This is off topic but may be helpful to others trying to get SSL/HTTPS working in Java
so am responding to the list.
This is not a SOAP, Axis or Apache problem but a problem in the underlying JSSE or Java security infrastructure on your client.
This infrastructure provides the additional technology to enable SSL sockets and HTTPS protocol interactions.
If you are using Java2 v1.4 JSSE is now part of the SDK.
Sounds like you may be using v 1.3.x or lower. In that case you need to separately download and install JSSE from the
java.sun.com website.
Then you need to import the root certificate of the signing CA (certificate authority).
If the server has a self-signed certificate, you will need to get it from the admin of the server.
You will need to use the key/store management tool "keytool" that comes with the Java SDK's to import it into the Java trusted keystore.
If the signer is a well-known trsuted CA like Verisign or Thawte, your keystore has this already and no import is necessary.
If some or all of this sounds like Greek to you, you can find out more about this in the Java Security tutorial on the java.sun.com website.
Pl. note that the security infrastructure has changed in every recent major Java2 SDK release - 1.2 to 1.3 and 1.3 to 1.4 as well, so
you will need to find the correct approach for your specific Java version.
Hope this helps.
--
Statistics show that most people are in the majority, while fewer are in the minority
Nitin Borwankar
[EMAIL PROTECTED]
Jack Byrne wrote:
Hello,
I am trying to access an external site using SOAP and HTTPS.
I am getting the following exception:
As I am trying to access a Remote Server, do I need its certificate (I presume Public Key) to access the remote site.
I have written a SOAP Client (using the autogenerated bindings from WSDL2Java in Axis). It appears that my Exception is happening
before any request is made to the Remote SOAP Server which leads me to beleive I need some sort of certificate on the SOAP Client
side in order to access the SOAP Service.
All help on next steps are appreciated
AxisFault
faultCode: {http://xml.apache.org/axis/}Server.userException
faultString: javax.net.ssl.SSLHandshakeException: java.security.cert.Certificat
eException: Couldn't find trusted certificate
faultActor: null
faultDetail:
stackTrace: javax.net.ssl.SSLHandshakeException: java.security.cert.Cert
ificateException: Couldn't find trusted certificate
at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA6275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA6275)
at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFac
tory.java:244)
at org.apache.axis.transport.http.HTTPSender.getSecureSocket(HTTPSender.
java:156)
at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:116)
at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrateg
y.java:71)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:156)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java:126)
at org.apache.axis.client.AxisClient.invoke(AxisClient.java:182)
at org.apache.axis.client.Call.invokeEngine(Call.java:2113)
at org.apache.axis.client.Call.invoke(Call.java:2102)
at org.apache.axis.client.Call.invoke(Call.java:1851)
at org.apache.axis.client.Call.invoke(Call.java:1777)
at org.apache.axis.client.Call.invoke(Call.java:1315)
at finger.ws.FingerSoapBindingStub.fingerGet(FingerSoapBindingStub.java:
201)
at SOAPFingerClient.main(SOAPFingerClient.java:21)
Caused by: java.security.cert.CertificateException: Couldn't find trusted certif
icate
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.a(DashoA6275)
at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(
DashoA6275)
at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(
DashoA6275)
... 20 more
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
-- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
