-
1. Re: JBoss 4.0.3 client authorization - gap in the JBoss secu
starksm64 Apr 5, 2006 1:54 PM (in response to roman.angelov)There are client certs tests in the 4.0.x testsuite so with the info given I have to say its a configuration problem.
-
2. Scott Stark,
roman.angelov Apr 6, 2006 8:48 AM (in response to roman.angelov)First - I want to say "Thank you" for the help of Scott Stark,
I resolved the problem with more information from the testsuite in the JBoss 4.0.3 source distribution. Really my configuration is not wrong and there isn't mistakes...but it's needed to be put addititional parameter
<!-- -->
truststoreFile="${jboss.server.home.dir}/conf/server2.keystore"
without this row it's impossible for the clients to authonticate theyself, but in the server side there isn't exceptions...
This fact is very very straight because:
1. I created the keystore and import all certificate there like "trusted" -> keystore must be enaugh
2. By deafault if there is not trusted certificates JBOSS has special exception for this purpose.
Anyway I done my task and I want to say "Thank you". Have a nice day Scott Stark