cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrei Shakirin (JIRA)" <>
Subject [jira] [Commented] (CXF-5652) WebClient with SSL: handshake_failure
Date Mon, 21 Jul 2014 12:26:38 GMT


Andrei Shakirin commented on CXF-5652:

I have committed fallback for Keymanager using JVM properties - it should work for 3.0.2-SNAPSHOT

Could you please test it? (it takes a bit time until SNAPSHOT will be available in maven central,
but you can clone CXF repo and build core and transport-http modules it yourself).

If keystore/truststore is not protected by password, it can be skipped. KeyStore.load() also
accept null as password parameter.

I will look the code regarding getting cipher suites from JMV property.

> WebClient with SSL: handshake_failure
> -------------------------------------------------------------------------
>                 Key: CXF-5652
>                 URL:
>             Project: CXF
>          Issue Type: Improvement
>          Components: JAX-RS
>    Affects Versions: 3.0.0-milestone2
>            Reporter: Vjacheslav Borisov
>            Assignee: Andrei Shakirin
>            Priority: Minor
>         Attachments:
> I got error when using WebClient with SSL using client certificate:
> Received fatal alert: handshake_failure 
> I found a way to fix this error
>             KeyStore keyStore = KeyStore.getInstance("JKS");
>             String trustpass = "chageit";
>             File truststore = new File("/home/slavb/.java/deployment/security/trusted.clientcerts");
>             keyStore.load(new FileInputStream(truststore), trustpass.toCharArray());
>             KeyStore ts = KeyStore.getInstance("JKS");
>             truststore = new File("/etc/ssl/certs/trusted.cacerts");
>             ts.load(new FileInputStream(truststore), "".toCharArray());
>             Client client = ClientBuilder.newBuilder().keyStore(keyStore, trustpass).
>                     trustStore(ts).build();
> And I have question, why WebClient is not working like embedded in java URLConnection
> apache http client when I specify system properties
> (i got error Received fatal alert: handshake_failure
when using SSL web client)
> Why it is need to configure ssl in code?

This message was sent by Atlassian JIRA

View raw message