[arquillian-issues] [JBoss JIRA] (ARQ-1370) Warp: support SSL for CommandService using untrusted communication

Oliver Bock (JIRA) jira-events at lists.jboss.org
Fri Apr 5 15:47:42 EDT 2013 

    [ https://issues.jboss.org/browse/ARQ-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12765354#comment-12765354 ] 

Oliver Bock edited comment on ARQ-1370 at 4/5/13 3:47 PM:
----------------------------------------------------------

In case you run into the following SSL-related exceptions:
* {{sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target}}
** add {{-Djavax.net.ssl.trustStore=/path/to/local/keystore}} (default: {{~/.keystore}}) to the client VM
* {{java.security.cert.CertificateException: No subject alternative names present}}
** recreate your keystore adding a SAN or Subject Alternative Name by adding this argument to keytool: {{\-ext san=ip:0.0.0.0}} (the IP can be found in {{standalone.xml}} at {{interfaces/interface[@name="public"]/inet-address}})
                
      was (Author: brevilo):
    In case you run into the following SSL-related exceptions:
* {{PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target}}
** add {{-Djavax.net.ssl.trustStore=/path/to/local/keystore}} (default: {{~/.keystore}}) to the client VM
* {{java.security.cert.CertificateException: No subject alternative names present}}
** recreate your keystore adding a SAN or Subject Alternative Name by adding this argument to keytool: {{\-ext san=ip:0.0.0.0}} (the IP can be found in {{standalone.xml}} at {{interfaces/interface[@name="public"]/inet-address}})
                  
> Warp: support SSL for CommandService using untrusted communication
> ------------------------------------------------------------------
>
>                 Key: ARQ-1370
>                 URL: https://issues.jboss.org/browse/ARQ-1370
>             Project: Arquillian
>          Issue Type: Enhancement
>      Security Level: Public(Everyone can see) 
>          Components: Extension - Warp
>    Affects Versions: warp_1.0.0.Alpha3
>            Reporter: Lukáš Fryč
>
> We can make use of HTTP client which will automatically trust SSL endpoint.
> http://stackoverflow.com/questions/2703161/how-to-ignore-ssl-certificate-errors-in-apache-httpclient-4-0

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the arquillian-issues mailing list