To access the session used by a connection, you must change
HTTPUtils.java or SSLUtils.java. Those are the only two places where
the socket exists. Get the session as
SSLSession session = ((SSLSocket) s).getSession();
Scott Nichol
----- Original Message -----
From: "Alf Koegel" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, December 20, 2002 4:03 AM
Subject: Re: Client wants to see the server's certificate
> Hi *!
>
> I have the same problem.
>
> OK, assume I have a SSLSession object, then to get the searched
information
> is no
> problem; but...
>
> I have only the following few lines ( cut from a tutorial ):
>
> Security.addProvider ( new com.sun.net.ssl.internal.ssl.Provider () );
> System.setProperty ( "java.protocol.handler.pkgs",
> "com.sun.net.ssl.internal.www.protocol" );
> String urlString = "https://MY_SERVER/adm/servlet/rpcrouter";;
> url = new URL ( urlString );
>
> call = new Call ();
> call.setTargetObjectURI ( MY_TARGET );
> call.setMethodName ( MY_METHOD );
> call.setEncodingStyleURI ( Constants.NS_URI_SOAP_ENC );
>
> params.addElement ( new Parameter ( "name", String.class,
> name, null ) );
> call.setParams ( params );
>
> try {
> resp = call.invoke ( url, "" );
> }
> catch ( SOAPException soapExc ) {
> }
>
> Where is the ( best ) access point to get the SSLSession?
>
> Alf Koegel
>
>
>
>
>
>
> >From: Scott Nichol <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: [EMAIL PROTECTED]
> >Subject: Re: Client wants to see the server's certificate
> >Date: Thu, 19 Dec 2002 11:43:27 -0500
> >
> >I've not used SSL, but I'd start with javax.ssl.net.SSLSession.
> >
> >Scott Nichol
> >
> >----- Original Message -----
> >From: "Ladwig, Mike" <[EMAIL PROTECTED]>
> >To: <[EMAIL PROTECTED]>
> >Sent: Thursday, December 19, 2002 10:32 AM
> >Subject: Client wants to see the server's certificate
> >
> >
> > > Hi all.
> > >
> > > I've gotten almost everything I need working in my secure soap
app.
> > > Both sides are secured with certificates, and the server uses the
> > > HTTPServletRequest to check the client's IP and certificate name.
> > >
> > > I have one last thing to do, and that is to make it possible for
the
> > > client to take a look at the X509Certificate used by the server.
I
> > > found starting points in the FAQ for all the things I have
working,
> > > but nothing on this. I
> > > don't see any way to use the Response object that comes back from
> > > call.invoke.
> > >
> > > Has anyone done this bit or have a documentation pointer that I've
> > > missed?
>
> <cut/>
>
>
> _________________________________________________________________
> Protect your PC - get McAfee.com VirusScan Online
> http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
>
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>
>
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
