subject:"\[Dev\] \[AM 2.0\] Hostname verification issue when calling key validation service"

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

2016-09-06 Thread Chamila Adhikarinayake

You have to create a certificate for the keymanager node with CN as
keymanager and then import that certificate to AM client-trustore.jks. This
should fix the issue. See this blog[1] for similar issue

[1]
https://medium.com/@dunithd/wso2-das-how-to-fix-javax-net-ssl-sslexception-160c13bc8fe7#.wnbvm5mvv

On Tue, Sep 6, 2016 at 11:57 AM, Supun Malinga  wrote:

> Hi,
>
> When gateway is validating token with keymanager, getting the following
> error at gateway worker log,
>
> [2016-09-06 06:09:22,013]  INFO - HTTPSender Unable to sendViaPost to url[
> https://keymanager:9443/services/APIKeyValidationService]
> javax.net.ssl.SSLException: hostname in certificate didn't match:
>  != 
> 
>
> Looks like keymanager is rejecting the requests.
> How do I allow all hostnames here?.
>
> In keymanager wso2server.sh I see following enabled already,
>
> -Dorg.opensaml.httpclient.https.disableHostnameVerification=true \
> -Dorg.wso2.ignoreHostnameVerification=true \
>
> thanks,
> --
> Supun Malinga
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>


-- 
Regards,
Chamila Adhikarinayake
Software Engineer
WSO2, Inc.
Mobile - +94712346437
Email  - chami...@wso2.com
Blog  -  http://helpfromadhi.blogspot.com/
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

2016-09-06 Thread Abimaran Kugathasan

Hi Supun,

You need to create the certificate for that particular hostname. Hostname
is strictly verified in products which are based on carbon 4.4.x.  There
aren't any way to disable this hostname verification.

On Tue, Sep 6, 2016 at 12:01 PM, Supun Malinga  wrote:

> Also, in gateway axis2.xml transport Sender, hostname verifier is
> configured..
>
> AllowAll
>
>
> On Tue, Sep 6, 2016 at 11:57 AM, Supun Malinga  wrote:
>
>> Hi,
>>
>> When gateway is validating token with keymanager, getting the following
>> error at gateway worker log,
>>
>> [2016-09-06 06:09:22,013]  INFO - HTTPSender Unable to sendViaPost to url[
>> https://keymanager:9443/services/APIKeyValidationService]
>> javax.net.ssl.SSLException: hostname in certificate didn't match:
>>  != 
>> 
>>
>> Looks like keymanager is rejecting the requests.
>> How do I allow all hostnames here?.
>>
>> In keymanager wso2server.sh I see following enabled already,
>>
>> -Dorg.opensaml.httpclient.https.disableHostnameVerification=true \
>> -Dorg.wso2.ignoreHostnameVerification=true \
>>
>> thanks,
>> --
>> Supun Malinga
>>
>
>
>
> --
> Supun Malinga
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>


-- 
Thanks
Abimaran Kugathasan
Senior Software Engineer - API Technologies

Email : abima...@wso2.com
Mobile : +94 773922820


  
  
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

2016-09-06 Thread Supun Malinga

Also, in gateway axis2.xml transport Sender, hostname verifier is
configured..

AllowAll


On Tue, Sep 6, 2016 at 11:57 AM, Supun Malinga  wrote:

> Hi,
>
> When gateway is validating token with keymanager, getting the following
> error at gateway worker log,
>
> [2016-09-06 06:09:22,013]  INFO - HTTPSender Unable to sendViaPost to url[
> https://keymanager:9443/services/APIKeyValidationService]
> javax.net.ssl.SSLException: hostname in certificate didn't match:
>  != 
> 
>
> Looks like keymanager is rejecting the requests.
> How do I allow all hostnames here?.
>
> In keymanager wso2server.sh I see following enabled already,
>
> -Dorg.opensaml.httpclient.https.disableHostnameVerification=true \
> -Dorg.wso2.ignoreHostnameVerification=true \
>
> thanks,
> --
> Supun Malinga
>



-- 
Supun Malinga
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[Dev] [AM 2.0] Hostname verification issue when calling key validation service

2016-09-06 Thread Supun Malinga

Hi,

When gateway is validating token with keymanager, getting the following
error at gateway worker log,

[2016-09-06 06:09:22,013]  INFO - HTTPSender Unable to sendViaPost to url[
https://keymanager:9443/services/APIKeyValidationService]
javax.net.ssl.SSLException: hostname in certificate didn't match:
 != 


Looks like keymanager is rejecting the requests.
How do I allow all hostnames here?.

In keymanager wso2server.sh I see following enabled already,

-Dorg.opensaml.httpclient.https.disableHostnameVerification=true \
-Dorg.wso2.ignoreHostnameVerification=true \

thanks,
-- 
Supun Malinga
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

Re: [Dev] [AM 2.0] Hostname verification issue when calling key validation service

[Dev] [AM 2.0] Hostname verification issue when calling key validation service

4 matches

Site Navigation

Mail list logo

Footer information