Jason,
FWIW, I don't use Fedora's SSL at all, and proxy everything via Apache's
SSL instead. I find it a lot easier. I'm not saying you have to do this,
nor is it impossible to get Fedora working with SSL... I just find it
easier using the the proxy method.
...adam
____________________________________________
Adam Wead
Systems and Digital Collections Librarian
Rock and Roll Hall of Fame and Museum
216.515.1960 (t)
215.515.1964 (f)
On Thu, Apr 4, 2013 at 8:09 PM, Cameron, Jason Bernard Keezell <
[email protected]> wrote:
> Hi,
>
> I am brand new to Fedora-Commons. I currently have Fedora-Commons
> installed using the Bundled Tomcat and working as intended behind a
> front-end proxy (for SSL acceleration) and running locally on port 8080
> (with secured=true). I have SOLR/FedoraGsearch also installed, and working
> upon visiting the site, however I am having issues with the
> fedoragsearch/rest command. I constantly get:
>
> "Thu Apr 04 17:52:06 CDT 2013 Connection error (is Solr running at
> https://repository.server/solr/fedorasolr/update ?):
> javax.net.ssl.SSLHandshakeException:
> sun.security.validator.ValidatorException: PKIX path building failed:
> sun.security.provider.certpath.SunCertPathBuilderException: unable to find
> valid certification path to requested target"
>
> My truststore has the certificate being used on the front-end stored and I
> am using the following path (and valid truststore file) in the
> ->
> /usr/local/fedora/tomcat/webapps/fedoragsearch/WEB-INF/classes/fgsconfigFinal/repository/gsearch_solr/repository.properties
>
> --
> # $Id: repository.properties $
>
> fgsrepository.repositoryName = gsearch_solr
>
> #fgsrepository.fedoraSoap =
> https://localhost:8080/fedora/services
> fgsrepository.fedoraSoap =
> https://repository.server/fedora/services
> fgsrepository.fedoraUser = fedoraAdmin
> fgsrepository.fedoraPass = fedoraPassword #obviously changed
> fgsrepository.fedoraObjectDir = /usr/local/fedora/data/objectStore
> fgsrepository.fedoraVersion = 3.6
>
> fgsrepository.trustStorePath = /usr/local/fedora/server/truststore
> fgsrepository.trustStorePass = tomcat
>
> fgsrepository.defaultGetRepositoryInfoResultXslt = copyXml
> --
>
> My Tomcat config looks like:
> --
> <Connector port="8080" protocol="HTTP/1.1" connectionTimeout="20000"
> enableLookups="false" acceptCount="100"
> maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
> URIEncoding="UTF-8" secure="true" scheme="https"
> proxyName="repository.server" proxyPort="443"/>
> --
>
> Can anyone give me some advice or perhaps help me troubleshoot this issue?
> I am completely stumped at this point.
>
> Thanks,
> Jason Cameron
>
>
> ------------------------------------------------------------------------------
> Minimize network downtime and maximize team effectiveness.
> Reduce network management and security costs.Learn how to hire
> the most talented Cisco Certified professionals. Visit the
> Employer Resources Portal
> http://www.cisco.com/web/learning/employer_resources/index.html
> _______________________________________________
> Fedora-commons-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
>
>
------------------------------------------------------------------------------
Minimize network downtime and maximize team effectiveness.
Reduce network management and security costs.Learn how to hire
the most talented Cisco Certified professionals. Visit the
Employer Resources Portal
http://www.cisco.com/web/learning/employer_resources/index.html
_______________________________________________
Fedora-commons-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
