J
josephjelsy
please help me on how to connect to an HTTPS Server using Java
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
T
Tomek
Hi
Create the client as usual ( just like a regular http connection ) and
run this clien with parameters :
java -Djavax.net.ssl.trustStore=myCertStore.jks
-Djavax.net.ssl.trustStorePassword=myKeyStorePassword -jar
MyClient.jar
Assuming you have the server key in you keystore.
Create the client as usual ( just like a regular http connection ) and
run this clien with parameters :
java -Djavax.net.ssl.trustStore=myCertStore.jks
-Djavax.net.ssl.trustStorePassword=myKeyStorePassword -jar
MyClient.jar
Assuming you have the server key in you keystore.
R
Roedy Green
Create the client as usual ( just like a regular http connection ) and
run this clien with parameters :
java -Djavax.net.ssl.trustStore=myCertStore.jks
-Djavax.net.ssl.trustStorePassword=myKeyStorePassword -jar
MyClient.jar
Assuming you have the server key in you keystore.
Is this the way you set up a server or client? I thought you did not
need any sort of cert to be the client.
J
Juha Laiho
Roedy Green said:Is this the way you set up a server or client? I thought you did not
need any sort of cert to be the client.
The client needs to have CA certificates to verify the authenticity of
the server certificate - thus the trustStore. Similarly regular browsers
have quite a pile of preinstalled CA certificates; otherwise there would
be no protection against site spoofing; there would only be protection
against traffic eavesdropping.
R
Roedy Green
The client needs to have CA certificates to verify the authenticity of
the server certificate - thus the trustStore. Similarly regular browsers
have quite a pile of preinstalled CA certificates; otherwise there would
be no protection against site spoofing; there would only be protection
against traffic eavesdropping.
slightly off topic, but I downloaded Opera 8.54 and it seems finally
to have its SSL act together, and least enough to work with my credit
union finally.
M
Missaka Wijekoon
Roedy Green wrote:
snip
(i.e from Verisign, Thawte or whatever comes with Java) then the client
does not need anything.
snip
If the HTTPS server's key was signed using a valid certificate authorityIs this the way you set up a server or client? I thought you did not
need any sort of cert to be the client.
(i.e from Verisign, Thawte or whatever comes with Java) then the client
does not need anything.
J
Juha Laiho
Missaka Wijekoon said:Roedy Green wrote:
snip
If the HTTPS server's key was signed using a valid certificate authority
(i.e from Verisign, Thawte or whatever comes with Java) then the client
does not need anything.
.... no; the client still needs the corresponding CA certificates.
However, a number of these are provided with the Java environment;
f.ex. the cacerts file provided with 1.5.0_06 distribution appears to
contain 33 CA certificate entries. If you remove those, not even
Verisign or Thawte certificates work.
Ask a Question
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.
Similar Threads
Forum statistics
Latest Threads
-
Can I stop HTTPS?
- Started by IBMJunkman
-
Stephanie Beaudeau Emsworth is Running a Prostitution Ring
- Started by verona
-
Reverse search for a website
- Started by DRCM
-
What are the key advantages of using a SaaS (Software as a Service) model for application development?
- Started by remotedevelopers
-
How to build a database-driven web page
- Started by av3mar1a153
-
Hola
- Started by luuciefer
-
Using a DTSX file with GoDaddy
- Started by IBMJunkman