Hi
I am trying to use client authentication in the HTTP binding component.
In the xbean file for my endpoint I do NOT have a setting for managed (so it
defaults to false).
I do have a the trust store set.
The problem is that the trust that is used is the default on not the one I
have used.
I tried adding my client certificate to the default trust store and I got a
connection so I know that all else is fine.
When I look at the code I find:
org.apache.servicemix.http.jetty.JettyContextManager.CreateServer()
…
if (isSsl && ssl.isManaged()) {
…
sslConnector.setTrustStore(ssl.getTrustStore());
…
} else if (isSsl) {
< No call to sslConnector.setTrustStore>
…
I can see 2 options here:
1 - I am required to us a managed connection if I want to us client
certificates
or
2 - We need to set the trust store is using an unmanaged ssl connection.
I hope that the answer is 2. If so I will raise a issue and upload a patch.
Thanks
David Potter
--
View this message in context:
http://www.nabble.com/Problem-with-HTTP-componet%2C-SSL-and-client-certificates-tf3826403s12049.html#a10831945
Sent from the ServiceMix - User mailing list archive at Nabble.com.
