certs are supposed to be generated without passwords. Even in apache, etc, if you protect them with a password it will be asked every time the process is started, and web2py (rocket) doesn't support that.
On Friday, November 2, 2012 6:21:00 AM UTC+1, Amit wrote: > > Hi , > > I generated CA certificates, private key, server certificate and client > certificate using “Simpatica” application developed in web2py. > > But when I tried to deploy the certificates to rocket server using below > command on windows XP machine: > > > > D:\web2py2.1.1\web2py>web2py.py --ssl_certificate=D:\certificates\server\ > cert.pe > > m --ssl_private_key=D:\certificates\private_key\cacert.key > --ca-cert=D:\certific > > ates\CA_certificate\cacrt.pem > > > > It starts web2py server dialog asking about password and after giving > password, it displays below information on the command prompt: > > > > No handlers could be found for logger "web2py" > > web2py Web Framework > > Created by Massimo Di Pierro, Copyright 2007-2012 > > Version 2.1.1 (2012-10-15 12:44:40) stable > > Database drivers available: SQLite(sqlite3), MySQL(pymysql), > PostgreSQL(pg8000), > > IMAP(imaplib) > > please visit: > > https://127.0.0.1:8000 > > starting browser... > > Enter PEM pass phrase: > > Enter PEM pass phrase: > > Enter PEM pass phrase: > > > > As per the sequence of certificates on command line, I gave password for > e.g. for cert.pem(server certificate file) , I have given Server@123, and > for cacert.key(CA private key) and cacert.pem(CA certificate) , I have > given test123. > > NOTE: These passwords are used while generating the respective > certificates means for generating cert.pem , I used Server@123 and so on. > > So on above scenario , I have given password Server@123,test123 and > test123 on command prompt but it is giving following error on browser: > > > > *Secure Connection Failed > > An error occurred during a connection to 127.0.0.1:8000. > > Cannot communicate securely with peer: no common encryption algorithm(s). > > (Error code: ssl_error_no_cypher_overlap) > > The page you are trying to view cannot be shown because the authenticity > of the received data could not be verified. > Please contact the website owners to inform them of this problem. > Alternatively, use the command found in the help menu to report this broken > site.* > > > > > > Could anyone please help me out to resolve this issue? > > > > Regards, > > Amit > --
