RE: how to sepcify certificate alias

2004-02-11 Thread Stuart Miller
Jian, I'm afraid you cannot. Not even at the SSL level can you do this, unless you write your own KeyManager. When the SSL connection is made, the server will send a list of Issuer DN's which are acceptable, so that the client will decide this way which cert he can present (the decision is also

RE: Attachment is accidentally added twice!! (but only when calle d from an EJB) - FIXED IN v1.2a

2004-02-09 Thread Stuart Miller
Just in case anyone had the same problem, this issue has gone away with version 1.2a.   Stuart   -Original Message-From: Stuart Miller [mailto:[EMAIL PROTECTED]Sent: Friday 30 January 2004 14:29To: '[EMAIL PROTECTED]'Subject: Attachment is accidentally added tw

Attachment is accidentally added twice!! (but only when called fr om an EJB)

2004-01-30 Thread Stuart Miller
Hi, I have a very curious problem.  My SOAP client sends a simple request with 1 small attachment to it.  When I run this client as a stand-alone application, it works fine.  However, when the <> is called from within a message-driven-bean (an EJB which is listening to a JMS message queue)

RE: java.net.ConnectException: Connection refused

2004-01-30 Thread Stuart Miller
Mohammed, try setting the system property 'javax.net.ssl.debug' to 'all', and you should see details of the SSL handshake in stdout. It's likely that your client VM doesn't have a suitable certificate for the server (one that is issued by a CA that the server trusts). Also, if you have OpenSSL,

RE: SecureSocketFactory pluggability?

2003-12-18 Thread Stuart Miller
e to let you know where this thread is trying to connect. Just my thoughts. Gary > -Original Message- > From: Stuart Miller [mailto:[EMAIL PROTECTED] > Sent: Thursday, December 18, 2003 8:42 AM > To: '[EMAIL PROTECTED]' > Subject: RE: SecureSocketFactory pluggabi

RE: SecureSocketFactory pluggability?

2003-12-18 Thread Stuart Miller
ou please explain the first few paragraphs in baby steps so that I can understand the exact problem? Is the problem that you can't specify the socket factory that Axis will use? Have you looked at the properties axis.SocketFactory and axis.socketSecureFactory? If you could take just a

SecureSocketFactory pluggability?

2003-12-17 Thread Stuart Miller
The Axis framework seems pluggable with respect to SocketFactories, as was JSSE prior to the JDK 1.4. Now with JDK 1.4, I cannot swap SocketFactory impls (via java.security file) due to US export regulations. With the out-of-the-box JSSESocketFactory, I can alter the System properties 'javax.net.

RE: Couldn't find trusted certificate

2003-12-16 Thread Stuart Miller
In the case where you don't need client-authentication (a client-side certificate), then you only need to ensure the Issuer of the server cert from https://www.verisign.com (ie. the CA certificate) is in your 'trustStore'. The default truststore for JDK1.4 is a JKS K