Sorry list, I'm getting desperate.
Perhaps my question I've submitted a couple times is too vague. I'll
try asking a few specific ones...
If I am able to create a .keyfile, do I have JSSE installed correctly?
Does Tomcat use the JSSE directly from
org.apache.tomcat.net.SSLSocketFactory or does it have all the classes
necessary to create the port itself (and the JSSE is used to create the
keyfile only)?
Besides placing the JSSE jars in the lib/ext directory, and creating a
keyfile, is there anything else that needs to be directly configured in
the JRE?
Thanks for any insight anyone can give. If I could just ask someone who
has set this up before a couple questions I would be extremely grateful!
Regards, Aaron
-----Original Message-----
From: Rutledge, Aaron
Sent: Wednesday, May 22, 2002 7:21 AM
To: Tomcat Users List
Subject: RE: Enabling SSL in tomcat
Hello,
I keep seeing the topic of SSL configuration come up, but I have yet
heard anyone with a simmilar problem as mine. I am surprised this can
be so problematic since it seems so straight forward.
I tried using Joaquin's example and got the same exception...
StandardWrapperValve[jsp]: Servlet.service() for servlet jsp threw
exception
java.lang.IllegalStateException
at
org.apache.catalina.connector.ResponseFacade.getWriter(ResponseFacade.ja
va:159)
Anyone have any idea why the connector would throw this kind of
exception? As soon as I remove the connector Tomcat loads fine. Here
is my current connector configuration in server.xml...
<Connector className="org.apache.tomcat.service.PoolTcpConnector">
<Parameter name="handler"
value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
<Parameter name="port" value="8443"/>
<Parameter name="socketFactory"
value="org.apache.tomcat.net.SSLSocketFactory" />
<Parameter name="keystore" value="C:\Documents and
Settings\*******\.keystore" />
<Parameter name="keypass" value="*******" />
</Connector>
I also received the same exception using the example configuration. I
wish I at least knew where to start looking. I've read over the How To
a million times. Is it as simple as adding the jcert.jar, jnet.jar,
jsse.jar files to the jre/lib/ext directory, creating a .keyfile and
adding the connector in server.xml? Am I missing something? I read
through some of the docs sun provides with JSSE and it mentions adding
some information to java.security. I tried that without success. Can
anyone tell me if they can think of any steps that I might have missed?
I am going crazy.
Best regards to all, Aaron
-----Original Message-----
From: Rajesh Harikrishnan [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 22, 2002 1:43 AM
To: Tomcat Users List
Subject: Re: Enabling SSL in tomcat
Hi Ajay,
I also faced similar problem when tried to configure SSL on tomcat,
then
tried what 'J' told, but due to Java's security permission for file
reading
in local device's tomcat was possing a different 'IO Exception error'. I
finally had it running after a work around, that is.
I copied the '.keystore' file from the 'winnt\profiles\..' to the
'winnt\profiles\default user'. Now my configuration works in perfect
shape.
Thanks for an intersting question.
Regards
H.Rajesh
[EMAIL PROTECTED]
SoftSolutions Pvt. Ltd.,
Chennai, India.
========================================================================
====
========
----- Original Message -----
From: "Joaquín Sánchez Jiménez" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Wednesday, May 15, 2002 12:58 PM
Subject: Re: Enabling SSL in tomcat
Hi:
Try with this.
<Connector className="org.apache.tomcat.service.PoolTcpConnector">
<Parameter name="handler"
value="org.apache.tomcat.service.http.HttpConnectionHandler"/>
<Parameter name="port" value="8443"/>
<Parameter name="socketFactory"
value="org.apache.tomcat.net.SSLSocketFactory" />
<Parameter name="keystore" value="C:\WINNT\Profiles\ajay\.keystore" />
<Parameter name="keypass" value="xxxxxxxx" />
</Connector>
Bye.
J.
----- Original Message -----
From: "Ajay Chauhan" <[EMAIL PROTECTED]>
To: "Tomcat Users List" <[EMAIL PROTECTED]>
Sent: Thursday, May 16, 2002 9:09 AM
Subject: Enabling SSL in tomcat
> I am facing one problem while enabling SSL in Tomcat on windows NT
server.
I
> have created the keystore using the following command:
>
> keytool -genkey -alias tomcat -keyalg RSA
>
> using changeit password. It has created .keystore file in <user.home>
> directory. Say if my login is ajay then the files is created in :
> C:\WINNT\Profiles\ajay directory, which is the value of
> System.getProperty("user.home").
>
> However when I start the Tomcat server, the jvm.stderr log files show
the
> following error and tomcat does not start:
>
> java.io.FileNotFoundException: C:\WINNT\Profiles\Default
User\.keystore
(The
> system cannot find the file specified)
> at java.io.FileInputStream.open(Native Method)
> at java.io.FileInputStream.<init>(Unknown Source)
> at
>
org.apache.tomcat.net.SSLSocketFactory.initKeyStore(SSLSocketFactory.jav
a:22
> 0)
> at
>
org.apache.tomcat.net.SSLSocketFactory.initProxy(SSLSocketFactory.java:1
60)
> at
>
org.apache.tomcat.net.SSLSocketFactory.createSocket(SSLSocketFactory.jav
a:11
> 8)
> at
>
org.apache.tomcat.service.PoolTcpEndpoint.startEndpoint(PoolTcpEndpoint.
java
> :239)
> at
>
org.apache.tomcat.service.PoolTcpConnector.start(PoolTcpConnector.java:1
88)
> at
> org.apache.tomcat.core.ContextManager.start(ContextManager.java:527)
> at org.apache.tomcat.startup.Tomcat.execute(Tomcat.java:202)
> at org.apache.tomcat.startup.Tomcat.main(Tomcat.java:235)
>
> This problem does not appear in Windows NT Workstation. In the
workstation
> the <user.home> property is the same as required by the Tomcat server
at
run
> time.
>
> If anyone face the same problem earlier and have the solution please
reply
> ASAP.
>
> Regards,
> Ajay
>
>
>
>
>
>
>
> --
> To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
> For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
>
>
--
To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
--
To unsubscribe, e-mail:
<mailto:[EMAIL PROTECTED]>
For additional commands, e-mail:
<mailto:[EMAIL PROTECTED]>
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
