Hello: Maybe this question a bit off topic , but I try to understand why my client works.
I use CXF 2.7.8 to call a remote webservice by HTTPS (SSL /TLS) This is my settings: <http-conf:conduit name="https://.*";> <http-conf:tlsClientParameters> <sec:keyManagers keyPassword="xxxxxxxx"> <sec:keyStore type="JKS" password="xxxxxxxx" resource="truststore.jks"/> </sec:keyManagers> I've imported SSL server certificate into truststore.jks And it works fine. But this certificate is signed by a CA chain ( from .godaddy.com) , and ( I think ) I don't have imported any certificate from godaddy Why does my client trust in the server certificate ? Is not performed some Certification Path Validation process ? Thanks and regards
