I'm using localhost, as it gives me this error 'SSL peer failed hostname validation for name: 127.0.0.1', I created a keystore with 127.0.0.1 and tried and it worked. Have to check at which place it resolves localhost to 127.0.0.1.
On Fri, Nov 4, 2016 at 2:27 PM, Bhathiya Jayasekara <[email protected]> wrote: > > On Fri, Nov 4, 2016 at 2:24 PM, Susinda Perera <[email protected]> wrote: > >> -Dorg.wso2.ignoreHostnameVerification=true >> This property is already in the wso2server.sh file, I.e having this did >> not helped me. >> >> On Fri, Nov 4, 2016 at 2:11 PM, Bhathiya Jayasekara <[email protected]> >> wrote: >> >>> Hi Susinda, >>> >>> If you want to use IP instead of hostname, you have to create a cert for >>> that IP. For CN validation, hostname and IP mapping is not used. >>> >> I don't want to use the IP. but I tried that as a workaround only, just >> check if that works >> > > What I meant was why do you want to use IP to call the service? Why can't > you simply use 'localhost'? > > Thanks, > Bhathiya > > >> >>> On a related note, using IPs for CN is not recommended in general. >>> >>> Thanks, >>> Bhathiya >>> >>> On Fri, Nov 4, 2016 at 1:19 PM, Susinda Perera <[email protected]> wrote: >>> >>>> Got this fixed by using a new keystore where primary key's CN is set to >>>> 127.0.0.1 and importing the public key of the same to >>>> client-truststore.jks. >>>> But i believe this is not the proper fix, as wso2carbon.jks already >>>> have the cert for localhost and we do not want to create another cert for >>>> 127.0.0.1. >>>> Any idea? >>>> Similar issues found in >>>> https://wso2.org/jira/browse/APIMANAGER-4205 >>>> https://wso2.org/jira/browse/APIMANAGER-4626 >>>> >>>> Thanks >>>> Susinda >>>> >>>> On Fri, Nov 4, 2016 at 12:53 PM, Susinda Perera <[email protected]> >>>> wrote: >>>> >>>>> Hi All >>>>> I'm getting this[1] $subject. Have anyone faced the same, what was the >>>>> resolution? >>>>> >>>>> >>>>> ERROR - APIGatewayManager Error occurred when publish to gateway >>>>> Production and Sandbox >>>>> org.apache.axis2.AxisFault: Error while contacting the authentication >>>>> admin services >>>>> at org.wso2.carbon.apimgt.impl.utils.AbstractAPIGatewayAdminCli >>>>> ent.login(AbstractAPIGatewayAdminClient.java:92) >>>>> at org.wso2.carbon.apimgt.impl.utils.AbstractAPIGatewayAdminCli >>>>> ent.setup(AbstractAPIGatewayAdminClient.java:50) >>>>> at org.wso2.carbon.apimgt.impl.utils.APIGatewayAdminClient.<ini >>>>> t>(APIGatewayAdminClient.java:37) >>>>> at org.wso2.carbon.apimgt.impl.APIGatewayManager.publishToGatew >>>>> ay(APIGatewayManager.java:86) >>>>> at org.wso2.carbon.apimgt.impl.APIProviderImpl.publishToGateway >>>>> (APIProviderImpl.java:1485) >>>>> at org.wso2.carbon.apimgt.impl.APIProviderImpl.propergateAPISta >>>>> tusChangeToGateways(APIProviderImpl.java:1294) >>>>> at org.wso2.carbon.apimgt.impl.UserAwareAPIProvider.propergateA >>>>> PIStatusChangeToGateways(UserAwareAPIProvider.java:36) >>>>> at org.wso2.carbon.apimgt.impl.executors.APIExecutor.execute(AP >>>>> IExecutor.java:136) >>>>> at org.wso2.carbon.governance.registry.extensions.aspects.Defau >>>>> ltLifeCycle.runCustomExecutorsCode(DefaultLifeCycle.java:712) >>>>> at org.wso2.carbon.governance.registry.extensions.aspects.Defau >>>>> ltLifeCycle.invoke(DefaultLifeCycle.java:450) >>>>> at org.wso2.carbon.governance.registry.eventing.handlers.Govern >>>>> anceEventingHandler.invokeAspect(GovernanceEventingHandler.java:338) >>>>> at org.wso2.carbon.registry.core.jdbc.handlers.HandlerManager.i >>>>> nvokeAspect(HandlerManager.java:2792) >>>>> at org.wso2.carbon.registry.core.jdbc.handlers.HandlerLifecycle >>>>> Manager.invokeAspect(HandlerLifecycleManager.java:518) >>>>> at org.wso2.carbon.registry.core.jdbc.EmbeddedRegistry.invokeAs >>>>> pect(EmbeddedRegistry.java:2591) >>>>> at org.wso2.carbon.registry.core.caching.CacheBackedRegistry.in >>>>> vokeAspect(CacheBackedRegistry.java:510) >>>>> at org.wso2.carbon.registry.core.session.UserRegistry.invokeAsp >>>>> ect(UserRegistry.java:1952) >>>>> at org.wso2.carbon.governance.api.common.dataobjects.Governance >>>>> ArtifactImpl.invokeAction(GovernanceArtifactImpl.java:829) >>>>> at org.wso2.carbon.governance.api.common.dataobjects.Governance >>>>> ArtifactImpl.invokeAction(GovernanceArtifactImpl.java:808) >>>>> at org.wso2.carbon.apimgt.impl.APIProviderImpl.changeLifeCycleS >>>>> tatus(APIProviderImpl.java:3644) >>>>> at org.wso2.carbon.apimgt.impl.UserAwareAPIProvider.changeLifeC >>>>> ycleStatus(UserAwareAPIProvider.java:148) >>>>> at org.wso2.carbon.apimgt.rest.api.publisher.impl.ApisApiServic >>>>> eImpl.apisChangeLifecyclePost(ApisApiServiceImpl.java:252) >>>>> at org.wso2.carbon.apimgt.rest.api.publisher.ApisApi.apisChange >>>>> LifecyclePost(ApisApi.java:91) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce >>>>> ssorImpl.java:62) >>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe >>>>> thodAccessorImpl.java:43) >>>>> at java.lang.reflect.Method.invoke(Method.java:497) >>>>> at org.apache.cxf.service.invoker.AbstractInvoker.performInvoca >>>>> tion(AbstractInvoker.java:180) >>>>> at org.apache.cxf.service.invoker.AbstractInvoker.invoke(Abstra >>>>> ctInvoker.java:96) >>>>> at org.apache.cxf.jaxrs.JAXRSInvoker.invoke(JAXRSInvoker.java:200) >>>>> at org.apache.cxf.jaxrs.JAXRSInvoker.invoke(JAXRSInvoker.java:99) >>>>> at org.apache.cxf.interceptor.ServiceInvokerInterceptor$1.run(S >>>>> erviceInvokerInterceptor.java:59) >>>>> at org.apache.cxf.interceptor.ServiceInvokerInterceptor.handleM >>>>> essage(ServiceInvokerInterceptor.java:96) >>>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(Phase >>>>> InterceptorChain.java:308) >>>>> at org.apache.cxf.transport.ChainInitiationObserver.onMessage(C >>>>> hainInitiationObserver.java:121) >>>>> at org.apache.cxf.transport.http.AbstractHTTPDestination.invoke >>>>> (AbstractHTTPDestination.java:251) >>>>> at org.apache.cxf.transport.servlet.ServletController.invokeDes >>>>> tination(ServletController.java:234) >>>>> at org.apache.cxf.transport.servlet.ServletController.invoke(Se >>>>> rvletController.java:208) >>>>> at org.apache.cxf.transport.servlet.ServletController.invoke(Se >>>>> rvletController.java:160) >>>>> at org.apache.cxf.transport.servlet.CXFNonSpringServlet.invoke( >>>>> CXFNonSpringServlet.java:180) >>>>> at org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleR >>>>> equest(AbstractHTTPServlet.java:293) >>>>> at org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPost( >>>>> AbstractHTTPServlet.java:212) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650) >>>>> at org.apache.cxf.transport.servlet.AbstractHTTPServlet.service >>>>> (AbstractHTTPServlet.java:268) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:303) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilte >>>>> r.java:52) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:241) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar >>>>> dWrapperValve.java:218) >>>>> at org.apache.catalina.core.StandardContextValve.invoke(Standar >>>>> dContextValve.java:122) >>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A >>>>> uthenticatorBase.java:505) >>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo >>>>> stValve.java:169) >>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo >>>>> rtValve.java:103) >>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv >>>>> ocation(CompositeValve.java:99) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke >>>>> (CarbonTomcatValve.java:47) >>>>> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena >>>>> ntLazyLoaderValve.java:57) >>>>> at org.wso2.carbon.webapp.authenticator.framework.WebappAuthent >>>>> icationValve.invoke(WebappAuthenticationValve.java:45) >>>>> at org.wso2.carbon.event.receiver.core.internal.tenantmgt.Tenan >>>>> tLazyLoaderValve.invoke(TenantLazyLoaderValve.java:48) >>>>> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok >>>>> eValves(TomcatValveContainer.java:47) >>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp >>>>> ositeValve.java:62) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection >>>>> Valve.invoke(CarbonStuckThreadDetectionValve.java:159) >>>>> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa >>>>> lve.java:956) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve. >>>>> invoke(CarbonContextCreatorValve.java:57) >>>>> at org.apache.catalina.core.StandardEngineValve.invoke(Standard >>>>> EngineValve.java:116) >>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd >>>>> apter.java:442) >>>>> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs >>>>> tractHttp11Processor.java:1082) >>>>> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler >>>>> .process(AbstractProtocol.java:623) >>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun >>>>> (NioEndpoint.java:1756) >>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(N >>>>> ioEndpoint.java:1715) >>>>> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool >>>>> Executor.java:1142) >>>>> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo >>>>> lExecutor.java:617) >>>>> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.r >>>>> un(TaskThread.java:61) >>>>> at java.lang.Thread.run(Thread.java:745) >>>>> Caused by: org.apache.axis2.AxisFault: SSL peer failed hostname >>>>> validation for name: 127.0.0.1 >>>>> at org.apache.axis2.AxisFault.makeFault(AxisFault.java:430) >>>>> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS >>>>> ender.java:199) >>>>> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77) >>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.w >>>>> riteMessageWithCommons(CommonsHTTPTransportSender.java:451) >>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.i >>>>> nvoke(CommonsHTTPTransportSender.java:278) >>>>> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) >>>>> at org.apache.axis2.description.OutInAxisOperationClient.send(O >>>>> utInAxisOperation.java:430) >>>>> at org.apache.axis2.description.OutInAxisOperationClient.execut >>>>> eImpl(OutInAxisOperation.java:225) >>>>> at org.apache.axis2.client.OperationClient.execute(OperationCli >>>>> ent.java:149) >>>>> at org.wso2.carbon.authenticator.stub.AuthenticationAdminStub.l >>>>> ogin(AuthenticationAdminStub.java:659) >>>>> at org.wso2.carbon.apimgt.impl.utils.AbstractAPIGatewayAdminCli >>>>> ent.login(AbstractAPIGatewayAdminClient.java:87) >>>>> ... 72 more >>>>> Caused by: javax.net.ssl.SSLPeerUnverifiedException: SSL peer failed >>>>> hostname validation for name: 127.0.0.1 >>>>> at org.opensaml.ws.soap.client.http.TLSProtocolSocketFactory.ve >>>>> rifyHostname(TLSProtocolSocketFactory.java:233) >>>>> at org.opensaml.ws.soap.client.http.TLSProtocolSocketFactory.cr >>>>> eateSocket(TLSProtocolSocketFactory.java:194) >>>>> at org.apache.commons.httpclient.HttpConnection.open(HttpConnec >>>>> tion.java:707) >>>>> at org.apache.commons.httpclient.MultiThreadedHttpConnectionMan >>>>> ager$HttpConnectionAdapter.open(MultiThreadedHttpConnectionM >>>>> anager.java:1361) >>>>> at org.apache.commons.httpclient.HttpMethodDirector.executeWith >>>>> Retry(HttpMethodDirector.java:387) >>>>> at org.apache.commons.httpclient.HttpMethodDirector.executeMeth >>>>> od(HttpMethodDirector.java:171) >>>>> at org.apache.commons.httpclient.HttpClient.executeMethod(HttpC >>>>> lient.java:397) >>>>> at org.apache.axis2.transport.http.AbstractHTTPSender.executeMe >>>>> thod(AbstractHTTPSender.java:659) >>>>> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS >>>>> ender.java:195) >>>>> ... 81 more >>>>> >>>>> >>>>> -- >>>>> *Susinda Perera* >>>>> Software Engineer >>>>> B.Sc.(Eng), M.Sc(Computer Science), AMIE(SL) >>>>> Mobile:(+94)716049075 >>>>> Blog: susinda.blogspot.com >>>>> WSO2 Inc. http://wso2.com/ >>>>> Tel : 94 11 214 5345 Fax :94 11 2145300 >>>>> >>>>> >>>> >>>> >>>> -- >>>> *Susinda Perera* >>>> Software Engineer >>>> B.Sc.(Eng), M.Sc(Computer Science), AMIE(SL) >>>> Mobile:(+94)716049075 >>>> Blog: susinda.blogspot.com >>>> WSO2 Inc. http://wso2.com/ >>>> Tel : 94 11 214 5345 Fax :94 11 2145300 >>>> >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> *Bhathiya Jayasekara* >>> *Senior Software Engineer,* >>> *WSO2 inc., http://wso2.com <http://wso2.com>* >>> >>> *Phone: +94715478185 <%2B94715478185>* >>> *LinkedIn: http://www.linkedin.com/in/bhathiyaj >>> <http://www.linkedin.com/in/bhathiyaj>* >>> *Twitter: https://twitter.com/bhathiyax <https://twitter.com/bhathiyax>* >>> *Blog: http://movingaheadblog.blogspot.com >>> <http://movingaheadblog.blogspot.com/>* >>> >> >> >> >> -- >> *Susinda Perera* >> Software Engineer >> B.Sc.(Eng), M.Sc(Computer Science), AMIE(SL) >> Mobile:(+94)716049075 >> Blog: susinda.blogspot.com >> WSO2 Inc. http://wso2.com/ >> Tel : 94 11 214 5345 Fax :94 11 2145300 >> >> > > > -- > *Bhathiya Jayasekara* > *Senior Software Engineer,* > *WSO2 inc., http://wso2.com <http://wso2.com>* > > *Phone: +94715478185 <%2B94715478185>* > *LinkedIn: http://www.linkedin.com/in/bhathiyaj > <http://www.linkedin.com/in/bhathiyaj>* > *Twitter: https://twitter.com/bhathiyax <https://twitter.com/bhathiyax>* > *Blog: http://movingaheadblog.blogspot.com > <http://movingaheadblog.blogspot.com/>* > -- *Susinda Perera* Software Engineer B.Sc.(Eng), M.Sc(Computer Science), AMIE(SL) Mobile:(+94)716049075 Blog: susinda.blogspot.com WSO2 Inc. http://wso2.com/ Tel : 94 11 214 5345 Fax :94 11 2145300
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
