MultiTrustManager

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

MultiTrustManager

Rene Scheibe
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Why is there a custom MultiTrustManager implemented in OFBiz and not the
"default" one used that is provided by:

javax.net.ssl.TrustManagerFactory.getInstance("SunX509")

Because of this I have to put the certificate of every HTTPS endpoint I
want to connect to in the truststore. Whereas normally it is only
necessary to put the root CA certificate of a signed certificate into
the truststore.

Cheers,
René Scheibe
- --
René Scheibe * [hidden email]
TNG Technology Consulting GmbH, Betastr. 13a, 85774 Unterföhring
Geschäftsführer: Henrik Klagges, Gerhard Müller, Christoph Stock
Sitz: Unterföhring * Amtsgericht München * HRB 135082
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkzhDI4ACgkQUXs9EHvIuCpzFACfU5aHHPdgmx5PX2gFO26qKNWy
5XIAnAtPJ8r3HcIm130F037pUPUfoKln
=orDL
-----END PGP SIGNATURE-----
Reply | Threaded
Open this post in threaded view
|

Re: MultiTrustManager

Jacques Le Roux
Administrator
Hi René,

I have no ideas why. But it could be interesting to contribute code in order to use
javax.net.ssl.TrustManagerFactory.getInstance("SunX509")
if ever it's possible (maybe it's impossible and that could be the reason, I did not look at the code)

Jacques

From: "Rene Scheibe" <[hidden email]>

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Why is there a custom MultiTrustManager implemented in OFBiz and not the
> "default" one used that is provided by:
>
> javax.net.ssl.TrustManagerFactory.getInstance("SunX509")
>
> Because of this I have to put the certificate of every HTTPS endpoint I
> want to connect to in the truststore. Whereas normally it is only
> necessary to put the root CA certificate of a signed certificate into
> the truststore.
>
> Cheers,
> René Scheibe
> - --
> René Scheibe * [hidden email]
> TNG Technology Consulting GmbH, Betastr. 13a, 85774 Unterföhring
> Geschäftsführer: Henrik Klagges, Gerhard Müller, Christoph Stock
> Sitz: Unterföhring * Amtsgericht München * HRB 135082
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAkzhDI4ACgkQUXs9EHvIuCpzFACfU5aHHPdgmx5PX2gFO26qKNWy
> 5XIAnAtPJ8r3HcIm130F037pUPUfoKln
> =orDL
> -----END PGP SIGNATURE-----
>