On Thu, 2008-09-11 at 16:20 +0100, [EMAIL PROTECTED] wrote: > Setup: > > commons-httpclient-3.1 > java 1.6.0_04 > java WebStart 6 > client OS: windows XP professional > browser/certificate store: IE/Windows XP > > I am trying to use commons-httpclient-3.1 from a WebStart-deployed > application to communicate through a web proxy over SSL with an HTTPS > URL that requires client authentication with a certificate retrieved > from the system certificate store, not a standalone one in the local > file system (e.g. a PKCS#12 file). > > I can get this to work using a straight HttpsURLConnection, which > successfully accesses the client certificate from IE's personal > certificate store. The handshake succeeds, the connection is made and > the request is served.
Damian HttpClient is unable to access trusted certificates stored in the personal certificate store. So, you have to manually configure the SSL context and populate it with those certificates you application should treat as trusted. For details please refer to "Customizing SSL in HttpClient" and "Examples of SSL customization in HttpClient" sections of the HttpClient SSL guide: http://hc.apache.org/httpclient-3.x/sslguide.html Hope this helps Oleg > I have a suspicion the solution may involve a custom > SecureProtocolSocketFactory, but I have been unable to solve the problem > myself. > > Can anyone give me any pointers? > > Thanks, > > Damian --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
