You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Cyrille Le Clerc (JIRA)" <ji...@apache.org> on 2010/03/05 01:15:27 UTC

[jira] Created: (CXF-2693) Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client

Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client
---------------------------------------------------------------------------------------------------

                 Key: CXF-2693
                 URL: https://issues.apache.org/jira/browse/CXF-2693
             Project: CXF
          Issue Type: New Feature
          Components: Transports
    Affects Versions: 2.2.6
            Reporter: Cyrille Le Clerc
            Assignee: Cyrille Le Clerc
         Attachments: CXF-2693-1.patch

Allow CXF client (JAXWS & JAXRS) for HTTPS calls to use JVM wide SSL components :  
* [HttpsURLConnection#getDefaultSSLSocketFactory()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultSSLSocketFactory()]
* [HttpsURLConnection.html.getDefaultHostnameVerifier()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultHostnameVerifier()]

For this, I propose to add the following attributes to {{<http-conf:tlsClientParameters ... />}} :
|| Attribute || Description ||
| {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultSslSocketFactory should be used to create https connections. If 'true', 'jsseProvider', 'secureSocketProtocol', 'trustManagers', 'keyManagers', 'secureRandom', 'cipherSuites' and 'cipherSuitesFilter' are ignored.  |
| {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultHostnameVerifier should be used to create https connections. If 'true', 'disableCNCheck' is ignored. |


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Resolved: (CXF-2693) Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client

Posted by "Cyrille Le Clerc (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/CXF-2693?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Cyrille Le Clerc resolved CXF-2693.
-----------------------------------

       Resolution: Fixed
    Fix Version/s: 2.3
                   2.2.7

> Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client
> ---------------------------------------------------------------------------------------------------
>
>                 Key: CXF-2693
>                 URL: https://issues.apache.org/jira/browse/CXF-2693
>             Project: CXF
>          Issue Type: New Feature
>          Components: Transports
>    Affects Versions: 2.2.6
>            Reporter: Cyrille Le Clerc
>            Assignee: Cyrille Le Clerc
>             Fix For: 2.2.7, 2.3
>
>         Attachments: CXF-2693-1.patch
>
>
> Allow CXF client (JAXWS & JAXRS) for HTTPS calls to use JVM wide SSL components :  
> * [HttpsURLConnection#getDefaultSSLSocketFactory()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultSSLSocketFactory()]
> * [HttpsURLConnection.html.getDefaultHostnameVerifier()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultHostnameVerifier()]
> For this, I propose to add the following attributes to {{<http-conf:tlsClientParameters ... />}} :
> || Attribute || Description ||
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultSslSocketFactory should be used to create https connections. If 'true', 'jsseProvider', 'secureSocketProtocol', 'trustManagers', 'keyManagers', 'secureRandom', 'cipherSuites' and 'cipherSuitesFilter' are ignored.  |
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultHostnameVerifier should be used to create https connections. If 'true', 'disableCNCheck' is ignored. |

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (CXF-2693) Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client

Posted by "Cyrille Le Clerc (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CXF-2693?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12841622#action_12841622 ] 

Cyrille Le Clerc commented on CXF-2693:
---------------------------------------

I wondered whether the names of the new attributes I propose are too long or not. At the end, I preferred long self explanatory names. 

The other names I thought about were {{useJvmDefaultSslSocketFactory}} and {{useJvmDefaultSslSocketFactory}} ; they were shorter but I felt they were a bit confusing.

I am opened to any suggestion.

Cyrille

> Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client
> ---------------------------------------------------------------------------------------------------
>
>                 Key: CXF-2693
>                 URL: https://issues.apache.org/jira/browse/CXF-2693
>             Project: CXF
>          Issue Type: New Feature
>          Components: Transports
>    Affects Versions: 2.2.6
>            Reporter: Cyrille Le Clerc
>            Assignee: Cyrille Le Clerc
>         Attachments: CXF-2693-1.patch
>
>
> Allow CXF client (JAXWS & JAXRS) for HTTPS calls to use JVM wide SSL components :  
> * [HttpsURLConnection#getDefaultSSLSocketFactory()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultSSLSocketFactory()]
> * [HttpsURLConnection.html.getDefaultHostnameVerifier()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultHostnameVerifier()]
> For this, I propose to add the following attributes to {{<http-conf:tlsClientParameters ... />}} :
> || Attribute || Description ||
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultSslSocketFactory should be used to create https connections. If 'true', 'jsseProvider', 'secureSocketProtocol', 'trustManagers', 'keyManagers', 'secureRandom', 'cipherSuites' and 'cipherSuitesFilter' are ignored.  |
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultHostnameVerifier should be used to create https connections. If 'true', 'disableCNCheck' is ignored. |

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Updated: (CXF-2693) Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client

Posted by "Cyrille Le Clerc (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/CXF-2693?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Cyrille Le Clerc updated CXF-2693:
----------------------------------

    Attachment: CXF-2693-1.patch

> Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client
> ---------------------------------------------------------------------------------------------------
>
>                 Key: CXF-2693
>                 URL: https://issues.apache.org/jira/browse/CXF-2693
>             Project: CXF
>          Issue Type: New Feature
>          Components: Transports
>    Affects Versions: 2.2.6
>            Reporter: Cyrille Le Clerc
>            Assignee: Cyrille Le Clerc
>         Attachments: CXF-2693-1.patch
>
>
> Allow CXF client (JAXWS & JAXRS) for HTTPS calls to use JVM wide SSL components :  
> * [HttpsURLConnection#getDefaultSSLSocketFactory()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultSSLSocketFactory()]
> * [HttpsURLConnection.html.getDefaultHostnameVerifier()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultHostnameVerifier()]
> For this, I propose to add the following attributes to {{<http-conf:tlsClientParameters ... />}} :
> || Attribute || Description ||
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultSslSocketFactory should be used to create https connections. If 'true', 'jsseProvider', 'secureSocketProtocol', 'trustManagers', 'keyManagers', 'secureRandom', 'cipherSuites' and 'cipherSuitesFilter' are ignored.  |
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultHostnameVerifier should be used to create https connections. If 'true', 'disableCNCheck' is ignored. |

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (CXF-2693) Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client

Posted by "Cyrille Le Clerc (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/CXF-2693?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12844111#action_12844111 ] 

Cyrille Le Clerc commented on CXF-2693:
---------------------------------------

Documentation page "[Client HTTP Transport (including SSL support)|http://cxf.apache.org/docs/client-http-transport-including-ssl-support.html]" and XSD [security.xsd|http://cxf.apache.org/schemas/configuration/security.xsd] updated on the web site.


> Allow to use HttpsURLConnection's defaultSSLSocketFactory and defaultHostnameVerifier in CXF client
> ---------------------------------------------------------------------------------------------------
>
>                 Key: CXF-2693
>                 URL: https://issues.apache.org/jira/browse/CXF-2693
>             Project: CXF
>          Issue Type: New Feature
>          Components: Transports
>    Affects Versions: 2.2.6
>            Reporter: Cyrille Le Clerc
>            Assignee: Cyrille Le Clerc
>             Fix For: 2.2.7, 2.3
>
>         Attachments: CXF-2693-1.patch
>
>
> Allow CXF client (JAXWS & JAXRS) for HTTPS calls to use JVM wide SSL components :  
> * [HttpsURLConnection#getDefaultSSLSocketFactory()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultSSLSocketFactory()]
> * [HttpsURLConnection.html.getDefaultHostnameVerifier()|http://java.sun.com/javase/6/docs/api/javax/net/ssl/HttpsURLConnection.html#getDefaultHostnameVerifier()]
> For this, I propose to add the following attributes to {{<http-conf:tlsClientParameters ... />}} :
> || Attribute || Description ||
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultSslSocketFactory should be used to create https connections. If 'true', 'jsseProvider', 'secureSocketProtocol', 'trustManagers', 'keyManagers', 'secureRandom', 'cipherSuites' and 'cipherSuitesFilter' are ignored.  |
> | {{useHttpsURLConnectionDefaultSslSocketFactory}} | This attribute specifies if HttpsURLConnection.defaultHostnameVerifier should be used to create https connections. If 'true', 'disableCNCheck' is ignored. |

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.