Return-Path: X-Original-To: apmail-jclouds-user-archive@minotaur.apache.org Delivered-To: apmail-jclouds-user-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 37195176FF for ; Thu, 2 Oct 2014 22:12:38 +0000 (UTC) Received: (qmail 68818 invoked by uid 500); 2 Oct 2014 22:12:37 -0000 Delivered-To: apmail-jclouds-user-archive@jclouds.apache.org Received: (qmail 68717 invoked by uid 500); 2 Oct 2014 22:12:37 -0000 Mailing-List: contact user-help@jclouds.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@jclouds.apache.org Delivered-To: mailing list user@jclouds.apache.org Received: (qmail 68639 invoked by uid 99); 2 Oct 2014 22:12:37 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Oct 2014 22:12:37 +0000 X-ASF-Spam-Status: No, hits=1.0 required=5.0 tests=FORGED_YAHOO_RCVD,RCVD_IN_DNSWL_NONE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of yurykats@yahoo.com designates 98.139.212.174 as permitted sender) Received: from [98.139.212.174] (HELO nm15.bullet.mail.bf1.yahoo.com) (98.139.212.174) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Oct 2014 22:12:30 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1412287929; bh=762OHAw9zLoZ4sfAKwBu/K9W5PLefxYzpUJB12wSY6g=; h=Received:Received:Received:DKIM-Signature:X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Message-ID:Date:From:User-Agent:MIME-Version:To:Subject:Content-Type:Content-Transfer-Encoding:From:Subject; b=NCzplG9c5CUVrS3pQ/HwI0OybQ7JM2yWs2ExKC9hXzV/3u4FEApae22gABrTaZK2oKGpmPLLSPSRj6c4myvNo4TRXxaUAUOO2xOsmiwTQDU05vTe/Ka4fESohesLe7yVxXedm683EWf23CDrQ4lSeTT+d8m3i1CVDHossoT953b7K3sZ/1NU+dYpi5SKjCgsSVhIQw88rLQ6eCeSPkGt9pTiv3K3AsxEvdksfLlezKmXvFBwspXUAylm1HiIzZhHQaGkkhnw2L2W+nuKmAqg9EkNPuLWEaCIw+X362lLBe7tZHhCgH1WWkPQgBByuyckax2DZ38gs6Tp0CMq0SnvZw== DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s2048; d=yahoo.com; b=LpNv2rYqR+WAqZTLdYg7xpwl5/+X1oaTSJp8e6e905eVkAlfucBsRx1rsfZA4G4lCO3kMOvOjlH3aYgX/i981Bj1GsgsdEgmOmt3df1sN5JGUl7u8AyVBL8UMHAqtTnleV48ozylCP6T2vjzg/4RpurZhtaoHbnoArX/IXdnq/7Q56V4vwwX8m0ir1qA07khaWJ+D4QdJxV02rYMcAY/BdoFZs3OdSD1omKoS61kfHRIda6eSzfyF2ytEaTttDhudb5tIv7supBpiyNlj+/Bz+fYcpbxdSWBf5N6Hg6sRLYZa7Dv17hWNhudUkC2TzXbYZOdqJM6+MGNmT9rgVIOCg==; Received: from [98.139.212.152] by nm15.bullet.mail.bf1.yahoo.com with NNFMP; 02 Oct 2014 22:12:09 -0000 Received: from [98.139.211.197] by tm9.bullet.mail.bf1.yahoo.com with NNFMP; 02 Oct 2014 22:12:09 -0000 Received: from [127.0.0.1] by smtp206.mail.bf1.yahoo.com with NNFMP; 02 Oct 2014 22:12:09 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1412287929; bh=762OHAw9zLoZ4sfAKwBu/K9W5PLefxYzpUJB12wSY6g=; h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:Message-ID:Date:From:User-Agent:MIME-Version:To:Subject:Content-Type:Content-Transfer-Encoding; b=IB18A90S4eY/LXHFFOr71LBHrjWW/ORGKilyF29YKW3MvvawoIx04GtJt72WnMyyxfgYoupk6UGD2UJjSx32myhTCoKc7YLryyUKVUMeuYaF002SJYhyRhj1yLnoYR0ihnOALGXt9O4p43PByqgNnxC3SUaDn1jwqWAzzD0t+Tw= X-Yahoo-Newman-Id: 13640.99211.bm@smtp206.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: eNgjZEsVM1l2QdN6FsCfalh3rPBC11C8SPkn7eZQwovWiO1 iTtYTIpf5z_k_iBrDtedj_BYZgODoPO76hLthMAek49jCf3NPBQ2ohmEIdep 5pczbFIuJVPtdUA7_fE91Pz.dLMGTmOuaFUd4u01_p7xvAuiPn4vT1fWctIp dg16G_rCHncnfCmmvPB.Yh4aDfH4pu3ikf3BcyyitjUKmlD_c3C_VaL2J9Pl HiTeg78eP3OUTh0CKP7ahISq2r_GrdusIIPxGYVtme_5FNujgv67.e0W4XmG FNqfraxfsmbN.qZpBQOig9Fx.noBIiEMbw65_86BGpywImslyW0iPknnHCDU 85n04CGZ9lBdraq2UqTY.5ootuMPqtli9BFiSR8jdM67PW_OqHGhl9OsxxwX .1AjndsB3Q7t_d4vHk.34U9_CdKMdeymD7YadLNlVHBwe4omqrcyi8.2Q.iE tCTxk.3BidH2juALk3cqarw.EiziVs9aeYpMhxpj3BqPXAuzI8Rv1V4JFa.4 QLXS8TlweGx_OX44bASgITCRBMBOt X-Yahoo-SMTP: Xc0D9PSswBCzl7QEioTGF6RJytwf Message-ID: <542DCDB7.9020304@yahoo.com> Date: Thu, 02 Oct 2014 18:12:07 -0400 From: Yury Kats User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Thunderbird/1.0.6 Mnenhy/0.7.1 MIME-Version: 1.0 To: user@jclouds.apache.org Subject: Self-signed certs Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org I'm using jclouds 1.8 to communicate with Openstack Keystone server. The server is using a self-signed cert. My client detects SSL connection failure and allows the user to install the cert, which I add to JVM's trust store. At this point I expect jclouds connections to succeed, but they continue to fail. Until I shutdown the client and restart. If the JVM trust store is loaded with the cert before jclouds makes its first connection, all is good. But if I change (add/remove) certs after the 1st connection is made, then the change in JVM's trust store does not take effect on jclouds. (For reference, I'm using AWS SDK in the same client, and there the change takes effect immediately). Does jclouds cache connections or contexts? Is there a way to make it "fully reconnect" (for a lack of a better term)? My code to talk to Keystone is like this: KeystoneApi keystoneAPI = ContextBuilder.newBuilder(new KeystoneApiMetadata()) .endpoint(url) .credentials(tenant + ":" + user, key) .buildApi(KeystoneApi.class); keystoneAPI.getServiceApi().listTenants(); PS: I am aware of Constants.PROPERTY_TRUST_ALL_CERTS, but that's not what I want. Thanks, Yury