Connecting to HTTPS site

Hi all,
I have a problem with connecting to a HTTPS site from a JSP page.
I used the samplecode given in the Tomcat SSL guide in HttpClient for this purpose. But its giving error.
First I didnt used the Protocol class to register the https protocol. Then I got an error
"SSL handshaking error, No trusted certificate found"
later when I used the Protocol class to resgister https, I got NullPointerException.
My machine is behind proxy.
Do I need any third party certificate to connect with https?
Pls help me with details...
Jijesh

Jijesh,
I am struggling with the same issue. Were you able to resolve it? Any help is greatly appreciated.
Namrata

Similar Messages

  • Can only connect to HTTPS (secure) sites and can't connect to HTTP sites

    In short I CAN ONLY connect to HTTPS sites, meaning secure.
    I've narrowed this down to an issue regrading my mac book pro and the wireless router.
    Router:
    - not sure of the make model
    - other computers CAN connect to this router and go online
    My Mac:
    - Mac Book Pro
    - OS X 10.6
    - I can connect to other wireless networks just fine
    - I can surf the web for about 10 minutes or so then it blocks ALL http traffic
    and i'm only allowed to https sites
    going to a http site results in a "page is taking to long to respond"
    please anything?

    The router is a Verizon MI424WR
    hope that helps, but i doubt it will...
    just to also clairfy http sites either go really slow then time out only never to come back, https are blazing fast

  • HI i have macbook pro with OSX 10.8. I am facing typical problem with Wi- Fi , in school wi-fi it does'nt connects to http sites and connects only https  but in home wi-fi it connects to all all http and https sites. How fix this problem as I am new this

    HI i have macbook pro with OSX 10.8. I am facing typical problem with Wi- Fi , in school wi-fi it does'nt connects to http sites and connects only https as no security/proxy settings done but in home wi-fi it connects to all  http and https sites. How to fix this problem as I am new this operating system. Please any one help me in this as I have installed Delicious Library which is not working in school becoz it searches amzon http site.

    I would imagine that at school, you're required to connect through an HTTP proxy.
    From the menu bar, select
     ▹ System Preferences ▹ Network
    If the preference pane is locked, click the lock icon in the lower left corner and enter your password to unlock it. Then click the Advanced button and select the Proxies tab. Enter the proxy settings given to you by the network administrator. Click OK and then Apply.
    You may wish to create separate network locations for home and school. See the built-in help for instructions.

  • Connect to HTTPS site

    Hi experts,
    May I know if there is any tutorial on connecting to a password protected https site with JSSE? The example in the Sun tutorial is too simple. Thanks.

    SSL is applied to the server and all it does is
    protect the password during transit from client
    to server.
    If you develope the code to send the password
    using http it will be the same using https

  • SSL error connecting to https sites.

    I have recently got a laptop running Window 7 .
    when i visit Https sites, periodically the error message pops up. when i press ok, the operation progress till the next screen when again the message pops up as follows
    An error occurred during a connection
    SSL received a record with an incorrect Message Authentication Code.
    (Error code: ssl_error_bad_mac_read)

    I've removed the solved status from this thread as you still seem to have this problem.
    Are you using a direct connection or a proxy?<br />
    Do you have a router or security software (firewall) that might cause this problem?<br />
    Do you have problems with other secure https connections?
    You can see the connection settings here:
    *Tools > Options > Advanced : Network : Connection > Settings
    See "Firefox connection settings":
    *https://support.mozilla.com/kb/Firefox+cannot+load+websites+but+other+programs+can
    From [/questions/893358 another post] by you:
    <blockquote>refreshing the network card parameters seems to have solved the problem.<br />
    <br />
    But again the problem has resurfaced and I am getting frequent error <br />
    " SSL received a record with an incorrect Message Authentication Code.<br />
    <br />
    (Error code: ssl_error_bad_mac_read) "<br />
    <br />
    It is becoming very irritating since it is preventing me to access most of the https site including gmail. The most frustrating part is that the occurrence is not predictable. When the error comes and I click ok, the page is resubmitted and many of the times the page is loaded properly. The problem again occurs when I want to proceed to the next page.</blockquote>

  • Issue connecting to HTTPS site through CURL

    All,
    I am having trouble requesting info from HTTPS site using CURL and PHP. I am using Solaris 10. It so happens that sometimes it works and sometimes it doesn't. I am not sure what is the cause. If it doesn't work, this is the entry recorded in the verbose log:
    * About to connect() to 10.10.101.12 port 443 (#0)
    *   Trying 10.10.101.12... * connected
    * Connected to 10.10.101.12 (10.10.101.12) port 443 (#0)
    * error setting certificate verify locations, continuing anyway:
    *   CAfile: /etc/opt/webstack/curl/curlCA
      CApath: none
    * error:80089077:lib(128):func(137):reason(119)
    * Closing connection #0If it works, this is the entry recorded in the verbose log:
    * About to connect() to 10.10.101.12 port 443 (#0)
    *   Trying 10.10.101.12... * connected
    * Connected to 10.10.101.12 (10.10.101.12) port 443 (#0)
    * error setting certificate verify locations, continuing anyway:
    *   CAfile: /etc/opt/webstack/curl/curlCA
      CApath: none
    * SSL connection using DHE-RSA-AES256-SHA
    * Server certificate:
    *        subject: C=CA, ST=British Columnbia, L=Vancouver, O=google, OU=FDN, CN=g.googlenet.com, [email protected]
    *        start date: 2007-07-24 23:06:32 GMT
    *        expire date: 2027-09-07 23:06:32 GMT
    *        issuer: C=US, ST=California, L=Sunnyvale, O=Google, OU=Certificate Authority, CN=support, [email protected]
    *        SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
    POST /gportal/gpmgr HTTP/1.1^MHost: 10.10.101.12^M
    Accept: */*^M
    Accept-Encoding: gzip,deflate^M
    Content-Length: 1623^M
    Content-Type: application/x-www-form-urlencoded^M
    Expect: 100-continue^M
    ^M
    < HTTP/1.1 100 Continue^M
    < HTTP/1.1 200 OK^M
    < Date: Wed, 28 Apr 2010 21:56:15 GMT^M
    < Server: Apache^M
    < Cache-Control: no-cache^M
    < Pragma: no-cache^M
    < Vary: Accept-Encoding^M
    < Content-Encoding: gzip^M
    < Content-Length: 1453^M
    < Content-Type: application/json^M
    < ^M
    * Connection #0 to host 10.10.101.12 left intact
    * Closing connection #0My CURL options are as under:
        $ch = curl_init();
        $devnull = fopen('/tmp/curlcookie.txt', 'w');
        $fp_err = fopen('/tmp/verbose_file.txt', 'ab+');
        fwrite($fp_err, date('Y-m-d H:i:s')."\n\n");
        curl_setopt($ch, CURLOPT_STDERR, $devnull);
        curl_setopt($ch, CURLOPT_POST, 1);
        curl_setopt($ch, CURLOPT_URL, $desturl);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
        curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
        curl_setopt($ch, CURLOPT_HEADER, false);
        curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
        curl_setopt($ch, CURLOPT_CONNECTTIMEOUT,120);
        curl_setopt($ch, CURLOPT_AUTOREFERER, true);
        curl_setopt($ch, CURLOPT_ENCODING, 'gzip,deflate');
        curl_setopt($ch, CURLOPT_POSTFIELDS, $postdata);
        curl_setopt($ch, CURLOPT_VERBOSE,1);
        curl_setopt($ch, CURLOPT_FAILONERROR, true);
        curl_setopt($ch, CURLOPT_STDERR, $fp_err);
        $ret = curl_exec($ch);Anybody has any idea, why it works sometimes but fails mostly? The error I am trying to solve is error:80089077:lib(128):func(137):reason(119)
    Thanks

    There seems to be some confusion here. Maybe I misunderstood your original question...
    Glassfish is an Java application server.
    Since you were reporting issues with PHP, I assumed you were referring to an apache httpd server.
    Coolstack is a repository which contains a version of both tomcat and apache.
    So I suppose that glassfish could be considered to be a replacement for the tomcat in coolstack.
    However since their so different. I would have said competitor rather than replacement.
    But arent we talking about apache?
    But the root of the problem is actually an openssl bug.
    So the issue would be to install a different copy of openssl. Then use applications that are linked against it.
    Whether curl or apache or tomcat. Whatever you are seeing the problem in.
    So I was more suggesting that you could try a different version of curl/openssl. It doesnt matter if you get it from coolstack or sunfreeware, or blastwave or opencsw. Or compile it yourself.
    But I suggest you try patching first and hopefully you can fix the version your already using rather than replacing large amounts of software with a completely new version.

  • Suddenly my TC network only permits access to HTTPS sites- all HTTP sites say "safari can't connect to internet"

    This morning my TC wireless network suddenly does not allow any devices on it connect to HTTP sites. "Safari cannot connect to the internet"
    My OS X 10.9.5 Mac email works, as does GMAIL and Yahoo mail apps on smart phones on the TC network, but none of the devices behind the TC network can access regular websites.
    What's interesting is that the other wireless network in the house (the one we use for guests) does work on HTTP sites. This router is plugs into the same cable modem as the TC.
    I've recycled everything, and did a hard reset on the TC, but to no avail. Any ideas?

    You have the TC setup wrongly .. it should be in bridge.. it sounds like you have it in double NAT.

  • Secure connection failure in browser for https sites

    Recently I kept getting the error message "Secure Connection Failure" when using Firefox to go to https sites. I had a similar problem when I tried using Safari to connect to https sites.
    I fixed the problem by opening System Preferences > Parental Controls > selecting the appropriate User (as long as you have administration rights) > selected Allow unrestricted access to websites (by default Try to limit access to adult websites automatically is selected).
    Once I checked unrestricted access I was able to go to the https sites I wanted, which were my bank's site and the Firefox homepage for FAQs. Then I went back and checked "Try to limit ...". That brought back the error message again so I checked "Allow unrestricted access ...".
    The issue may have arisen because I downloaded a system security update a few days ago. Perhaps it reset the Parental Controls default.
    It would be good to block adult sites but the alternative seems to be to customize in Parental Controls the sites that are OK. This would be a tedious job because so many sites are https eg this site.
    I no longer have a problem but thought this might help others.

    Strangely, I noticed a couple of https sites I had trouble logging into from a link inside a https site.
    In System Preferences I went to Accouns and for myself unchecked "Enable parental controls".
    I was then able to log onto the the https site.

  • SSL errors connecting to secure sites

    <blockquote>Locking thread.<br>
    Please continue in your previous thread: [[/questions/891765]]</blockquote>
    I had earlier posted a query on a problem connecting to https sites. refreshing the network card parameters seems to have solved the problem.
    But again the problem has resurfaced and I am getting frequent error " SSL received a record with an incorrect Message Authentication Code.
    (Error code: ssl_error_bad_mac_read) "
    It is becoming very irritating since it is preventing me to access most of the https site including gmail. The most frustrating part is that the occurrence is not predictable. When the error comes and I click ok, the page is resubmitted and many of the times the page is loaded properly. The problem again occurs when I want to proceed to the next page.
    Any suggestion would be highly appreciated.

    I've removed the solved status from this thread as you still seem to have this problem.
    Are you using a direct connection or a proxy?<br />
    Do you have a router or security software (firewall) that might cause this problem?<br />
    Do you have problems with other secure https connections?
    You can see the connection settings here:
    *Tools > Options > Advanced : Network : Connection > Settings
    See "Firefox connection settings":
    *https://support.mozilla.com/kb/Firefox+cannot+load+websites+but+other+programs+can
    From [/questions/893358 another post] by you:
    <blockquote>refreshing the network card parameters seems to have solved the problem.<br />
    <br />
    But again the problem has resurfaced and I am getting frequent error <br />
    " SSL received a record with an incorrect Message Authentication Code.<br />
    <br />
    (Error code: ssl_error_bad_mac_read) "<br />
    <br />
    It is becoming very irritating since it is preventing me to access most of the https site including gmail. The most frustrating part is that the occurrence is not predictable. When the error comes and I click ok, the page is resubmitted and many of the times the page is loaded properly. The problem again occurs when I want to proceed to the next page.</blockquote>

  • Access https site using Java, is it possible?

    I am new on https programming, please give me some advice on this issue.
    I have to access an https site, say: https://someoneelsesite/
    That site needs a client certificate. I got one certificate which I can now use it to acess the site using IE Web Browser.
    Now my question is: is it possible for me writing a Java program to access that site? ( I need to download a file each day on that site)
    I read some articles from this forum. Information I got looks like I need https site's public server certificate which I do not have. All I have is a client certificate given by that site to me.
    Some one please advise.
    Thanks a lot.

    Thank you very much for your reply.
    I searched this site before. The post I got says I need a public certificate of web serve which I do not have. (Maybe I understand it wrong!)
    Could you post some piece of your code which connect a https site with only client certificate?

  • TMG Proxy not connecting internal HTTPS connection

    Dear All,
    I am working government org, and there are many internal HTTP and HTTPS sites which is going/thought to proxy tmg(2010) server.internal clients are able to connect to http sites but they are not connect to https sites and all server application are come
    to internal intranet network
    i am trying to add https access rule and some basic troubleshooting but governmant clients not able to open internal application https sites.
    my question is that is that possible?
    if possible how to make a rule or redirect https connection?
    Thanks for advanced

    Hi,
    Pelase check the article below.
    In some business scenarios, internal clients protected by Microsoft Internet Security and Acceleration (ISA) Server 2004 may require access to secure Internet Web sites. This scenario can be configured as follows:
            Configure a tunneled Secure Sockets Layer (SSL) end-to-end secure HTTP (HTTPS) connection between the internal client and the external Web site.
            Configure clients to request the external Web site using Hypertext Transfer Protocol (HTTP), and then redirect the request from the ISA Server computer to the site using HTTPS.
    Configuring Internal Client Acess to Web Sites over SSL
    https://technet.microsoft.com/en-us/library/cc302568.aspx
    Best Regards,
    Joyce
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

  • Cannot connect to https or encrypted sites (banks, pay-sites etc)

    Since two weeks I can no longer connect to most https sites.
    Some are very slow but finally show up after a minute or two (like finance.yahoo.com). One bank site (Interactive Brokers) allows me in, albeit very slowly but then they are only half functional.  Some payment sites appear unformatted.   Others just hang like my bank site.  I get into Apple Support https site but then it hangs when I sign in.  Looks like a timeout issue.  Some sites have more patience and I can go further in, others not.
    This happened on my 17" MacBook Pro 8,3 with Lion (it is Raided onto two SSD drives, the second having replaced my DVD). The whole system worked flawlessly for about a year.    I upgraded to Mountain Lion hoping this might reset things as before.
    This happens with Safari, Chrome or Firefox and also with Internet Explorer from a VirtualMachine with WMware, on the same MPB 17 machine.
    This happens with my wireless router as well as with a wireless SimCard using a different provider.
    I did the usual tricks of clearing caches etc, resetting Safari and the others both before and after upgrading to MLion.  I had no Firewall on or Parental controls.
    I tried to make a new location network, and I tried to change the MTU to a different value.  All to no avail.
    THIS DOES NOT happen on two other machines in the office: a Mac PRO  and on a MacBook AIR 10.6.7 and Safari 5.0.4 which briskily open all those sites.
    Thus I conclude that it may not the browsers, as they all do not work on the MBP but work on the other machines;  it is not the wireless networks as both do not work with the MBP but they do work with the other machines.  Likewise for the ISPs.
    It started right after my bank had a major down time after putting up a new site and software, so I initially thought it was their fault.  And since then it started affecting also the other sites.  Thus I thought it may be a bug within the system, but I have now finished all my ammunitions and now need help.
    I noticed that similar problems happened before in this community, as I have seen posts dating a while back and some were resolved with various tricks which have not solved my problem.
    Anybody with a suggestion?  Thanks
    gp
    PS I should add that everything else seem to work ok, except that in one of my datafeeds where I place orders (trading platform) there seems to be a marked delay 2-3 seconds whereby these orders were instantaneous before..)

    Please read this whole message before doing anything.
    This procedure is a diagnostic test. It won’t solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
    Third-party system modifications are a common cause of usability problems. By a “system modification,” I mean software that affects the operation of other software — potentially for the worse. The following procedure will help identify which such modifications you've installed. Don’t be alarmed by the complexity of these instructions — they’re easy to carry out and won’t change anything on your Mac. 
    These steps are to be taken while booted in “normal” mode, not in safe mode. If you’re now running in safe mode, reboot as usual before continuing. 
    Below are instructions to enter some UNIX shell commands. The commands are harmless, but they must be entered exactly as given in order to work. If you have doubts about the safety of the procedure suggested here, search this site for other discussions in which it’s been followed without any report of ill effects. 
    Some of the commands will line-wrap or scroll in your browser, but each one is really just a single line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, and you can then either copy or drag it. The headings “Step 1” and so on are not part of the commands. 
    Note: If you have more than one user account, Step 2 must be taken as an administrator. Ordinarily that would be the user created automatically when you booted the system for the first time. The other steps should be taken as the user who has the problem, if different. Most personal Macs have only one user, and in that case this paragraph doesn’t apply. 
    Launch the Terminal application in any of the following ways: 
    ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.) 
    ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens. 
    ☞ Open LaunchPad. Click Utilities, then Terminal in the page that opens. 
    When you launch Terminal, a text window will open with a line already in it, ending either in a dollar sign (“$”) or a percent sign (“%”). If you get the percent sign, enter “sh” and press return. You should then get a new line ending in a dollar sign. 
    Step 1 
    Copy or drag — do not type — the line below into the Terminal window, then press return:
    kextstat -kl | awk '!/com\.apple/{printf "%s %s\n", $6, $7}' 
    Post the lines of output (if any) that appear below what you just entered (the text, please, not a screenshot.) You can omit the final line ending in “$”. 
    Step 2 
    Repeat with this line:
    sudo launchctl list | sed 1d | awk '!/0x|com\.(apple|openssh|vix)|edu\.mit|org\.(amavis|apache|cups|isc|ntp|postfix|x)/{print $3}' 
    This time, you'll be prompted for your login password, which won't be displayed when you type it. You may get a one-time warning not to screw up. You don't need to post the warning. 
    Note: If you don’t have a login password, you’ll need to set one before taking this step. If that’s not possible, skip to the next step. 
    Step 3
    launchctl list | sed 1d | awk '!/0x|com\.apple|edu\.mit|org\.(x|openbsd)/{print $3}' 
    Step 4
    ls -1A /e*/mach* {,/}L*/{Ad,Compon,Ex,Fram,In,Keyb,La,Mail/Bu,P*P,Priv,Qu,Scripti,Servi,Spo,Sta}* L*/Fonts 2> /dev/null  
    Important: If you formerly synchronized with a MobileMe account, your me.com email address may appear in the output of the above command. If so, anonymize it before posting. 
    Step 5
    osascript -e 'tell application "System Events" to get name of every login item' 2> /dev/null 
    Remember, steps 1-5 are all drag-and-drop or copy-and-paste, whichever you prefer — no typing, except your password. Also remember to post the output. 
    You can then quit Terminal.

  • Haveing problems with Safari. It gives me an error message. Safari can't open the web page, because it can't establish a secure connection to the server. It only seams to have a problem on https sites. Any help would be apreciated.

    Safari keeps giving  and error message. " Safari can't open the web page( insert web page here) , because it can't establish a secure connetion to the server.
    It only seams to have a problem with https sites.
    Any help would be appreciated

    The "s" in "https" indicates the site is a secure server--usually a site that will require a password.  Connections to secure servers can be blocked by parental controls.  Are you using any parental controls, either through OSX's settings (in System Preferences) or third party parental control software (such as Netnanny)?  If so, check the settings to make sure they will allow the connection.

  • Since installation of last 4.0b12 version, I'm unable to connect to any https site through a proxy. Connection works if no proxy is involved, with proxy I receive a message like "proxy refuses the connection". Thank you for your answer

    I'm connected to a customer's network and I have to use a proxy.
    I correctly authenticate myself to the proxy and I try to access https://mail.google.com.
    I receive a message that the proxy refuses the connection.
    I noticed that this happens with all the https sites.
    If I connect with my mobile internet key without proxy, I'm able to connect: the combination of proxy and https is failing.
    Other computers on the same network with different browsers can connect to https through the proxy.

    I'm working with the Firefox development team on this one. As far as I can tell, they seem to think that there are 2-3 different problems with the same/very similar symptoms, all involving proxies. They think they've fixed them all for RC1.
    Right now, it looks like we just want people to test an early build.
    You can get that here:
    [http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/2011-03-03-12-mozilla-central/firefox-4.0b13pre.en-US.win32.installer.exe]
    Install that somewhere (not in your current install directory), quit all open Firefox instances and try it. Let me know if it works.

  • Cannot access any https sites, clock is OK, get This Connection is Untrusted error message.

    All works OK on Chrome and IE, but Firefox just suddenly stopped access to https sites yesterday, e.g. Google, Facebook and Linkedin. Non secure http sites are OK though. "This Connection is Untrusted" is the error message and technical details are www.google.com.tw uses an invalid security certificate. The certificate is not trusted because no issuer chain was provided. (Error code: sec_error_unknown_issuer). I've tried all the Mozilla support suggestions, clock (which was always correct), reset Firefox, etc. No change so far, I hope you can help fix this issue.

    Check the date and time and time zone in the clock on your computer: (double) click the clock icon on the Windows Taskbar.
    Check out why the site is untrusted and click "Technical Details to expand this section.<br>If the certificate is not trusted because no issuer chain was provided (sec_error_unknown_issuer) then see if you can install this intermediate certificate from another source.
    You can retrieve the certificate and check details like who issued certificates and expiration dates of certificates.
    *Click the link at the bottom of the error page: "I Understand the Risks"
    Let Firefox retrieve the certificate: "Add Exception" -> "Get Certificate".
    *Click the "View..." button and inspect the certificate and check who is the issuer of the certificate.
    You can see more Details like intermediate certificates that are used in the Details pane.
    If <b>"I Understand the Risks"</b> is missing then this page may be opened in an (i)frame and in that case try the right-click context menu and use "This Frame: Open Frame in New Tab".
    *Note that some firewalls monitor (secure) connections and that programs like Sendori or FiddlerRoot can intercept connections and send their own certificate instead of the website's certificate.
    *Note that it is not recommended to add a permanent exception in cases like this, so only use it to inspect the certificate.

Maybe you are looking for

  • Fetching 10 records at a time

    Product.Category dimension has 4 child nodes Accessories,Bikes,Clothing n Components.My problem is when I have thousands of first level nodes my application takes a lot of time to load. Is there a way to fetch only say 100 records at a time? So then

  • Add SQL reporting services to get Azure sql db data

    Dear all, I have read recently that SQL server reporting services as been remmoved from Azure services. I have a SQL server database on azure which collect different type of data which are collected from a web admin portal by my users. I have a stron

  • Dimension name is not displayed when all dimvals are selected

    I have a dimension Price Range diemnsion which is multiselect Or. If I select all dimVals of Price Range the Price range is still displayed in left side of jspref application. We have another dimensions Ad Feature which is also multiselect Or. If I s

  • Some issues when consuming RFC2 model using WebDynpro Java CE 7.11

    Hi Experts , I'm using Web Dynpro for Java to develop our project. I have issues when I use RFC 2 model to call BAPI function . I already create the RFC 2 model successfully to call one PO BAPI function --- BAPI_PO_GETDETAIL. The whole project build

  • Calling all Ant developers!!!

    greetings to all my fellow Ant developers!!! I would first of all like to thank all of those who helped me set up Ant. The good news is, last night I tinkered around with a few things, and it is all up and running now smiles But I have a question abo