-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Monday 01 April 2002 01:57 pm, Karen Schuchardt wrote: > I am trying to use the WebPagePortlet to access html pages that are > accessable via https. When I add them to a pane, they show up as empty > and the following message appears in jetspeed.log > > [Mon Apr 01 13:20:32 PST 2002] -- INFO -- Exception > occurred:javax.net.ssl.SSLHandshakeException: Couldn't find trusted > certificate > > I can access this url directly (not as portlet) via tomcat with ssl - > it works fine. My tomcat keystore file is not in ~ but I copied it > there in case that would fix the problem but it didn't.
I assume this means your browser trusts the server certificate and allows you to get at the page via: https://<your-tomcat-host>/<your-secured-resource> In this scenario your browser is the client and Tomcat is the server. Browsers usually come with a set of "trusted" certificate authorities (CA) and will prompt you when an "untrusted" certificate is encountered. When using the WebPagePortlet Jetspeed becomes "the browser" using a java.net.URL to request a resource from the web server. In this scenario there is no GUI within which to prompt for certificate acceptance. You must set up the keystore yourself or use a certificate that is signed by a CA that is already "trusted" in the keystore. The "couldn't find trusted certificate" exception you encounter indicates that this hasn't been done. The 1.3 JDK SSL estension, JSSE 1.0.2, comes with a "keytool" that allows you to import and trusted self-signed (or other untrusted) certificates. I haven't ever looked at how it is set up with JDK 1.4. You are on the right track - the WebPagePortlet will work with https URLs. Rejoice in the fact that you are not seeing "MalformedURLException: unknown protocol exception: https". It looks like the SSL provider is registered properly. Once you get the right certs in the right place you'll be set. - - David G. Powers PowerSource -----BEGIN PGP SIGNATURE----- Comment: Verify the authenticity of this message with the public key available at http://pssp.com/dgp_pk.asc iD8DBQE8qQsDjmjAPDT0/nERAszuAKCoOE4uLpax9xlSWe+fViWYNfcE3ACgyyrH KURVfSHzc8YeMoEjHg/F9aw= =Ddel -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
