Not sure if this is possible with CXF-DOSGi 1.7.0. IT should work with 2.1.0 though.
See https://github.com/apache/cxf-dosgi/blob/master/samples/ssl/ssl-intent/src/main/java/org/apache/cxf/dosgi/samples/ssl/SslIntent.java You can create an intent with the ssl config and add it to your service. The example already uses the TLSClientParameters so you simply have to set the disableCNCheck property. Christian 2017-02-28 16:58 GMT+01:00 Erwin Hogeweg <[email protected]>: > Hi, > > I am running DOSGi-1.7.0 on a client with the remote services defined in a > remote-services.xml file. Everything runs fine with http, and now I am > adding https to the mix. The cert. I am using is not valid (not defined) > for the test server so I am getting this message: > > Caused by: java.io.IOException: The https URL hostname does not match the > Common Name (CN) on the server certificate in the client's truststore. > Make sure server certificate is correct, or to disable this check (NOT > recommended for production) set the CXF client TLS configuration property > "disableCNCheck" to true. > > The challenge is to find a way to define this disableCNCheck property. I > have tried a couple of things, but so far no luck. > > I am running the client as stand-alone OSGI app and in a karaf (4.0.8) > environment. > > Anyone have a suggestion? > > Your help is greatly appreciated. > > Kind Regards, > > Erwin > > Erwin Hogeweg > CTO > 3690 Airport Road > Boca Raton, FL 33431 > P. +1 (954) 556-6565 > M. +1 (561) 306-7395 > F. +1 (561) 948-2730 > [Seecago]<http://www.seecago.com> > -- -- Christian Schneider http://www.liquid-reality.de <https://owa.talend.com/owa/redir.aspx?C=3aa4083e0c744ae1ba52bd062c5a7e46&URL=http%3a%2f%2fwww.liquid-reality.de> Open Source Architect http://www.talend.com <https://owa.talend.com/owa/redir.aspx?C=3aa4083e0c744ae1ba52bd062c5a7e46&URL=http%3a%2f%2fwww.talend.com>
