You are viewing a plain text version of this content. The canonical link for it is here.
Posted to java-user@axis.apache.org by Vadim Letitchevski <vl...@teledyne.com> on 2009/12/09 02:20:51 UTC
Creating Web Service client using HTTPS from wsdl files
I am trying to configure my client auto-generated from WSDL to use SSL.
I have read already the recommendations to set these:
System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore");
System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
Unfortunately this is not all I need to set. I care about using only TLS1, only NULL-SHA Cipher, two way authentication and keep-alive.
The problem is, I can't find any mentioning of the property names which are needed for me, neither a full list of supported ssl properties and their values which can be set with System.setProperty() as well.
Thanks
Vadim.
(310)765-3812
RE: Creating Web Service client using HTTPS from wsdl files
Posted by Vadim Letitchevski <vl...@teledyne.com>.
I don't get it. I am the client. The server is on the other side. I can test/connect to the server using OpenSSL which by the way takes all these parameters (certificate, key, truststore, protocol, cipher).
Thanks
Vadim.
(310)765-3812
________________________________
From: Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com]
Sent: Wednesday, December 09, 2009 10:28 AM
To: axis-user@ws.apache.org
Subject: Re: Creating Web Service client using HTTPS from wsdl files
AFAIK these configuration needs to be happen at the transport level and it depends on the app server you are using for the deployment. The related documentation of that app server will give you a thorough insight into these configuration options.
thanks.
/thilina
Thilina Mahesh Buddhika
http://blog.thilinamb.com
On Wed, Dec 9, 2009 at 10:03 PM, Vadim Letitchevski <vl...@teledyne.com>> wrote:
Thank you Thhilina.
What about the rest of it - protocol and cipher?
Thanks
Vadim.
________________________________
From: Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com<ma...@gmail.com>]
Sent: Wednesday, December 09, 2009 5:13 AM
To: axis-user@ws.apache.org<ma...@ws.apache.org>
Subject: Re: Creating Web Service client using HTTPS from wsdl files
hi,
Some of the properties you mentioned, like two-way authentication has to be enabled in the SSL settings in the app-server where the Axis2 is deployed.
For example, in Tomcat following configuration segment available in server.xml holds some of these parameters.
<Connector port="8443" maxHttpHeaderSize="8192" SSLEnabled="true"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="keystore.jks"
keystorePass="wso2carbon" />
It depends on the app server you are using. Some times it is required to set some system variables to support these parameters. For example, if you have enabled clientAuth(two-way authentication), then you have to set "javax.net.ssl.keyStore" and "javax.net.ssl.keyStorePassword" system properties.
thanks.
/thilina
Thilina Mahesh Buddhika
http://blog.thilinamb.com
On Wed, Dec 9, 2009 at 6:50 AM, Vadim Letitchevski <vl...@teledyne.com>> wrote:
I am trying to configure my client auto-generated from WSDL to use SSL.
I have read already the recommendations to set these:
System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore");
System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
Unfortunately this is not all I need to set. I care about using only TLS1, only NULL-SHA Cipher, two way authentication and keep-alive.
The problem is, I can't find any mentioning of the property names which are needed for me, neither a full list of supported ssl properties and their values which can be set with System.setProperty() as well.
Thanks
Vadim.
(310)765-3812
Re: Creating Web Service client using HTTPS from wsdl files
Posted by Thilina Mahesh Buddhika <th...@gmail.com>.
AFAIK these configuration needs to be happen at the transport level and it
depends on the app server you are using for the deployment. The related
documentation of that app server will give you a thorough insight into these
configuration options.
thanks.
/thilina
Thilina Mahesh Buddhika
http://blog.thilinamb.com
On Wed, Dec 9, 2009 at 10:03 PM, Vadim Letitchevski <
vletitchevski@teledyne.com> wrote:
> Thank you Thhilina.
> What about the rest of it - protocol and cipher?
>
> Thanks
> Vadim.
>
>
> ------------------------------
> *From:* Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com]
> *Sent:* Wednesday, December 09, 2009 5:13 AM
>
> *To:* axis-user@ws.apache.org
> *Subject:* Re: Creating Web Service client using HTTPS from wsdl files
>
> hi,
>
> Some of the properties you mentioned, like two-way authentication has to be
> enabled in the SSL settings in the app-server where the Axis2 is deployed.
>
> For example, in Tomcat following configuration segment available in
> server.xml holds some of these parameters.
>
> <Connector port="8443" maxHttpHeaderSize="8192" SSLEnabled="true"
> maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
> enableLookups="false" disableUploadTimeout="true"
> acceptCount="100" scheme="https" secure="true"
> clientAuth="false" sslProtocol="TLS"
> keystoreFile="keystore.jks"
> keystorePass="wso2carbon" />
>
> It depends on the app server you are using. Some times it is required to
> set some system variables to support these parameters. For example, if you
> have enabled clientAuth(two-way authentication), then you have to set
> "javax.net.ssl.keyStore" and "javax.net.ssl.keyStorePassword" system
> properties.
>
> thanks.
> /thilina
>
> Thilina Mahesh Buddhika
> http://blog.thilinamb.com
>
>
> On Wed, Dec 9, 2009 at 6:50 AM, Vadim Letitchevski <
> vletitchevski@teledyne.com> wrote:
>
>> I am trying to configure my client auto-generated from WSDL to use SSL.
>> I have read already the recommendations to set these:
>> System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore");
>> System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
>>
>> Unfortunately this is not all I need to set. I care about using only TLS1,
>> only NULL-SHA Cipher, two way authentication and keep-alive.
>> The problem is, I can't find any mentioning of the property names which
>> are needed for me, neither a full list of supported ssl properties and their
>> values which can be set with System.setProperty() as well.
>>
>>
>> Thanks
>> Vadim.
>> (310)765-3812
>>
>>
>>
>
RE: Creating Web Service client using HTTPS from wsdl files
Posted by Vadim Letitchevski <vl...@teledyne.com>.
Thank you Thhilina.
What about the rest of it - protocol and cipher?
Thanks
Vadim.
________________________________
From: Thilina Mahesh Buddhika [mailto:thilinamb@gmail.com]
Sent: Wednesday, December 09, 2009 5:13 AM
To: axis-user@ws.apache.org
Subject: Re: Creating Web Service client using HTTPS from wsdl files
hi,
Some of the properties you mentioned, like two-way authentication has to be enabled in the SSL settings in the app-server where the Axis2 is deployed.
For example, in Tomcat following configuration segment available in server.xml holds some of these parameters.
<Connector port="8443" maxHttpHeaderSize="8192" SSLEnabled="true"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="keystore.jks"
keystorePass="wso2carbon" />
It depends on the app server you are using. Some times it is required to set some system variables to support these parameters. For example, if you have enabled clientAuth(two-way authentication), then you have to set "javax.net.ssl.keyStore" and "javax.net.ssl.keyStorePassword" system properties.
thanks.
/thilina
Thilina Mahesh Buddhika
http://blog.thilinamb.com
On Wed, Dec 9, 2009 at 6:50 AM, Vadim Letitchevski <vl...@teledyne.com>> wrote:
I am trying to configure my client auto-generated from WSDL to use SSL.
I have read already the recommendations to set these:
System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore");
System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
Unfortunately this is not all I need to set. I care about using only TLS1, only NULL-SHA Cipher, two way authentication and keep-alive.
The problem is, I can't find any mentioning of the property names which are needed for me, neither a full list of supported ssl properties and their values which can be set with System.setProperty() as well.
Thanks
Vadim.
(310)765-3812
Re: Creating Web Service client using HTTPS from wsdl files
Posted by Thilina Mahesh Buddhika <th...@gmail.com>.
hi,
Some of the properties you mentioned, like two-way authentication has to be
enabled in the SSL settings in the app-server where the Axis2 is deployed.
For example, in Tomcat following configuration segment available in
server.xml holds some of these parameters.
<Connector port="8443" maxHttpHeaderSize="8192" SSLEnabled="true"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="keystore.jks"
keystorePass="wso2carbon" />
It depends on the app server you are using. Some times it is required to set
some system variables to support these parameters. For example, if you have
enabled clientAuth(two-way authentication), then you have to set
"javax.net.ssl.keyStore" and "javax.net.ssl.keyStorePassword" system
properties.
thanks.
/thilina
Thilina Mahesh Buddhika
http://blog.thilinamb.com
On Wed, Dec 9, 2009 at 6:50 AM, Vadim Letitchevski <
vletitchevski@teledyne.com> wrote:
> I am trying to configure my client auto-generated from WSDL to use SSL.
> I have read already the recommendations to set these:
> System.setProperty("javax.net.ssl.trustStore", "/path/to/.keystore");
> System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
>
> Unfortunately this is not all I need to set. I care about using only TLS1,
> only NULL-SHA Cipher, two way authentication and keep-alive.
> The problem is, I can't find any mentioning of the property names which are
> needed for me, neither a full list of supported ssl properties and their
> values which can be set with System.setProperty() as well.
>
>
> Thanks
> Vadim.
> (310)765-3812
>
>
>