On Mittwoch 09 April 2008 wrote Dirk Ronsmans: <snip/> > 1) I'm currently using a self-signed certificate. If i change this to a > "real" certificate signed by a trusted authority will i still have to > use a custom TrustManager or will it simply accept the certificate > without a hassle? I have to admit I haven't used xmlrpc since some time now, but I'm pretty certain that you still have to implement your own way to deal with certs. Yet having your cert signed by a trusted authority makes things a bit easier.
Loading the keystore and certificate chains that come with the JDK might already be enough, as you got most known authorities certificates stored in there already. > > 2) If question 1 has a negative answer, is there an example out there > on how to customize the TrustManager to only allow your certificate? ( > thru java and not manually adding the certificate to the system ( > sortoff add the trust on startup of the program)) > <snip/> The answer above should make answering your second question obsolete. I case you still have question, feel free to ask. > Kind Regards, > > Dirk Ronsmans > Thomas Gärtner -- Thomas Gaertner ( host leela ) Brandenburg Technical University at Cottbus --------------------------------------------------------------- Please send only plain ASCII-Mail. In case your Mail will be turned down, use <tga at gottlos dot org>. -- >> There is not one truth only out there << --- PGP-Public-Key http://www-stud.informatik.tu-cottbus.de/~tgaertne/public-pgp-2048.04232001.asc
signature.asc
Description: This is a digitally signed message part.
