Hi, I think that this problem is not CXF related. You have to configure Java security, so javax.net.ssl.HttpsURLConnection will be able to establish a HTTPS connection.
See this: http://forums.sun.com/thread.jspa?threadID=515154&messageID=2453574 Balázs 2008/9/30 Bazaj, Taru (IT) <[EMAIL PROTECTED]> > Hi friends, > > I am working on a project to create java client for a web service that uses > https protocol. I have added the certificate required for the connection in > my project and provided the path in my spring config file. > > But, when I run the project I get the exception "unable to find valid > certification path to requested target". I am not able to find out what am I > doing wrong. > > I have attached the certificate( ypou have to change it from .abc to .cer), > the wsdl exposed by the web service . > > The cofig file I wrote is as follows: > > > <? > xml version="1.0" encoding="UTF-8"?> > > < > beans xmlns="http://www.springframework.org/schema/beans"; > > xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; > > xmlns:cxf="http://cxf.apache.org/core"; > > xmlns:jaxws="http://cxf.apache.org/jaxws"; > > xmlns:http="http://cxf.apache.org/transports/http/configuration"; > > xmlns:httpj="http://cxf.apache.org/transports/http-jetty/configuration"; > > xmlns:sec="http://cxf.apache.org/configuration/security"; > > xsi:schemaLocation=*"* > > http:*//schemas.xmlsoap.or*g*/wsdl/* http:*//schemas.xmlsoap.or*g*/wsdl/* > > http:*//cxf.apache.or*g*/confi*guration*/security* http:*//cxf.apache.or*g > */schemas/confi*guration*/security.xsd* > > http:*//cxf.apache.or*g*/transports/http/confi*guration > > http:*//cxf.apache.or*g*/schemas/confi*guration*/http-conf.xsd* > > http:*//cxf.apache.or*g*/transports/http-jetty/confi*guration > > http:*//cxf.apache.or*g*/schemas/confi*guration*/http-jetty.xsd* > > http: > *//cxf.apache.or*g*/core* http:*//cxf.apache.or*g*/schemas/core.xsd* > > http: > *//www.sprin*gframework.org*/schema/beans* http:*//www.sprin* > gframework.org*/schema/beans/sprin*g-beans-2.0.xsd > > http: > *//cxf.apache.or*g*/jaxws* http:*//cxf.apache.or*g*/schemas/jaxws.xsd"*> > > <http:conduit name="{ > http://schemas.microsoft.com/exchange/services/2006/messages}ExchangeServicePort-http-conduit<http://schemas.microsoft.com/exchange/services/2006/messages%7DExchangeServicePort-http-conduit> > "> > > <http:tlsClientParameters> > > <sec:trustManagers> > > <sec:keyStore type="JKS" password="123456" > > file="C:\Documents and > Settings\bazajta\MSDE\eclipseide\3.2\workspace\default\ews_client\packages\com\microsoft\schemas\exchange\services\_2006\certs\keystore" > /> > > </sec:trustManagers> > > <sec:cipherSuitesFilter> > > <!-- these filters ensure that a ciphersuite with--> > > <!-- export-suitable or null encryption is used, but--> > > <!-- exclude anonymous Diffie-Hellman key change as this--> > > <!-- is vulnerable to man-in-the-middle attacks--> > > <sec:include>.*_EXPORT_.*</sec:include> > > <sec:include>.*_EXPORT1024_.*</sec:include> > > <sec:include>.*_WITH_DES_.*</sec:include> > > <sec:include>.*_WITH_NULL_.*</sec:include> > > <sec:exclude>.*_DH_anon_.*</sec:exclude> > > </sec:cipherSuitesFilter> > > </http:tlsClientParameters> > > </http:conduit> > > <!-- We need a bean named "cxf" --> > > <!-- <bean id="cxf" class="org.apache.cxf.bus.CXFBusImpl" />--> > > </ > beans> > > If anyone has worked on anything similar or could think of anything to > solve the issue please get back to me. I need this working urgently. > > Any help is much appreciated. > > Thanks a lot ! > > Taru > > Taru Bazaj > Morgan Stanley | Technology > Bldg. 5, Sector 30, Mindspace, Goregaon (West) > Mumbai (Ex Bombay), 400 090 > Phone: +91 22 6641-0281 > [EMAIL PROTECTED] > > ------------------------------ > > NOTICE: If received in error, please destroy and notify sender. Sender does > not intend to waive confidentiality or privilege. Use of this email is > prohibited when received in error. > -- Balázs "A good indication of when you are really starting to get to grips with a subject, I find, is when you start to know the right questions to ask. (Knowing the answers to these questions comes much later. That's expertise.) Once you are at this point, you can really start to take off: if only because once at this point, Google can usually help you out."
