[
https://issues.apache.org/jira/browse/RAMPART-416?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14062844#comment-14062844
]
Detelin Yordanov edited comment on RAMPART-416 at 7/15/14 11:20 PM:
--------------------------------------------------------------------
Updated the patch to use separate client/server keystores for Jetty instead of
the interop2.jks one. These need to be placed under
{{/modules/rampart-integration/src/test/resources/jetty}} directory. One reason
for this is that for transport binding tests it is required that the server
certificate is issued for the hostname on which the server is running, so I
generated separate certificate with "localhost" CN. It is interesting that the
existing Rampart https tests do not fail currently and reason seems to be that
they do not request the WSDL but directly sent the request to the endpoint
(using Http client). I'm currently working on another test case that
initializes a ServletClient from a wsdl URL and it fails right away during the
SSL handshake if the server certificate is not issued for "localhost" CN. The
WSDL retrieval is not using Apache Http client but simple URL.openConnection()
and this is probably the reason why the behavior is different.
was (Author: detyo):
Updated the patch to use separate client/server keystores for Jetty instead of
the interop2.jks one. These need to be placed under
/modules/rampart-integration/src/test/resources/jetty directory. One reason for
this is that for transport binding tests it is required that the server
certificate is issued for the hostname on which the server is running, so I
generated separate certificate with "localhost" CN. It is interesting that the
existing Rampart https tests do not fail currently and reason seems to be that
they do not request the WSDL but directly sent the request to the endpoint
(using Http client). I'm currently working on another test case that
initializes a ServletClient from a wsdl URL and it fails right away during the
SSL handshake if the server certificate is not issued for "localhost" CN.
> Enable Rampart transport binding integration tests
> --------------------------------------------------
>
> Key: RAMPART-416
> URL: https://issues.apache.org/jira/browse/RAMPART-416
> Project: Rampart
> Issue Type: Improvement
> Components: rampart-integration
> Affects Versions: 1.6.2, 1.7.0
> Reporter: Detelin Yordanov
> Attachments: client.jks, rampart_jetty.patch, rampart_jetty.patch,
> server.jks
>
>
> Rampart transport binding integration tests are currently disabled since
> https support is not available using Axis2 SimpleHttpServer. These can be
> enabled if SimpleHttpServer is replaced with embedded Jetty server configured
> with SSL support. This would improve the Rampart integration test coverage
> and allow contributing additional integration tests which use transport
> binding policy.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
