Hello All, After reading this entry in the user guide on writing a client using HTTPS, I think it could be extended:
http://xfire.codehaus.org/HTTP+Transport Currently the code allows for the user to establish an HTTPS connection with the server, but I think does not account for sending a client certificate for mutual authentication. You can add this code: key = new KeyMaterial(new File("/home/yogesh/yogesh.key"), keyStorePass); protocolSocketFactory.setKeyMaterial(key); Now it will verify that the server cert is in the truststore based on the original code. In addition it will also send a client certificate from the 'yogesh.key' java keystore. I did this and was able to do mutual authentication using Xfire, Jaxb, and X509 certs. Hopefully 'not yet commons ssl' will become part of the commons http client distribution soon. Cheers, Yogesh --------------------------------------------------------------------- To unsubscribe from this list please visit: http://xircles.codehaus.org/manage_email
