Hi Keiji, You are most welcome. Actually I just finish suffer form this issue.
I also have another difficulty and may be you know the solution. ---------------------------------------- I have jsp script that generates dataset for my Laszlo application. In the jsp, I put a constraint that only certification verified user able to make the request. If I use web browser and direct make the request to the jsp file. The dataset returned as expected. But when I use dataset.doRequest(), it failed because jsp can't detect the cert. I double check then found out that, flash player doesn't send/include the user cert used in browser when make the request to server. --------------------------------------- Got Headache now on this issue. Cheers, James -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of keiji Ono Sent: Tuesday, November 13, 2007 4:49 PM To: Laszlo Users Subject: Re: [Laszlo-user] LPS need some setting to use SSL? Hi Ong, Ok, i keep in mind it is awful thing to use SSL on this configuration. :^) I should handle with SOLO or like php on this configuration as you said. It good for me to be clear *no choice* from you. Thank you again. Keiji Ono [EMAIL PROTECTED] Ong Leong Seng wrote: >Hi Keiji, > >Haha, sorry, I didn't really get your idea. Actually, apache is the redundant, >if you don't need to use the features from apache like php and other, then you >can directly use tomcat to handler the ssl and lps. If that the case, then can >save some job on configure the apache and its ssl. In additional, direct using >tomcat to handler ssl cert, we can get more information compare to information >we gather from mod_jk. > >Or else, just use solo mode. Then everything is handle by apache because it >just a swf file. If using proxy mode, then no choice, more configurations need >to be done. > >Virtual hosting = both apache and tomcat >SSL = apache + java + tomcat(??) > >Cheers, >James > >-----Original Message----- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of keiji Ono >Sent: Tuesday, November 13, 2007 4:06 PM >To: Laszlo Users >Subject: Re: [Laszlo-user] LPS need some setting to use SSL? > >Hi Ong, > >Thank you for your so quick reply. >I read the page as you said. There were a lot of steps to use SSL. =-O >I am wondering this configuration ( apache/tomcat/lps ) need so high >level setting to use SSL. >Are there any another simple procedure ? >In the configuration without LPS, it worked fine. So i doubt just in LPS. > >Keiji Ono >[EMAIL PROTECTED] > > >Ong Leong Seng wrote: > > > >>Hi, >> >>I believe you configure your SSL at httpd that require client cert for >>verification. >> >>You need to import your server cert and ca cert to java runtime keystore >>file. For my case which run linux, this file stored at >>/usr/java/jdkxxx/jre/lib/security/ and the file name is jssecacert or cacert. >> >>One imported, then you need to restart tomcat. This happened due to java >>runtime also verify the client cert that pass from httpd to tomcat. However, >>before the CA and server cert is added, java runtime can't identify the CA >>cert to validate the client cert. >> >>Please refer to this link to understand more >>http://marc.info/?l=tomcat-user&m=106293430225790&w=2 >> >>Hope my suggestion work for you. >> >>Cheers, >>James >> >> >> >>-----Original Message----- >>From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of keiji Ono >>Sent: Tuesday, November 13, 2007 2:44 PM >>To: Laszlo Users >>Subject: [Laszlo-user] LPS need some setting to use SSL? >> >>Hi, >> >>I am working on lps-3.4.0 on Apache/Tomcat. >>When i was using SSL on Proxy mode, i got error as following in lps.log >>file. >>And a server side program( jsp ) did not return any responses. >> >><?xml version="1.0" encoding="UTF-8"?><!DOCTYPE >>laszlo-data><resultset><error status="2" >>msg="https://myserver.com/my-test/myjsp.jsp data source error: SSL >>exception occurred: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target"/></resultset> >> >>I found the similar trouble in the forum, but it was just on Tomcat ( no >>Apache ) and it was so old comment. >>http://forum.openlaszlo.org/showthread.php?t=509 >> >>I confirmed it works on SOLO, but on Proxy did not work. It should be >>need some setting on LPS, i guess. >>But i have no idea to resolve this issue. >>My environments are as following. >> >>OS: Client WinXP Server Linux >>Tomcat: 5.0.28 >>Apache: 2.0.49 >>OpenSSL: 0.9.7d >>mod_jk: 1.2.25 >>Cert: my cert ( create by myself ) >> >>Thanks in advance. >> >>Keiji Ono >>[EMAIL PROTECTED] >> >>No virus found in this incoming message. >>Checked by AVG Free Edition. >>Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 >>9:19 PM >> >> >>No virus found in this outgoing message. >>Checked by AVG Free Edition. >>Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 >>9:19 PM >> >> >>------------------------------------------------------------------ >>- >>- >>- >>DISCLAIMER: >> >>This e-mail (including any attachments) may contain confidential >>information. If you are not the intended recipient, you are hereby >>notified that any dealing, review, distribution, printing, copying >>or use of this e-mail is strictly prohibited. If you have received >>this email in error, please notify the sender or MIMOS Berhad >>immediately and delete the original message. Opinions, conclusions >>and other information in this e-mail that do not relate to the >>official business of MIMOS Berhad and/or its subsidiaries shall be >>understood as neither given nor endorsed by MIMOS Berhad and/or its >>subsidiaries and neither MIMOS Berhad nor its subsidiaries accepts >>responsibility for the same. All liability arising from or in >>connection with computer viruses and/or corrupted e-mails is >>excluded to the fullest extent permitted by law. >> >> >> No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 9:19 PM No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.30/1127 - Release Date: 11/12/2007 9:19 PM ------------------------------------------------------------------ - - - DISCLAIMER: This e-mail (including any attachments) may contain confidential information. If you are not the intended recipient, you are hereby notified that any dealing, review, distribution, printing, copying or use of this e-mail is strictly prohibited. If you have received this email in error, please notify the sender or MIMOS Berhad immediately and delete the original message. Opinions, conclusions and other information in this e-mail that do not relate to the official business of MIMOS Berhad and/or its subsidiaries shall be understood as neither given nor endorsed by MIMOS Berhad and/or its subsidiaries and neither MIMOS Berhad nor its subsidiaries accepts responsibility for the same. All liability arising from or in connection with computer viruses and/or corrupted e-mails is excluded to the fullest extent permitted by law.
