You are viewing a plain text version of this content. The canonical link for it is here.

Posted to fx-dev@ws.apache.org by se...@gmx.de on 2006/11/13 22:50:22 UTC

Fetching certs for signature validation fails

Hi again,

after testing with dotNet Clients I have noticed, that only X509v3 certificats are supported by WS-Security. 
Therefore I have generated some test certificats with OpenSSL and imported them into JKS. But during signature tests, WSS4J complains that it could not get Cert from JKS: "No alias found for subject from issuer with". 

Comparing console debug and JKS list output I guess, that the problem is in different interpretation of attributes like email or unit. For example JKS prints: "EMAILADDRESS=email@test123.de..." but WSS4J prints: "E=la@email@test123.de".

So I have set only common name during cert generating. Now WSS4J is able to find the cert in JKS.

Regards,
Christoph
-- 
Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen! 
Ideal für Modem und ISDN: http://www.gmx.net/de/go/smartsurfer

---------------------------------------------------------------------
To unsubscribe, e-mail: wss4j-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: wss4j-dev-help@ws.apache.org