Hi Keiji, Haha, sorry, I didn't really get your idea. Actually, apache is the redundant, if you don't need to use the features from apache like php and other, then you can directly use tomcat to handler the ssl and lps. If that the case, then can save some job on configure the apache and its ssl. In additional, direct using tomcat to handler ssl cert, we can get more information compare to information we gather from mod_jk.
Or else, just use solo mode. Then everything is handle by apache because it just a swf file. If using proxy mode, then no choice, more configurations need to be done. Virtual hosting = both apache and tomcat SSL = apache + java + tomcat(??) Cheers, James -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of keiji Ono Sent: Tuesday, November 13, 2007 4:06 PM To: Laszlo Users Subject: Re: [Laszlo-user] LPS need some setting to use SSL? Hi Ong, Thank you for your so quick reply. I read the page as you said. There were a lot of steps to use SSL. =-O I am wondering this configuration ( apache/tomcat/lps ) need so high level setting to use SSL. Are there any another simple procedure ? In the configuration without LPS, it worked fine. So i doubt just in LPS. Keiji Ono [EMAIL PROTECTED] Ong Leong Seng wrote: >Hi, > >I believe you configure your SSL at httpd that require client cert for >verification. > >You need to import your server cert and ca cert to java runtime keystore file. >For my case which run linux, this file stored at >/usr/java/jdkxxx/jre/lib/security/ and the file name is jssecacert or cacert. > >One imported, then you need to restart tomcat. This happened due to java >runtime also verify the client cert that pass from httpd to tomcat. However, >before the CA and server cert is added, java runtime can't identify the CA >cert to validate the client cert. > >Please refer to this link to understand more >http://marc.info/?l=tomcat-user&m=106293430225790&w=2 > >Hope my suggestion work for you. > >Cheers, >James > > > >-----Original Message----- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of keiji Ono >Sent: Tuesday, November 13, 2007 2:44 PM >To: Laszlo Users >Subject: [Laszlo-user] LPS need some setting to use SSL? > >Hi, > >I am working on lps-3.4.0 on Apache/Tomcat. >When i was using SSL on Proxy mode, i got error as following in lps.log >file. >And a server side program( jsp ) did not return any responses. > ><?xml version="1.0" encoding="UTF-8"?><!DOCTYPE >laszlo-data><resultset><error status="2" >msg="https://myserver.com/my-test/myjsp.jsp data source error: SSL >exception occurred: sun.security.validator.ValidatorException: PKIX path >building failed: >sun.security.provider.certpath.SunCertPathBuilderException: unable to >find valid certification path to requested target"/></resultset> > >I found the similar trouble in the forum, but it was just on Tomcat ( no >Apache ) and it was so old comment. >http://forum.openlaszlo.org/showthread.php?t=509 > >I confirmed it works on SOLO, but on Proxy did not work. It should be >need some setting on LPS, i guess. >But i have no idea to resolve this issue. >My environments are as following. > >OS: Client WinXP Server Linux >Tomcat: 5.0.28 >Apache: 2.0.49 >OpenSSL: 0.9.7d >mod_jk: 1.2.25 >Cert: my cert ( create by myself ) > >Thanks in advance. > >Keiji Ono >[EMAIL PROTECTED] > >No virus found in this incoming message. >Checked by AVG Free Edition. >Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 >9:19 PM > > >No virus found in this outgoing message. >Checked by AVG Free Edition. >Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 >9:19 PM > > >------------------------------------------------------------------ >- >- >- >DISCLAIMER: > >This e-mail (including any attachments) may contain confidential >information. If you are not the intended recipient, you are hereby >notified that any dealing, review, distribution, printing, copying >or use of this e-mail is strictly prohibited. If you have received >this email in error, please notify the sender or MIMOS Berhad >immediately and delete the original message. Opinions, conclusions >and other information in this e-mail that do not relate to the >official business of MIMOS Berhad and/or its subsidiaries shall be >understood as neither given nor endorsed by MIMOS Berhad and/or its >subsidiaries and neither MIMOS Berhad nor its subsidiaries accepts >responsibility for the same. All liability arising from or in >connection with computer viruses and/or corrupted e-mails is >excluded to the fullest extent permitted by law. > > > > > -- ------------------------------------------ (株)ネットエイト 小野圭二 [EMAIL PROTECTED] 東京都江戸川区瑞江1-45-11 TEL 03(3676)6599 URL http://www.net8.co.jp ------------------------------------------ No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 9:19 PM No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 9:19 PM ------------------------------------------------------------------ - - - DISCLAIMER: This e-mail (including any attachments) may contain confidential information. If you are not the intended recipient, you are hereby notified that any dealing, review, distribution, printing, copying or use of this e-mail is strictly prohibited. If you have received this email in error, please notify the sender or MIMOS Berhad immediately and delete the original message. Opinions, conclusions and other information in this e-mail that do not relate to the official business of MIMOS Berhad and/or its subsidiaries shall be understood as neither given nor endorsed by MIMOS Berhad and/or its subsidiaries and neither MIMOS Berhad nor its subsidiaries accepts responsibility for the same. All liability arising from or in connection with computer viruses and/or corrupted e-mails is excluded to the fullest extent permitted by law.
