Return-Path: Delivered-To: apmail-ws-axis-dev-archive@www.apache.org Received: (qmail 25169 invoked from network); 20 Jan 2005 16:27:30 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 20 Jan 2005 16:27:30 -0000 Received: (qmail 38549 invoked by uid 500); 20 Jan 2005 16:27:26 -0000 Delivered-To: apmail-ws-axis-dev-archive@ws.apache.org Received: (qmail 38518 invoked by uid 500); 20 Jan 2005 16:27:25 -0000 Mailing-List: contact axis-dev-help@ws.apache.org; run by ezmlm Precedence: bulk Reply-To: axis-dev@ws.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list axis-dev@ws.apache.org Received: (qmail 38503 invoked by uid 99); 20 Jan 2005 16:27:25 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=RCVD_BY_IP,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: domain of driedtoast@gmail.com designates 64.233.170.202 as permitted sender) Received: from rproxy.gmail.com (HELO rproxy.gmail.com) (64.233.170.202) by apache.org (qpsmtpd/0.28) with ESMTP; Thu, 20 Jan 2005 08:27:24 -0800 Received: by rproxy.gmail.com with SMTP id j1so242rnf for ; Thu, 20 Jan 2005 08:27:22 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=oN30gMzmCiNQQcqvbLk2g/oUzq4ij37Sh7EHgt2PPpBsJlHJUM7+hYJlFJA1tokwJcFXKepSGf/DoYPNLfdEjsvDC4tUMRdYNfzBfwo8OTmmyM7Cy7COQWVLePNt8VbH0OQ7YmhuYo0Nw9vxkV7ch2YPBFI3PE6eqoKSRgIjDE0= Received: by 10.38.82.33 with SMTP id f33mr20227rnb; Thu, 20 Jan 2005 08:27:22 -0800 (PST) Received: by 10.39.3.55 with HTTP; Thu, 20 Jan 2005 08:27:22 -0800 (PST) Message-ID: <4ccd449e050120082767fd2689@mail.gmail.com> Date: Thu, 20 Jan 2005 08:27:22 -0800 From: Dan Marchant Reply-To: Dan Marchant To: axis-dev@ws.apache.org, figueire@adinet.com.uy Subject: Re: Trust in any certificate In-Reply-To: <414D12DA000C69E9@nfs01.in.adinet.com.uy> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable References: <414D12DA000C69E9@nfs01.in.adinet.com.uy> X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N Joaco, You could try creating your own TrustManager (-Djavax.net.ssl.TrustManager=3D ), protocol handler for https (-Djava.protocol.handler.pkgs=3D) or better yet try and get around it with making your own Hostname verifier (-Djavax.net.ssl.HostnameVerifier=3D). If you're on weblogic there are a couple other options available to you that are more proprietary and most of the time each app server has it's own flavor of cert trust verification. Try and use the Hostname verifier option it might work out for what you are trying to do. - Dan On Wed, 19 Jan 2005 14:59:30 -0300, Joaco wrote: > I=B4ve a problem with ssl, I need my WS trust in any certificate, >=20 > For it, I did a TrustSocketFactory that trust in any certificate and > I modify HttpSernder class : >=20 > ???????????? > if (protocol.equals("https")) { > TrustSocketFactory factory =3D new TrustSocketFactory(); > return factory.createSocket(host,port); >=20 > }else { > SocketFactory factory =3D SocketFactoryFactory.getFactory(protoco= l, > getOptions()); > return factory.create(host, port, otherHeaders, useFullURL); > } > ??????. > and it=B4s work ! >=20 > The problem is?. Now I can=B4t modify axis.jar, so?.. > somebody can help me ???? pls ! >=20 > can I set SocketFactoryFactoy.getFactory()?by ouside (like a propertie ) > so that it uses my factory > Thanks > Joaco >=20 >