Using HTTPS, requires having a copy of the Server
certificate somewhere in your System.
Something like C:\Archivos de
programa\Java\j2re1.4.2_04\lib\security\cacerts
I think, standalone runs because Java can find the
Server Certificate.
I dont't know how do you attach the Server certificate
on the WebStart application.
Or, do you need to save a copy of the Server
Certificate in each Client PC?
José de Jesús Ruiz
Gonzalez
Departamento de
Sistemas
México Asistencia S.A.
de C.V.
Sistema Internacional
de Asistencia
Mapfre
* mailto:[EMAIL PROTECTED]
)(52) 55 + 54801298
(Fax(52) 55 + 56112011
De: Christian faucher [mailto:[EMAIL PROTECTED]
Enviado el: Viernes, 27 de Mayo de 2005 10:43 a.m.
Para: axis-user@ws.apache.org
Asunto: Re: Axis, HTTPS with Web Start
Yes I does.
All my client's jars (including Axis jars and friends) are signed with a
dummy certificate, generated through keytool.
Security is also "<all-permissions>" in my JNLP deployment
descriptor.
The server (hidden behing the HTTPS URL) has a server certificate and does
NOT require a client certificate.
Christian Faucher
On 5/27/05, Oleg
Lebedev <[EMAIL PROTECTED]>
wrote:
Is your client trying to access the web service on the domain it was downloaded from via WebStart?I remember having problems with cross-domain access. I ended up signing all the jars in order to get it to work.-------Original Message-----Greetings,
From: Christian faucher [mailto: [EMAIL PROTECTED]]
Sent: Friday, May 27, 2005 9:02 AM
To: axis-user@ws.apache.org
Subject: Axis, HTTPS with Web Start
I have a situation where I am not sure if it belongs to this mailing or Web Start's.
I have a Axis client, being deployed thru Web Start on client machines. It can also be run standalone (java 'main').
I run JDK 1.4.2 with Axis 1.2 RC2 (yeah, I know I have to upgrade to 1.2...). AppServer is SunOne 7.
The client connects to an Axis server thru HTTPS (which is not the server from where it was downloaded). I have the JNLP security set to 'all-permissions' which means (in theory) that I have the same rights than a standalone application.
When I run the client as STANDALONE, works perfectly: I connect to the Axis Server with HTTPS, get my response back, etc.
When I start the very same client thru WebStart, the HTTPS connections fail, but the unsecure HTTP do work. For HTTPS, it fails during the SSL handshake for the server (see stack trace below).
Any clue on this?
Here is the exception I get on the client side. No sign on my request whatsoever on the server side, which makes me belief I dont even get out of my client app...
ansport.http.HTTPSender.getSocket(HTTPSender.java:131)
at org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:370)
at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:88)
at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke(SimpleChain.java :83)
at org.apache.axis.client.AxisClient.invoke(AxisClient.java:147)
at org.apache.axis.client.Call.invokeEngine(Call.java:2719)
at org.apache.axis.client.Call.invoke(Call.java:2702)
at org.apache.axis.client.Call.invoke (Call.java:2378)
at org.apache.axis.client.Call.invoke(Call.java:2301)
at org.apache.axis.client.Call.invoke(Call.java:1758)
at com.axacanada.b2b.common.util.AxisInvocationHandler.invoke(AxisInvocationHandler.java :98)
at $Proxy0.makeNewBusiness(Unknown Source)
at com.axacanada.b2b.cq.client.AbstractRequestSenderThread.run(AbstractRequestSenderThread.java:74)
at com.axacanada.b2b.cq.client.RequestSenderThread.run (RequestSenderThread.java:70)
{http://xml.apache.org/axis/}hostname:WS-1235
javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
at org.apache.axis.AxisFault.makeFault(AxisFault.java:101)
at org.apache.axis.transport.http.HTTPSender.invoke (HTTPSender.java:97)
at org.apache.axis.strategies.InvocationStrategy.visit (InvocationStrategy.java:32)
at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
at org.apache.axis.SimpleChain.invoke (SimpleChain.java:83)
at org.apache.axis.client.AxisClient.invoke(AxisClient.java :147)
at org.apache.axis.client.Call.invokeEngine(Call.java:2719)
at org.apache.axis.client.Call.invoke(Call.java:2702)
at org.apache.axis.client.Call.invoke(Call.java:2378)
at org.apache.axis.client.Call.invoke (Call.java:2301)
at org.apache.axis.client.Call.invoke(Call.java:1758)
at com.axacanada.b2b.common.util.AxisInvocationHandler.invoke (AxisInvocationHandler.java:98)
at $Proxy0.makeNewBusiness(Unknown Source)
at com.axacanada.b2b.cq.client.AbstractRequestSenderThread.run(AbstractRequestSenderThread.java:74)
at com.axacanada.b2b.cq.client.RequestSenderThread.run (RequestSenderThread.java:70)
Caused by: javax.net.ssl.SSLException : Unrecognized SSL message, plaintext connection?
at com.sun.net.ssl.internal.ssl.InputRecord.b(Unknown Source)
at com.sun.net.ssl.internal.ssl.InputRecord.read (Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a (Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.j(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake (Unknown Source)
at org.apache.axis.components.net.JSSESocketFactory.create (JSSESocketFactory.java:186)
at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:131)
at org.apache.axis.transport.http.HTTPSender.writeToSocket (HTTPSender.java:370)
at org.apache.axis.transport.http.HTTPSender.invoke (HTTPSender.java:88)
... 13 more
2005-05-27 10:06:03,165 [SOAP Request Sender] ERROR AbstractRequestSenderThread - AxisFault: ; nested exception is:
javax.net.ssl.SSLException: Unrecognized SSL message, plaintext connection?
Fault Actor : null
Fault Code : { http://schemas.xmlsoap.org/soap/envelope/}Server.userException
Fault Role : null
Fault String: javax.net.ssl.SSLException : Unrecognized SSL message, plaintext connection?
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
If you have questions about this email,
Please contact the IT Help Desk.
