You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@clerezza.apache.org by "Sergio Fernandez (JIRA)" <ji...@apache.org> on 2011/05/12 13:12:47 UTC

[jira] [Created] (CLEREZZA-519) Warnings serving some static content using HTTPS

Warnings serving some static content using HTTPS
------------------------------------------------

                 Key: CLEREZZA-519
                 URL: https://issues.apache.org/jira/browse/CLEREZZA-519
             Project: Clerezza
          Issue Type: Bug
            Reporter: Sergio Fernandez
            Priority: Minor


Trying clerezza using HTTPS, I notice that it raises many exceptions related with some static content, such as:

zz>2011-05-12 12:59:00,656 [qtp30390269-39 - /favicon.ico]  WARN [qtp30390269-39 - /favicon.ico] (JDK14LoggerAdapter.java\:588) - Exception (with no exception mapper)
java.security.PrivilegedActionException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

(I'll also attach the full output produced)

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (CLEREZZA-519) Warnings serving some static content using HTTPS

Posted by "Reto Bachmann-Gmür (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CLEREZZA-519?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13032362#comment-13032362 ] 

Reto Bachmann-Gmür commented on CLEREZZA-519:
---------------------------------------------

The reson for this is that it tries to get the the page-not found page via https from the own instance on the same virtual host (i.e. using the same hostname) as in the original request. The problem is that java complains because localhost has a self-signed certificate and refuses to get the content. A You can add the cert of localhost to the jvm (instruction son how to do this).

By adding a resource at /favicon.ico you could prevent mosts 404 and the related error above.

> Warnings serving some static content using HTTPS
> ------------------------------------------------
>
>                 Key: CLEREZZA-519
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-519
>             Project: Clerezza
>          Issue Type: Bug
>            Reporter: Sergio Fernandez
>            Priority: Minor
>              Labels: security
>         Attachments: clerezza-out.txt
>
>
> Trying clerezza using HTTPS, I notice that it raises many exceptions related with some static content, such as:
> zz>2011-05-12 12:59:00,656 [qtp30390269-39 - /favicon.ico]  WARN [qtp30390269-39 - /favicon.ico] (JDK14LoggerAdapter.java\:588) - Exception (with no exception mapper)
> java.security.PrivilegedActionException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
> (I'll also attach the full output produced)

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Updated] (CLEREZZA-519) Warnings serving some static content using HTTPS

Posted by "Sergio Fernandez (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/CLEREZZA-519?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Sergio Fernandez updated CLEREZZA-519:
--------------------------------------

    Attachment: clerezza-out.txt

> Warnings serving some static content using HTTPS
> ------------------------------------------------
>
>                 Key: CLEREZZA-519
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-519
>             Project: Clerezza
>          Issue Type: Bug
>            Reporter: Sergio Fernandez
>            Priority: Minor
>              Labels: security
>         Attachments: clerezza-out.txt
>
>
> Trying clerezza using HTTPS, I notice that it raises many exceptions related with some static content, such as:
> zz>2011-05-12 12:59:00,656 [qtp30390269-39 - /favicon.ico]  WARN [qtp30390269-39 - /favicon.ico] (JDK14LoggerAdapter.java\:588) - Exception (with no exception mapper)
> java.security.PrivilegedActionException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
> (I'll also attach the full output produced)

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira