Hi,
I currently have EJB3 via SSL working with a self signed certificate for the server. The client specifies a truststore which includes the server's certificate and all works well in this scenario.
However if I don't define the truststore for the client, it obviously fails but my question is can I programmatically retrieve the server's certificate and prompt the user asking them if they trust this certificate? Which I can then programmatically add to a truststore (just like how a browser does it) ?
Cheers,
Jimmy