Return-Path: Delivered-To: apmail-ws-axis-user-archive@www.apache.org Received: (qmail 95282 invoked from network); 11 Jan 2005 20:11:17 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 11 Jan 2005 20:11:17 -0000 Received: (qmail 86892 invoked by uid 500); 11 Jan 2005 20:11:12 -0000 Delivered-To: apmail-ws-axis-user-archive@ws.apache.org Received: (qmail 86197 invoked by uid 500); 11 Jan 2005 20:11:10 -0000 Mailing-List: contact axis-user-help@ws.apache.org; run by ezmlm Precedence: bulk Reply-To: axis-user@ws.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list axis-user@ws.apache.org Received: (qmail 86184 invoked by uid 99); 11 Jan 2005 20:11:09 -0000 X-ASF-Spam-Status: No, hits=0.1 required=10.0 tests=HTML_30_40,HTML_MESSAGE X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: local policy) Received: from ssmtl104.axa-canada.com (HELO ssmtl104.axa-canada.com) (206.47.141.39) by apache.org (qpsmtpd/0.28) with SMTP; Tue, 11 Jan 2005 12:11:09 -0800 Received: (from SSMTL102 [10.1.2.253]) by ssmtl104.axa-canada.com (SMSSMTP 4.1.0.19) with SMTP id M2005011115124801733 for ; Tue, 11 Jan 2005 15:12:48 -0500 Received: from ([142.216.40.175]) by SSMTL102; Tue, 11 Jan 2005 15:11:05 -0500 (EST) Content-Class: urn:content-classes:message MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C4F819.987CC5A2" X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Subject: Disabling Certification validation in HTTPS Content-Transfer-Encoding: 7bit Date: Tue, 11 Jan 2005 15:10:28 -0500 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Importance: normal Priority: normal Thread-Topic: Disabling Certification validation in HTTPS thread-index: AcT4GZhQPTp7MEgjRcS2HfUaKrkHKQ== From: "Faucher, Christian" To: X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N This is a multi-part message in MIME format. ------_=_NextPart_001_01C4F819.987CC5A2 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi, I have a SOAP Server that does not have (yet) its trusted certificate, but nonetheless runs in HTTPS. For instance, we can use portals on it, providing we accept the fact the server cannot authenticate itself. I run a Axis client that connects to this server, using a HTTPS:// URL. However, the client fails, saying that the server has no trusted certificate (see exception below). Is there a way in Axis to configure an Axis client to accept the SSL connection, no matter if the certificate is valid/trusted/found? Thank you in advance! Christian Faucher javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found at org.apache.axis.AxisFault.makeFault(AxisFault.java:101) at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:97) at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.j ava:32) at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118) at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83) at org.apache.axis.client.AxisClient.invoke(AxisClient.java:147) at org.apache.axis.client.Call.invokeEngine(Call.java:2719) at org.apache.axis.client.Call.invoke(Call.java:2702) at org.apache.axis.client.Call.invoke(Call.java:1738) at axa.Main.main(Main.java:90) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.jav a:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessor Impl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at com.intellij.rt.execution.application.AppMain.main(AppMain.java:78) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found at com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA12275) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA12275) at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactor y.java:186) at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:131) at org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java: 370) at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:88) ... 13 more Caused by: sun.security.validator.ValidatorException: No trusted certificate found at sun.security.validator.SimpleValidator.buildTrustedChain(SimpleValidator .java:304) at sun.security.validator.SimpleValidator.engineValidate(SimpleValidator.ja va:107) at sun.security.validator.Validator.validate(Validator.java:202) at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Das hoA12275) at com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Das hoA12275) ... 23 more Exception in thread "main" _____ "Ce message est confidentiel, a l'usage exclusif du destinataire ci-dessus et son contenu ne represente en aucun cas un engagement de la part de AXA, sauf en cas de stipulation expresse et par ecrit de la part de AXA. Toute publication, utilisation ou diffusion, meme partielle, doit etre autorisee prealablement. Si vous n'etes pas destinataire de ce message, merci d'en avertir immediatement l'expediteur." "This e-mail message is confidential, for the exclusive use of the addressee and its contents shall not constitute a commitment by AXA, except as otherwise specifically provided in writing by AXA. Any unauthorized disclosure, use or dissemination, either whole or partial, is prohibited. If you are not the intended recipient of the message, please notify the sender immediately." ------_=_NextPart_001_01C4F819.987CC5A2 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message
Hi,
 
I have = a SOAP Server=20 that does not have (yet) its trusted certificate, but nonetheless runs = in=20 HTTPS.  For instance, we can use portals on it, providing we accept = the=20 fact the server cannot authenticate itself.
 
I run = a Axis client=20 that connects to this server, using a HTTPS:// URL.  However, the = client=20 fails, saying that the server has no trusted certificate (see exception=20 below).
 
Is = there a way in=20 Axis to configure an Axis client  to accept the = SSL=20 connection, no matter if the certificate is=20 valid/trusted/found?
 
Thank = you in=20 advance!
 
Christian=20 Faucher
 
 
javax.net.ssl.SSLHandshakeException:=20 sun.security.validator.ValidatorException: No trusted certificate=20 found
 at=20 org.apache.axis.AxisFault.makeFault(AxisFault.java:101)
 at=20 org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:97)
&= nbsp;at=20 org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.ja= va:32)
 at=20 org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
 at = org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
 at=20 org.apache.axis.client.AxisClient.invoke(AxisClient.java:147)
 at= =20 org.apache.axis.client.Call.invokeEngine(Call.java:2719)
 at=20 org.apache.axis.client.Call.invoke(Call.java:2702)
 at=20 org.apache.axis.client.Call.invoke(Call.java:1738)
 at=20 axa.Main.main(Main.java:90)
 at=20 sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
 at=20 sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java= :39)
 at=20 sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorI= mpl.java:25)
 at=20 java.lang.reflect.Method.invoke(Method.java:324)
 at=20 com.intellij.rt.execution.application.AppMain.main(AppMain.java:78)
Ca= used=20 by: javax.net.ssl.SSLHandshakeException:=20 sun.security.validator.ValidatorException: No trusted certificate=20 found
 at=20 com.sun.net.ssl.internal.ssl.BaseSSLSocketImpl.a(DashoA12275)
 at= =20 com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SunJSSE_az.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SunJSSE_ax.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(DashoA12275)
 at=20 com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(DashoA12275) at=20 org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory= .java:186)
 at=20 org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:131)<= BR> at=20 org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:3= 70)
 at=20 org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:88)
&= nbsp;...=20 13 more
Caused by: sun.security.validator.ValidatorException: No = trusted=20 certificate found
 at=20 sun.security.validator.SimpleValidator.buildTrustedChain(SimpleValidator.= java:304)
 at=20 sun.security.validator.SimpleValidator.engineValidate(SimpleValidator.jav= a:107)
 at=20 sun.security.validator.Validator.validate(Validator.java:202)
 at= =20 com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Dash= oA12275)
 at=20 com.sun.net.ssl.internal.ssl.JsseX509TrustManager.checkServerTrusted(Dash= oA12275)
 ...=20 23 more
Exception in thread "main"=20
"Ce = message est confidentiel, a l'usage exclusif du destinataire ci-dessus = et son contenu ne represente en aucun cas un engagement de la part de = AXA, sauf en cas de stipulation expresse et par ecrit de la part de AXA. = Toute publication, utilisation ou diffusion, meme partielle, doit etre = autorisee prealablement. Si vous n'etes pas destinataire de ce message, = merci d'en avertir immediatement l'expediteur."

"This e-mail = message is confidential, for the exclusive use of the addressee and its = contents shall not constitute a commitment by AXA, except as otherwise = specifically provided in writing by AXA. Any unauthorized disclosure, = use or dissemination, either whole or partial, is prohibited. If you are = not the intended recipient of the message, please notify the sender = immediately."
------_=_NextPart_001_01C4F819.987CC5A2--