You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ofbiz.apache.org by "BJ Freeman (JIRA)" <ji...@apache.org> on 2008/07/30 02:45:33 UTC

[jira] Commented: (OFBIZ-1902) ofbiz.org cert is expired causes peer not authenticated

    [ https://issues.apache.org/jira/browse/OFBIZ-1902?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12618021#action_12618021 ] 

BJ Freeman commented on OFBIZ-1902:
-----------------------------------

It came to mind that maybe there was an ant script to build a ssl cert.
I ran accross this

Local-deploy-generated-apache-certs

    Overwrites files with generated self-signed certificate and key files; target directory is the subdirectory of APACHE_HOME specified by the apache-server-ssl-cert-directory property in apache-conf.properties. Called by local-deploy-apache.
configure-apache

    Calls targets to copy model httpd.conf and ssl.conf files using token filtering. Depended on by local-deploy-generated-apache-config.
generate-self-signed-certificate

    Generates self-signed certificate and key files with openssl, based on peroperties set in apache-conf.properties. Depended on by local-deploy-generated-apache-certs.

So maybe that is what ofbiz needs to do. then the person downloading would be responsible to do the certs

> ofbiz.org cert is expired causes peer not authenticated
> -------------------------------------------------------
>
>                 Key: OFBIZ-1902
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-1902
>             Project: OFBiz
>          Issue Type: Bug
>    Affects Versions: SVN trunk, Release Branch 4.0
>         Environment: Ofbiz ootb localhost
>            Reporter: BJ Freeman
>            Priority: Blocker
>             Fix For: SVN trunk, Release Branch 4.0
>
>
> the ofbiz.org cert that is in the ootb has expired on July 7th.
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [     RequestHandler.java:243:INFO ] [Processing Request]: EditWebSite sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [     RequestHandler.java:433:INFO ] [RequestHandler.doRequest]: Response is a view. sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [     RequestHandler.java:584:INFO ] servletName=control, view=EditWebSite sessionId=15BC9675666BC788DE897F186C9BF720.jvm1
> 2008-07-29 14:24:31,312 (http-0.0.0.0-8443-2) [        JSSESupport.java:89 :DEBUG] Error getting client certs
> javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
> 	at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:345)
> 	at org.apache.tomcat.util.net.jsse.JSSESupport.getX509Certificates(JSSESupport.java:87)
> 	at org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupport.java:141)
> 	at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:1011)
> 	at org.apache.coyote.Request.action(Request.java:352)

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.