I had the same problem, try not loading WSDL with https. Download it locally then do :
MyService service = new MyService(wsdlURL, serviceName); // You can add whatever address as you want service.addPort(portName, "http://schemas.xmlsoap.org/soap/";, "https://myservice.xx";); See https://issues.apache.org/jira/browse/CXF-8013 On Thu, 23 May 2019 at 16:10, Colm O hEigeartaigh <[email protected]> wrote: > > If you can put together a test-case to reproduce the problem I can take a > look. > > Colm. > > On Thu, May 23, 2019 at 1:49 PM Luca Maderna <[email protected]> wrote: > > > Yes, > > I've checked it loading certificate alias and other parameters (like expire > > date). > > > > I think that in my truststore maybe a root certificate is missing. > > Myabe in my local envirnment root cert is found in jdk cacerts. > > > > thanks in advance > > luke > > > > Il giorno gio 23 mag 2019 alle ore 14:34 Colm O hEigeartaigh < > > [email protected]> ha scritto: > > > > > Is the certificate of the service stored in your truststore? > > > > > > Colm. > > > > > > On Thu, May 23, 2019 at 1:27 PM Luca Maderna <[email protected]> > > > wrote: > > > > > > > Hi, > > > > I'm developing a cxf https client. > > > > Now I'm trying to set TrustManagers and KeyManager as explained in > > > > ClientNonSpring > > > > example. > > > > > > > > In my local environment it work correctly; > > > > - I load correctly certificate in keystore; > > > > - I correctly connect to cxf server using certificate. > > > > > > > > When I deploy my application in production environment, at cxf services > > > > first access, this exception has been raised: > > > > > > > > Caused by: sun.security.validator.ValidatorException: PKIX path > > building > > > > failed: sun.security.provider.certpath.SunCertPathBuilderException: > > > unable > > > > to find valid certification path to requested target > > > > at > > > sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:387) > > > > at > > > > > > > > > sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > > > > at sun.security.validator.Validator.validate(Validator.java:260) > > > > at > > > > > > > > > > > > > sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324) > > > > > > > > at > > > > > > > > > > > > > sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229) > > > > > > > > at > > > > > > > > > > > > > sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124) > > > > > > > > at > > > > > > > > > > > > > sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1491) > > > > > > > > thanks in advance > > > > luke > > > > > > > > > > > > > -- > > > Colm O hEigeartaigh > > > > > > Talend Community Coder > > > http://coders.talend.com > > > > > > > > -- > Colm O hEigeartaigh > > Talend Community Coder > http://coders.talend.com -- Mickaël Salmon Architecte Email : [email protected] Bureau : + 33 (0)5 63 53 08 18 7, rue Marcel Dassault ZA de la Mouline 81990 Cambon d’Albi France -- Notice de confidentialité : Les informations contenues dans ce courriel sont strictement confidentielles et réservées à l'usage de la ou des personne(s) identifiée(s) comme destinataire(s). L'usage, la publication, la copie, la divulgation ou la transmission des informations contenues dans ce message ou les documents qui y sont attachés est interdit à moins d'y avoir été expressément autorisé par l'émetteur. Si vous avez reçu ce message par erreur, merci de le supprimer et d'en avertir immédiatement son expéditeur.
