If tomcat is complaining that it can't find the SSL
certifcate, then I don't think your problem is with
Laszlo rather it's your tomcat configuration. Look at
$CATALINA_HOME/conf/server.xml where $CATALINA_HOME is
the ENV variable that represents your base tomcat
directory. The server.xml file is likely to have
something like this:
FOR Tomcat 4.x
<!-- Define an SSL HTTP/1.1 Connector on port 8443
-->
<Connector
className="org.apache.catalina.connector.http.HttpConnector"
port="8443" minProcessors="5"
maxProcessors="75"
enableLookups="true"
acceptCount="10" debug="0"
scheme="https" secure="true">
<Factory
className="org.apache.catalina.net.SSLServerSocketFactory"
clientAuth="false" protocol="TLS"
keystoreFile="conf/keystore" />
</Connector>
OR FOR Tomcat 5.x
<-- Define a SSL Coyote HTTP/1.1 Connector on port
8443 -->
<Connector
port="8443" minProcessors="5"
maxProcessors="75"
enableLookups="true"
disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https"
secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="conf/keystore" />
It may be commented out, so you'll need to uncomment
it and change the properties accordingly. The 2
attribute values you'll likely change are 'port' and
'keystoreFile' to reflect your configuration. Based on
the URL in your email, I'll assume your port is likely
to be 443 instead of 8443. And 'keystore' is the file
name of your certificate you generated. Note,
according to the above configuration, the keystore
file should be under the conf dir which is the same
directory for your server.xml file. By default, the
keystoreFile attribute is not required in the
configuration, if it's not there, then tomcat expects
the certificate to be in your home dir. Or you can
place the certificate somewhere else and just map it
properly like the above configuration. Restart tomcat
and see if it's happy.
Actually because the SSL handshake is all handled via
the servlet container (tomcat) which all occurs before
the LPS servlet will be invoked, you should test just
the SSL and tomcat first before you test an LPS
example over SSL. Assuming you didn't remove any of
the tomcat examples that come with it by default you
should just try your base URL over http and see if the
tomcat 'welcome' page displays. Then, try it over
https and if the 'welcome' page displays over https
then you're safe to try a Laszlo example over https.
HTH,
Duc
--- Lukasz Ruminski <[EMAIL PROTECTED]> wrote:
> please anyone?
> how do i get laszlo working with a self signed
> certificate?
>
> Lukasz Ruminski wrote:
> > i get the following error trying to retrieve an
> https data source..
> > ERROR: data source error for
> >
>
https://office.sonicunyon.com/lps/system/?action=login&fldPassword=asd&fldUsername=asd:
>
> > SSL exception:
> java.security.cert.CertificateException: Could not
> find
> > trusted certificate
> >
> > does anyone know how i can tell tomcat to accept
> my self-signed
> > certificate?
> >
>
> _______________________________________________
> Laszlo-dev mailing list
> [email protected]
>
http://www.openlaszlo.org/mailman/listinfo/laszlo-dev
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
_______________________________________________
Laszlo-dev mailing list
[email protected]
http://www.openlaszlo.org/mailman/listinfo/laszlo-dev
