the http-conduit thing in the config is a full regex.
Thus,
you should be able to do something like:
<http-conf name="https.*">
....
to match all the https endpoints.
Dan
On Tuesday, August 30, 2011 2:33:43 PM Guillaume Jouanjan wrote:
Hi
I've tried this but i've got the same error.
org.springframework.web.util.NestedServletException: Request
processing failed; nested exception is
org.apache.cxf.service.factory.ServiceConstructionException: Could not
resolve URL
"
https://10.33.30.138:8443/eLBG-Server/WS/LogbookWS.LogbookWSHttpSoap12Endp
oint?wsdl".
org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkSe
rvlet.java:656)
org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet.ja
va:560) javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.j
ava:96)
*cause m�re*
org.apache.cxf.service.factory.ServiceConstructionException: Could not
resolve URL
"
https://10.33.30.138:8443/eLBG-Server/WS/LogbookWS.LogbookWSHttpSoap12Endp
oint?wsdl".
org.apache.cxf.endpoint.dynamic.DynamicClientFactory.composeUrl(DynamicClie
ntFactory.java:569)
org.apache.cxf.endpoint.dynamic.DynamicClientFactory.createClient(DynamicCl
ientFactory.java:259)
org.apache.cxf.endpoint.dynamic.DynamicClientFactory.createClient(DynamicCl
ientFactory.java:204)
org.apache.cxf.endpoint.dynamic.DynamicClientFactory.createClient(DynamicCl
ientFactory.java:197)
org.apache.cxf.endpoint.dynamic.DynamicClientFactory.createClient(DynamicCl
ientFactory.java:152)
com.airbus.rmm.controller.ManualController.send(ManualController.java:172)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
java.lang.reflect.Method.invoke(Unknown Source)
org.springframework.web.bind.annotation.support.HandlerMethodInvoker.invoke
HandlerMethod(HandlerMethodInvoker.java:176)
org.springframework.web.servlet.mvc.annotation.AnnotationMethodHandlerAdapt
er.invokeHandlerMethod(AnnotationMethodHandlerAdapter.java:426)
org.springframework.web.servlet.mvc.annotation.AnnotationMethodHandlerAdapt
er.handle(AnnotationMethodHandlerAdapter.java:414)
org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServ
let.java:790)
org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServl
et.java:719)
org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkSe
rvlet.java:644)
org.springframework.web.servlet.FrameworkServlet.doPost(FrameworkServlet.ja
va:560) javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.j
ava:96)
*cause m�re*
javax.net.ssl.SSLHandshakeException:
java.security.cert.CertificateException: No subject alternative names
present
com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)
The "mother cause" seems to be the
Could not resolve URL
"
https://10.33.30.138:8443/eLBG-Server/WS/LogbookWS.LogbookWSHttpSoap12Endpo
int?wsdl
but with internet explorer the url is good (after accepting certificates)
Moreover url of WSDL is calculated dynamically because end user set
himself
via HMI the url of Web Service (i.e :
https://10.33.30.138:8443/eLBG-Server/WS/LogbookWS) i only add the
endpoint
+ ? wsdl
(i don't know if i can made a 'response to all', please say it me if i
can't
;) )
Guillaume
2011/8/30 Freeman Fang<[email protected]>
Hi,
Looks like the error occurs when you try to download remote wsdl, which
also need authentication.
However the "{WSDL Namespace}portName" would never work for downloading
the wsdl as the portName is unknown at that point.
You need change your http:conduit like
<http-conf:conduit
name="https://10.33.30.138:**8443/.*<https://10.33.30.138:8443/.*> ">
the "https" prefix here is important.
You can take a look at [1] to get more details there.
[1]https://issues.apache.org/**jira/browse/CXF-3421<
https://issues.apach
e.org/jira/browse/CXF-3421>
Freeman
On 2011-8-30, at 下午4:18, Guillaume Jouanjan wrote:
Hello ,
First of all , sorry for my english , i'm a french developer.
My goal is to call dynamically web services method using a WSDL (the
only information i have + name of methods)
I've got a problem with the following code :
String urlWsdl = "
https://10.33.30.138:8443/**eLBG-Server/WS/LogbookWS.**
LogbookWSHttpSoap12Endpoint?**wsdl<
https://10.33.30.138:8443/eLBG-Serv
er/WS/LogbookWS.LogbookWSHttpSoap12Endpoint?wsdl> ";
JaxWsDynamicClientFactory factory = JaxWsDynamicClientFactory.
newInstance();
Client clientWS = factory.createClient(urlWsdl);
I've got the following error :
10:04:22,562 ERROR [[rmm-ata]] "Servlet.service()" pour la servlet
rmm-ata a
g´┐¢n´┐¢r´┐¢ une exception
java.security.cert.**CertificateException: No subject alternative
names
present
at sun.security.util.**HostnameChecker.matchIP(**Unknown
Source)
at sun.security.util.**HostnameChecker.match(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**X509TrustManagerImpl.**
checkIdentity(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**X509TrustManagerImpl.**
checkServerTrusted(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**ClientHandshaker.**
serverCertificate(Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**ClientHandshaker.**processMessage(Unkno
wn
Source)
at
com.sun.net.ssl.internal.ssl.**Handshaker.processLoop(Unk
nown
Source)
at
com.sun.net.ssl.internal.ssl.**Handshaker.process_record(
**
Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**SSLSocketImpl.readRecord(*
*
Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**SSLSocketImpl.**performInitialHandshake
(** Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**SSLSocketImpl.startHandsha
ke(**
Unknown
Source)
at
com.sun.net.ssl.internal.ssl.**SSLSocketImpl.startHandsha
ke(**
Unknown
Source)
at
sun.net.www.protocol.https.**HttpsClient.afterConnect(**U
nknown
Source)
at
sun.net.www.protocol.https.**AbstractDelegateHttpsURLConnec**
tion.connect(Unknown
Source)
at
sun.net.www.protocol.http.**HttpURLConnection.**getInputStream(Unknown
Source)
at
sun.net.www.protocol.https.**HttpsURLConnectionImpl.**
getInputStream(Unknown
Source)
at
org.apache.cxf.resource.**URIResolver.tryFileSystem(**
URIResolver.java:167)
at org.apache.cxf.resource.**URIResolver.<init>(**
URIResolver.java:90)
at
org.apache.cxf.endpoint.**dynamic.DynamicClientFactory.**composeUrl(**
DynamicClientFactory.java:561)
at
org.apache.cxf.endpoint.**dynamic.DynamicClientFactory.**createClient(
**
DynamicClientFactory.java:259)
at
org.apache.cxf.endpoint.**dynamic.DynamicClientFactory.**createClient(
**
DynamicClientFactory.java:204)
at
org.apache.cxf.endpoint.**dynamic.DynamicClientFactory.**createClient(
**
DynamicClientFactory.java:197)
at
org.apache.cxf.endpoint.**dynamic.DynamicClientFactory.**createClient(
**
DynamicClientFactory.java:152)
at
com.airbus.rmm.controller.**ManualController.send(**
ManualController.java:174)
I have specified a http conduit in spring configuration file but it
seems that information inside is not managed and the
disableCNCheck=false is still
active
my http-conduit conf :
<http:conduit name="*.http-conduit">
<http:tlsClientParameters secureSocketProtocol="TLS"
disableCNCheck="true">
<sec:keyManagers keyPassword="password">
<sec:keyStore type="JKS" password="password"
file="../classes/server.jks"/>
</sec:keyManagers>
<sec:trustManagers>
<sec:keyStore type="JKS" password="password"
file="../classes/server.jks"/>
</sec:trustManagers>
<sec:cipherSuitesFilter>
<!-- these filters ensure that a ciphersuite with
export-suitable or null encryption is used,
but exclude anonymous Diffie-Hellman key
change as
this is vulnerable to man-in-the-middle
attacks -->
<sec:include>.*_EXPORT_.*</**sec:include>
<sec:include>.*_EXPORT1024_.*<**/sec:include>
<sec:include>.*_WITH_DES_.*</**sec:include>
<sec:include>.*_WITH_NULL_.*</**sec:include>
<sec:exclude>.*_DH_anon_.*</**sec:exclude>
</sec:cipherSuitesFilter>
</http:tlsClientParameters>
<http:authorization>
<sec:UserName>nandana</sec:**UserName>
<sec:Password>password</sec:**Password>
</http:authorization>
<http:client AutoRedirect="true" Connection="Keep-Alive"/>
</http:conduit>
Thanks for your help
Guillaume
--
* *
* *
*Guillaume JOUANJAN
*
*Chef de Projet Technique
*
*Email:* [email protected] *<[email protected]>*
*Bureau:* +33 (0)5 62 47 33 66
*
*
*
*
*
*
*www.sqli.com*
* *
*
*
*SQLI Toulouse*
7 avenue Didier DAURAT
BP 70118
31 704 BLAGNAC CEDEX
*Standard:* +33 (0)5 62 47 70 70
*Fax:* +33 (0)5 62 47 70 71
**
------------------------------**---------------
Freeman Fang
FuseSource
Email:[email protected]
Web: fusesource.com
Twitter: freemanfang
Blog: http://freemanfang.blogspot.**com
<http://freemanfang.blogspot.com>
--
Daniel Kulp
[email protected]
http://dankulp.com/blog
Talend - http://www.talend.com
