1 Reply Latest reply on Jul 30, 2007 5:31 PM by Thomas Diesler

    setting up an ssl web service & client

    aodhan hoffman Newbie

      I am running JBoss 4.0.5 w/ JbossWS 1.2.1.

      I have enabled the SSL connector and am able to access the WSDL for my web service using a browser on port 8443 with a certificate I created using keytool.


      The client works if I provide it the old http/port 80 URL in it's local WSDL. If I try to aim it at https/port 8443, the client dies with the following error:

      Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
      



      <soap:address location="http://localhost:8080/NetworkService/NLS"/> <-- works
      <soap:address location="https://localhost:8443/NetworkService/NLS"/> <-- doesn't work

      I have imported the server cert into a keystore in the client's bin directory. I configured the client to use the keystore ( I believe ) by using jboss-wsse-client.xml in the client's bin directory.

      jboss-wsse-client.xml
      <?xml version="1.0" encoding="utf-8"?>
      <jboss-ws-security
       xmlns="http://www.jboss.com/ws-security/config"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xsi:schemaLocation="http://www.jboss.com/ws-security/config"
       >
       <key-store-file>client.keystore</key-store-file>
       <key-store-password>shimdev</key-store-password>
       <config>
       <encrypt type="x509v1" alias="shimdev" />
       <requires>
       <signature />
       </requires>
       </config>
      </jboss-ws-security>
      



        • 1. Re: setting up an ssl web service & client
          Thomas Diesler Master

          Our test clients use this

           <sysproperty key="org.jboss.ws.wsse.keyStore" value="${tests.output.dir}/resources/jaxrpc/samples/wssecurity/wsse.keystore"/>
           <sysproperty key="org.jboss.ws.wsse.trustStore" value="${tests.output.dir}/resources/jaxrpc/samples/wssecurity/wsse.truststore"/>
           <sysproperty key="org.jboss.ws.wsse.keyStorePassword" value="jbossws"/>
           <sysproperty key="org.jboss.ws.wsse.trustStorePassword" value="jbossws"/>
           <sysproperty key="org.jboss.ws.wsse.keyStoreType" value="jks"/>
           <sysproperty key="org.jboss.ws.wsse.trustStoreType" value="jks"/>