axis-java-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nencho Lupanov" <nencholupa...@googlemail.com>
Subject Re: How to configure HTTPSSender?
Date Mon, 28 May 2007 10:57:21 GMT
Hi Saminda,

i guess yuo mean first export,then import :)
ok, it works that way.Strange though that it is not documented somewhere.

now, the next step should be to enforce rampart to do the client config
automatically -
e.g. using keystores, setting https endpoint?

Regards,
Nencho


2007/5/24, Saminda Abeyruwan <samindaa@gmail.com>:
>
> Hi,
>
> You are trying the SSL connection. Thus, you need the server's https
> connectors public key first. There's nothing to do with client.jks and
> server.jks coming from Rampart here.
>
> So this is what you should have do.
>
> First get hold of the wso2wsas.jks key store. I've seen this prior mails.
> As you can see wso2wsas.jks key store is bound with https connector in
> server side.
>
> 1. First create a client side key store. As follows,
>
> *keytool -genkey -alias client -keyalg RSA -keystore clientKeyStore*
>
>
> Then,
>
> 2. You need to export the public key from wso2wsas.jks. First you need to
> import the certificate.
>
>
> *keytool -import -alias wso2wsas -file wso2wsas.cer -keystore
> {location}/wso2wsas.jks*
>
>
> 3. They export this certificate to client keystore.
>
>
> *keytool -export -alias wso2wsas -keystore clientKeyStore -rfc  -file wso2wsas.cer*
>
>
> 4. Then set the prior mention properties.
>
> HTH
>
> Saminda
>
>
>
> On 5/24/07, Nencho Lupanov < nencholupanov@googlemail.com> wrote:
> >
> > Hi Saminda ,
> >
> > I havent pointed those.
> > I am pretty new at jsse, i don't now what are the values for those.
> > I only have the keystores that comes with the rampart samples -
> > client.jks,server.jks but how
> > do i know wht trustStroe are they using and what is the password for it?
> >
> > thanks,
> > Nencho
> >
> >
> > 2007/5/24, Saminda Abeyruwan <samindaa@gmail.com>:
> > >
> > > Hi,
> > >
> > > Did you set,
> > >
> > > /////////////////
> > > System.setProperty("javax.net.ssl.trustStore","{store location}");
> > >
> > > System.setProperty("javax.net.ssl.trustStorePassword","{store
> > > password}");
> > > ///////////////
> > >
> > > properties in you client.
> > >
> > > The {store location} is the client key store and it should import the
> > > public key of "wso2wsas".
> > > {store password} is the key store password to access prior.
> > >
> > > Do buzz if need further assistance.
> > >
> > > Thank you
> > >
> > > Saminda
> > >
> > >
> > >
> > > On 5/24/07, Nencho Lupanov < nencholupanov@googlemail.com > wrote:
> > > >
> > > > Hi Paul,
> > > >
> > > > The server is Tomcat5.5.
> > > > and this is the ssl config:
> > > >
> > > >
> > > > <!-- Define a SSL HTTP/1.1 Connector on port 9443 -->
> > > >
> > > > <Connector port="9443" maxHttpHeaderSize ="8192" maxThreads="150"minSpareThreads
> > > > ="25" maxSpareThreads="75" enableLookups ="false"disableUploadTimeout
> > > > ="true" acceptCount="100" scheme="https" secure="true" clientAuth="
> > > > false" sslProtocol="TLS" keystoreFile="C:\Documents and
> > > > Settings\bgnlu\.wso2wsas\conf\wso2wsas.jks " keystorePass="wso2wsas"
> > > > />
> > > > I am using the keystores that comes with the rampart samples.
> > > > Thanks,
> > > >
> > > > Neencho
> > > >
> > > >
> > > >
> > > > 2007/5/24, Paul Fremantle <pzfreo@gmail.com>:
> > > > >
> > > > > What is the server?
> > > > >
> > > > > Paul
> > > > >
> > > > > On 5/24/07, Nencho Lupanov < nencholupanov@googlemail.com>
wrote:
> > > > > > Hi Paul ,
> > > > > >
> > > > > > My endoint reference that the client is using is:
> > > > > >
> > > > > >
> > > > > > https://localhost:9443/axis2/services/sample01
> > > > > >
> > > > > > Anyway, I cannot send anything to this endpoint, I am capturing
> > > > > packets with
> > > > > > tcpmon and nothing  cames up from the client.
> > > > > >
> > > > > > the client is silent only that it throws exception:
> > > > > >
> > > > > >      [java] Exception in thread "main"
> > > > > org.apache.axis2.AxisFault:
> > > > > > Unconnected s
> > > > > > ockets not implemented; nested exception is:
> > > > > >      [java]     java.net.SocketException: Unconnected sockets
> > > > > not
> > > > > > implemented; n
> > > > > > ested exception is:
> > > > > >      [java]     org.apache.axis2.AxisFault: Unconnected sockets
> > > > > not
> > > > > > implemented;
> > > > > >  nested exception is:
> > > > > >      [java]     java.net.SocketException : Unconnected sockets
> > > > > not
> > > > > > implemented
> > > > > >      [java]     at
> > > > > > org.apache.axis2.transport.http.CommonsHTTPTransportSender.in
> > > > > <http://org.apache.axis2.transport.http.commonshttptransportsender.in/>
> > > > > > voke(CommonsHTTPTransportSender.java:227)
> > > > > >      [java]     at org.apache.axis2.engine.AxisEngine.send
> > > > > > (AxisEngine.java:674)
> > > > > >      [java]     at
> > > > > > org.apache.axis2.description.OutInAxisOperationClient.send (Ou
> > > > > > tInAxisOperation.java:237)
> > > > > >
> > > > > >
> > > > > >
> > > > > > Do you have any idea what is this about.I am working onn this
> > > > > since i would
> > > > > > like to fix the transport binding but i face lack of support
> > > > > about this.
> > > > > >
> > > > > >
> > > > > >
> > > > > > thanks,
> > > > > >
> > > > > > Nencho
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > > 2007/5/24, Paul Fremantle < pzfreo@gmail.com>:
> > > > > > >
> > > > > > > Nencho
> > > > > > >
> > > > > > > If you target a service with an HTTPS url it will
> > > > > automatically do HTTPS.
> > > > > > >
> > > > > > > Paul
> > > > > > >
> > > > > > > On 5/24/07, Nencho Lupanov < nencholupanov@googlemail.com>
> > > > > wrote:
> > > > > > > > Hi all,
> > > > > > > >
> > > > > > > >  is there a way to configure a https sender for the
service
> > > > > client?
> > > > > > > >
> > > > > > > > thanks,
> > > > > > > > Nencho
> > > > > > >
> > > > > > >
> > > > > > > --
> > > > > > > Paul Fremantle
> > > > > > > Co-Founder and VP of Technical Sales, WSO2
> > > > > > > OASIS WS-RX TC Co-chair
> > > > > > >
> > > > > > > blog: http://pzf.fremantle.org
> > > > > > > paul@wso2.com
> > > > > > >
> > > > > > > "Oxygenating the Web Service Platform", www.wso2.com
> > > > > > >
> > > > > > >
> > > > > >
> > > > > ---------------------------------------------------------------------
> > > > > > > To unsubscribe, e-mail:
> > > > > > axis-dev-unsubscribe@ws.apache.org
> > > > > > > For additional commands, e-mail: axis-dev-help@ws.apache.org
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > > > --
> > > > > Paul Fremantle
> > > > > Co-Founder and VP of Technical Sales, WSO2
> > > > > OASIS WS-RX TC Co-chair
> > > > >
> > > > > blog: http://pzf.fremantle.org
> > > > > paul@wso2.com
> > > > >
> > > > > "Oxygenating the Web Service Platform", www.wso2.com
> > > > >
> > > > >
> > > > > ---------------------------------------------------------------------
> > > > > To unsubscribe, e-mail: axis-dev-unsubscribe@ws.apache.org
> > > > > For additional commands, e-mail: axis-dev-help@ws.apache.org
> > > > >
> > > > >
> > > >
> > >
> > >
> > > --
> > > Saminda Abeyruwan
> > >
> > > Software Engineer
> > > WSO2 Inc. - www.wso2.org
> >
> >
> >
>
>
> --
> Saminda Abeyruwan
>
> Software Engineer
> WSO2 Inc. - www.wso2.org
>

Mime
View raw message