Invoking Webservice over HTTPS

Similar Messages

• HTTP(S) Timeout while invoking WebService over HTTPS.

  Hello,
  I have some stress with my webservice client implementation.
  I do the following (I can post source code if needed):
  - As usual:
  System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.www.protocol");
  Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
  - Install my TrustManager
  - Install my DefaultHostnameVerifier
  - Register a custom type
  - Make a javax.xml.rpc.Call to access a webservice
  My observations:
  The code works well when using an HTTP URL, just changing the target URL to HTTPS causes the problem.
  The HTTPS web service (on server) works well seeing a HTTPS client using the weblogic SSL implementation, or an AXIS client can easily connect.
  When I use a simple and direct "Open HttpsURLConnection on URL("https://xxx.service?WSDL"); print-out-all-that's-coming-in", it works well. I think my SSL access is made correctly.
  The client does not complain about not-installed SSL things, all certificates are accepted, etc. No problem at this part.
  System.setProperty("javax.net.debug", "all") is set, but i dont see anything of interrest.
  I use the packages contained in 'java_xml_pack-summer-02_01' of SUN (jaxm-1.1_01, jaxp-1.2_01,jaxr-1.0_02 etc and the jsse 1.0.3).
  The server is weblogic 7.
  Calling
  call.setTargetEndpointAddress("http://arakis:7001/traces_ws/searchCertificate");
  works well while
  call.setTargetEndpointAddress("https://arakis:7002/traces_ws/searchCertificate");
  causes (after 2 minutes):
  HTTP transport error: java.net.SocketException: Unexpected end of file from server
  at com.sun.xml.rpc.client.http.HttpClientTransport.invoke(HttpClientTransport.java:189)
  at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:73)
  at com.sun.xml.rpc.client.dii.CallInvokerImpl.doInvoke(CallInvokerImpl.java:54)
  at com.sun.xml.rpc.client.dii.BasicCall.invoke(BasicCall.java:279)
  at SSLSOAPClient.main(SSLSOAPClient.java:264)
  CAUSE:
  java.net.SocketException: Unexpected end of file from server
  at sun.net.www.http.HttpClient.parseHTTPHeader(HttpClient.java:699)
  at sun.net.www.http.HttpClient.parseHTTP(HttpClient.java:604)
  at sun.net.www.http.HttpClient.parseHTTPHeader(HttpClient.java:697)
  at sun.net.www.http.HttpClient.parseHTTP(HttpClient.java:604)
  at com.sun.xml.rpc.client.http.handler.HttpURLConnection.getInputStream(HttpURLConnection.java:543)
  at com.sun.xml.rpc.client.http.handler.HttpURLConnection.getResponseCode(HttpURLConnection.java:920)
  at com.sun.xml.rpc.client.http.HttpClientTransport.invoke(HttpClientTransport.java:123)
  at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:73)
  at com.sun.xml.rpc.client.dii.CallInvokerImpl.doInvoke(CallInvokerImpl.java:54)
  at com.sun.xml.rpc.client.dii.BasicCall.invoke(BasicCall.java:279)
  at SSLSOAPClient.main(SSLSOAPClient.java:264)
  Exception in thread "main"
  What I note is that the call is using a HttpURLConnection object and NOT a HttpsURLConnection object (so problems are 'normal' i guess), but I dont have any clue what I have to do to instruct the client to use HTTPS other than specifying HTTPS in the target.
  Hope someone has an idea
  Tasha

  Hello,
  The default timeout in Axis is 60 seconds, you can change it by your client code, and you can still keep the session to call many times
  ((org.apache.axis.client.Stub)service).setMaintainSession(true); //keep session
  ((org.apache.axis.client.Stub)service).setTimeout(60*1000*30); //half hour
  Lixin

• Error while invoking webservice throu https

  Error while invoking webservice throu https://
  can any one help me on this topic please:
  CODE:
  SOAPConnection con = null;
            try{
                 String endpoint = "https://wks3089639:4565/Service.serviceagent/PortTypeEndpoint1";
                 //String endpoint = "http://wks3101999:5539/Service.serviceagent/PortTypeEndpoint1";
                 //String endpoint      = args[0];
                 //String soapAction      = args[1];
                 System.out.println("javax.net.ssl.keyStore-->"+System.getProperty("javax.net.ssl.trustStore"));
                 System.setProperty("javax.net.ssl.trustStore","C:/Documents and Settings/1067555/Desktop/certificates/cer.jks");
                 System.setProperty("javax.net.ssl.keyStore","C:/Documents and Settings/1067555/Desktop/certificates/server.keystore");
                 System.setProperty("javax.net.ssl.trustStorePassword","password");
                 System.setProperty("javax.net.ssl.keyStorePassword","password");
                 // use Sun's reference implementation of a URL handler for the     "https" URL protocol type.
                 //System.setProperty("java.protocol.handler.pkgs","com.sun.net.ssl.internal.www.protocol");
                 // dynamically register sun's ssl provider
                 System.setProperty("security.provider","com.sun.net.ssl.internal.ssl.Provider");
                 //Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
                 System.out.println("javax.net.ssl.trustStore-->"+System.getProperty("javax.net.ssl.trustStore"));
                 System.setProperty("javax.net.debug","ssl,handshake");
                 SOAPConnectionFactory connectionFactory = SOAPConnectionFactory.newInstance();
                 con = connectionFactory.createConnection();
                 MessageFactory messageFactory      = MessageFactory.newInstance();
                 SOAPMessage message                = messageFactory.createMessage();
                 SOAPPart soapPart                     = message.getSOAPPart();
       SOAPEnvelope envelope                = soapPart.getEnvelope();
       SOAPBody body                          = envelope.getBody();
  //     MimeHeaders headers = message.getMimeHeaders();
  //     headers.addHeader("SOAPAction", soapAction);
  //     headers.addHeader("SOAPAction", "/Service.serviceagent/PortTypeEndpoint1/Operation");
  //     headers.addHeader("Content-Type","text/xml");
  //     headers.addHeader("charset","utf-8");
       MimeHeaders headers = message.getMimeHeaders();
       headers.addHeader("SOAPAction", "/Service.serviceagent/PortTypeEndpoint1/sampleOperation");
       headers.addHeader("Content-Type","text/xml");
       headers.addHeader("charset","utf-8");
       StreamSource inputmsg = new StreamSource(new FileInputStream("client.wsdl"));
       soapPart.setContent(inputmsg);
       System.out.println("REQUEST:\n");
       message.writeTo(System.out);
       System.out.println();
       message.saveChanges();
       SOAPMessage reply = con.call(message, new URL(endpoint));
       System.out.println("RESPONSE:\n"+reply.toString());
       System.out.println("Header:::"+reply.getSOAPHeader());
       System.out.println("Body:::"+reply.getSOAPBody());
       System.out.println("RESPONSE:\n");
       TransformerFactory transformerFactory      = TransformerFactory.newInstance();
       Transformer transformer                     = transformerFactory.newTransformer();
       //Extract the content of the reply
       Source responseContent                          = reply.getSOAPPart().getContent();
       //Set the output for the transformation
       StreamResult result = new StreamResult(System.out);
       transformer.transform(responseContent, result);
       System.out.println();
            }catch(Exception e){
                 e.printStackTrace();
            finally{
                 con.close();
  Exception:
  10-Nov-2008 11:55:04 com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection post
  SEVERE: SAAJ0009: Message send failed
  com.sun.xml.messaging.saaj.SOAPExceptionImpl: java.security.PrivilegedActionException: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:127)
       at com.Sample.main(Sample.java:91)
  Caused by: java.security.PrivilegedActionException: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:121)
       ... 1 more
  Caused by: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:325)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection$PriviledgedPost.run(HttpSOAPConnection.java:150)
       ... 3 more
  Caused by: java.net.ConnectException: Connection refused: connect
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(Unknown Source)
       at java.net.PlainSocketImpl.connectToAddress(Unknown Source)
       at java.net.PlainSocketImpl.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at sun.net.NetworkClient.doConnect(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.<init>(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.New(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.getNewHttpClient(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.plainConnect(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(Unknown Source)
       at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(Unknown Source)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:282)
       ... 4 more
  CAUSE:
  java.security.PrivilegedActionException: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:121)
       at com.Sample.main(Sample.java:91)
  Caused by: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:325)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection$PriviledgedPost.run(HttpSOAPConnection.java:150)
       ... 3 more
  Caused by: java.net.ConnectException: Connection refused: connect
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(Unknown Source)
       at java.net.PlainSocketImpl.connectToAddress(Unknown Source)
       at java.net.PlainSocketImpl.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at sun.net.NetworkClient.doConnect(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.<init>(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.New(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.getNewHttpClient(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.plainConnect(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(Unknown Source)
       at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(Unknown Source)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:282)
       ... 4 more
  CAUSE:
  java.security.PrivilegedActionException: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:121)
       at com.Sample.main(Sample.java:91)
  Caused by: com.sun.xml.messaging.saaj.SOAPExceptionImpl: Message send failed
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:325)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection$PriviledgedPost.run(HttpSOAPConnection.java:150)
       ... 3 more
  Caused by: java.net.ConnectException: Connection refused: connect
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(Unknown Source)
       at java.net.PlainSocketImpl.connectToAddress(Unknown Source)
       at java.net.PlainSocketImpl.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at java.net.Socket.connect(Unknown Source)
       at sun.net.NetworkClient.doConnect(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.http.HttpClient.openServer(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.<init>(Unknown Source)
       at sun.net.www.protocol.https.HttpsClient.New(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.getNewHttpClient(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.plainConnect(Unknown Source)
       at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)
       at sun.net.www.protocol.http.HttpURLConnection.getOutputStream(Unknown Source)
       at sun.net.www.protocol.https.HttpsURLConnectionImpl.getOutputStream(Unknown Source)
       at com.sun.xml.messaging.saaj.client.p2p.HttpSOAPConnection.post(HttpSOAPConnection.java:282)
       ... 4 more
  Edited by: javausers07 on Nov 10, 2008 11:58 AM

  I hope the sun forum can help for me. Lets see

• Problem in accessing webservice over https with auth cert enabled...Urgent

  Hi All,
  I am stuck in accessing webservices using ssl and auth certificate.
  I am using jdk 6 and it is not any issue with the problem I am facing...
  This is what I do...
  I have a webservice deployed which is accessible over https.
  On server, I run..
  - to generate keystoye
  keytool -genkey -alias tomcat-sv -dname "CN=<Server Machine Id>, OU=X, O=Y, L=Z, S=XY, C=YZ" -keyalg RSA -keypass changeit -storepass changeit -keystore server.keystore
  generate server certificate
  keytool -export -alias tomcat-sv -storepass changeit -file server.cer -keystore server.keystore
  On client, i run..
  To generate client keystore-
  keytool -genkey -alias tomcat-cl -dname "CN=<Client Machine Id>, OU=X, O=Y, L=Z, S=XY, C=YZ" -keyalg RSA -keypass changeit -storepass changeit -keystore client.keystore
  To generate client certificate -
  keytool -export -alias tomcat-cl -storepass changeit -file client.cer -keystore client.keystore
  Thne I import server's certificate into client keystore and Client's certificate to server's keystore by
  import server's cer to client keystore -
  keytool -import -v -trustcacerts -alias tomcat -file "C:\java\jdk1.6.0_10\bin\server.cer" -keystore client.keystore -keypass changeit -storepass changeit
  inport client's cer to server keystore -
  keytool -import -v -trustcacerts -alias tomcat -file "C:\jdk1.6.0_06\bin\client.cer" -keystore server.keystore -keypass changeit -storepass changeit
  when i try to call webservices through a java client (which is called by a python script), I get error as
  *"Exception while waiting for close java.net.SocketException: Software caused connection abort: recv failed"*
  *"faultString: java.net.SocketException: Software caused connection abort: recv failed"*
  complete log is as following
  C:\apache-tomcat-6.0.10\webapps\webservice>tradereport.py
  Jun 23, 2008 3:05:59 PM currenex.share.log.CxLogger log
  INFO: details=before SSL change
  Jun 23, 2008 3:05:59 PM currenex.share.log.CxLogger log
  INFO: details=after SSL change
  log4j:WARN No appenders could be found for logger (org.apache.axis.i18n.ProjectResourceBundle).
  log4j:WARN Please initialize the log4j system properly.
  trigger seeding of SecureRandom
  done seeding SecureRandom
  %% No cached client session
  *** ClientHello, TLSv1
  RandomCookie: GMT: 1214213509 bytes = { 50, 7, 252, 244, 34, 192, 54, 190, 160, 197, 162, 65, 78, 3, 120, 182, 179, 199
  , 160, 208, 223, 247, 41, 216, 188, 138, 228, 70 }
  Session ID: {}
  Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_1
  28_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_
  DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA
  _EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WI
  TH_DES40_CBC_SHA]
  Compression Methods: { 0 }
  main, WRITE: TLSv1 Handshake, length = 73
  main, WRITE: SSLv2 client hello message, length = 98
  main, READ: TLSv1 Handshake, length = 7873
  *** ServerHello, TLSv1
  RandomCookie: GMT: 1214213504 bytes = { 98, 89, 26, 148, 19, 15, 45, 155, 163, 196, 220, 193, 150, 127, 19, 44, 130, 16
  5, 78, 243, 155, 34, 214, 123, 198, 89, 102, 15 }
  Session ID: {72, 95, 110, 128, 129, 101, 2, 252, 120, 147, 235, 106, 51, 210, 236, 197, 28, 197, 154, 236, 116, 85, 185
  , 177, 153, 9, 235, 160, 228, 124, 191, 206}
  Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
  Compression Method: 0
  %% Created: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
  ** SSL_RSA_WITH_RC4_128_MD5
  *** Certificate chain
  chain [0] = [
  Version: V3
  Subject: CN=Anuj-Shukla, OU=X, O=Y, L=Z, ST=XY, C=YZ
  Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
  Key: Sun RSA public key, 1024 bits
  modulus: 1155910927093088021038703558200517321935975136532818479526927502986487608253029863427194046282623217778572406
  007584457425344367852682875007488075549568987019062497769571000978532532156228707400592262495876461712276454493567147822
  56749486566093981751121311864618619780132448329770352303648687445023336431685957
  public exponent: 65537
  Validity: [From: Mon Jun 23 14:17:18 GMT+05:30 2008,
                 To: Sun Sep 21 14:17:18 GMT+05:30 2008]
  Issuer: CN=Anuj-Shukla, OU=X, O=Y, L=Z, ST=XY, C=YZ
  SerialNumber: [    485f6316]
  Algorithm: [SHA1withRSA]
  Signature:
  0000: 48 05 F9 A9 89 C6 87 83 C4 02 C4 44 F4 7C A0 54 H..........D...T
  0010: F6 9A 57 69 F0 DB 37 79 FD 8F 90 E9 8F 3E C2 DB ..Wi..7y.....>..
  0020: 9F D7 CC 15 28 0A 73 80 0A DC D0 7F EC 1C EE BD ....(.s.........
  0030: 23 EF E7 28 79 F3 7F C7 CC 7D A6 C6 F7 59 9A 17 #..(y........Y..
  0040: 73 ED 8B FF 6A 76 7F F7 4F 97 48 DF 23 A6 4C 42 s...jv..O.H.#.LB
  0050: B2 B4 5C 00 D0 77 88 12 F4 97 4E 66 7C EE F0 66 ..\..w....Nf...f
  0060: E6 95 8C B1 58 BF C5 E8 B5 64 A3 D5 5E EA 07 02 ....X....d..^...
  0070: FE 3D 63 7F F4 0B DC 86 66 B7 4B 4F 0C 1C 69 0F .=c.....f.KO..i.
  *** CertificateRequest
  Cert Types: RSA, DSS
  Cert Authorities:
  <CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE>
  <[email protected], CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte
  Consulting, L=Cape Town, ST=Western Cape, C=ZA>
  <[email protected], CN=Thawte Server CA, OU=Certification Services Division, O=Thawte Consulting cc,
  L=Cape Town, ST=Western Cape, C=ZA>
  <CN=AddTrust Qualified CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE>
  <CN=Equifax Secure Global eBusiness CA-1, O=Equifax Secure Inc., C=US>
  <CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>
  <CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE>
  <CN=Entrust.net Client Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/GCCA_CPS incorp. by
  ref. (limits liab.), O=Entrust.net>
  <OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
  <CN=DigiCert High Assurance EV Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
  <CN=Baltimore CyberTrust Code Signing Root, OU=CyberTrust, O=Baltimore, C=IE>
  <CN=TC TrustCenter Class 4 CA II, OU=TC TrustCenter Class 4 CA, O=TC TrustCenter GmbH, C=DE>
  <OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certificat
  ion Authority - G2, O="VeriSign, Inc.", C=US>
  <OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
  <CN=Entrust.net Secure Server Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS incorp. b
  y ref. (limits liab.), O=Entrust.net, C=US>
  <CN=TC TrustCenter Universal CA I, OU=TC TrustCenter Universal CA, O=TC TrustCenter GmbH, C=DE>
  <[email protected], CN=Thawte Premium Server CA, OU=Certification Services Division, O=Thawte Consu
  lting cc, L=Cape Town, ST=Western Cape, C=ZA>
  <CN=Entrust.net Client Certification Authority, OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/Client_CA_Info/CPS i
  ncorp. by ref. limits liab., O=Entrust.net, C=US>
  <CN=VeriSign Class 3 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only"
  , OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
  <[email protected], CN=http://www.valicert.com/, OU=ValiCert Class 2 Policy Validation Authority, O="ValiCe
  rt, Inc.", L=ValiCert Validation Network>
  <CN=AddTrust Class 1 CA Root, OU=AddTrust TTP Network, O=AddTrust AB, C=SE>
  <CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
  <CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE>
  <OU=Equifax Secure Certificate Authority, O=Equifax, C=US>
  <OU=Starfield Class 2 Certification Authority, O="Starfield Technologies, Inc.", C=US>
  <CN=Equifax Secure eBusiness CA-1, O=Equifax Secure Inc., C=US>
  <CN=VeriSign Class 2 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only"
  , OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
  <CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, ST=Greater Manchester, C=GB>
  <OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certificat
  ion Authority - G2, O="VeriSign, Inc.", C=US>
  <CN=DigiCert Assured ID Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US>
  <OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certificat
  ion Authority - G2, O="VeriSign, Inc.", C=US>
  <OU=Equifax Secure eBusiness CA-2, O=Equifax Secure, C=US>
  <CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R2>
  <CN=Anuj-Shukla, OU=X, O=Y, L=Z, ST=XY, C=YZ>
  <CN=Entrust.net Secure Server Certification Authority, OU=(c) 2000 Entrust.net Limited, OU=www.entrust.net/SSL_CPS incor
  p. by ref. (limits liab.), O=Entrust.net>
  <OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US>
  <[email protected], CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte C
  onsulting, L=Cape Town, ST=Western Cape, C=ZA>
  <[email protected], CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consu
  lting, L=Cape Town, ST=Western Cape, C=ZA>
  <CN=Client, OU=X, O=Y, L=Z, ST=XY, C=YZ>
  <CN=GeoTrust Global CA, O=GeoTrust Inc., C=US>
  <OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>
  <CN=Sonera Class1 CA, O=Sonera, C=FI>
  <OU=Go Daddy Class 2 Certification Authority, O="The Go Daddy Group, Inc.", C=US>
  <CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
  <CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake Cit
  y, ST=UT, C=US>
  <CN=VeriSign Class 1 Public Primary Certification Authority - G3, OU="(c) 1999 VeriSign, Inc. - For authorized use only"
  , OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US>
  <CN=America Online Root Certification Authority 1, O=America Online Inc., C=US>
  <CN=Entrust.net Certification Authority (2048), OU=(c) 1999 Entrust.net Limited, OU=www.entrust.net/CPS_2048 incorp. by
  ref. (limits liab.), O=Entrust.net>
  <CN=GTE CyberTrust Root 5, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>
  <CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
  <CN=UTN - DATACorp SGC, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US>
  <CN=Sonera Class2 CA, O=Sonera, C=FI>
  <CN=TC TrustCenter Class 2 CA II, OU=TC TrustCenter Class 2 CA, O=TC TrustCenter GmbH, C=DE>
  *** ServerHelloDone
  *** Certificate chain
  *** ClientKeyExchange, RSA PreMasterSecret, TLSv1
  main, WRITE: TLSv1 Handshake, length = 141
  SESSION KEYGEN:
  PreMaster Secret:
  0000: 03 01 E5 87 BC 2A E8 70 60 BA DE FA BB 42 2D 1E .....*.p`....B-.
  0010: 3D 21 DB 52 A7 6C FC 55 9F 77 3A 97 B5 33 F7 33 =!.R.l.U.w:..3.3
  0020: 2A FD 65 5A 78 CE 1F F4 63 29 15 D1 48 4C 46 7A *.eZx...c)..HLFz
  CONNECTION KEYGEN:
  Client Nonce:
  0000: 48 5F 6E 85 32 07 FC F4 22 C0 36 BE A0 C5 A2 41 H_n.2...".6....A
  0010: 4E 03 78 B6 B3 C7 A0 D0 DF F7 29 D8 BC 8A E4 46 N.x.......)....F
  Server Nonce:
  0000: 48 5F 6E 80 62 59 1A 94 13 0F 2D 9B A3 C4 DC C1 H_n.bY....-.....
  0010: 96 7F 13 2C 82 A5 4E F3 9B 22 D6 7B C6 59 66 0F ...,..N.."...Yf.
  Master Secret:
  0000: 98 D5 9E C0 97 14 DB 9F 0E 3B 15 6B 1E F8 06 2C .........;.k...,
  0010: 27 99 A4 69 B8 E4 16 03 BD 89 B9 D0 CB C5 C9 DF '..i............
  0020: AE 4B 16 56 56 B2 02 F8 E0 71 1D D8 04 05 11 BF .K.VV....q......
  Client MAC write Secret:
  0000: 6F B7 22 74 D6 1E 44 16 C5 CB CE CE 8E 0F 46 E1 o."t..D.......F.
  Server MAC write Secret:
  0000: F8 DA 34 1A 53 55 E0 6D 50 25 3E 7F E5 69 91 51 ..4.SU.mP%>..i.Q
  Client write key:
  0000: F7 05 6E 10 62 0C AE 4A BC 96 E2 25 BA BC 46 BD ..n.b..J...%..F.
  Server write key:
  0000: E2 7D 11 FF 4A F3 C5 4F 94 9D 5C 57 71 5A 16 D1 ....J..O..\WqZ..
  ... no IV used for this cipher
  main, WRITE: TLSv1 Change Cipher Spec, length = 1
  *** Finished
  verify_data: { 216, 54, 180, 236, 72, 70, 181, 20, 31, 128, 165, 12 }
  main, WRITE: TLSv1 Handshake, length = 32
  main, waiting for close_notify or alert: state 1
  main, Exception while waiting for close java.net.SocketException: Software caused connection abort: recv failed
  main, handling exception: java.net.SocketException: Software caused connection abort: recv failed
  Jun 23, 2008 3:06:06 PM currenex.share.log.CxLogger log
  INFO: details=Exception occured while calling Login service in callLoginWebService
  AxisFault
  faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
  faultSubcode:
  faultString: java.net.SocketException: Software caused connection abort: recv failed
  faultActor:
  faultNode:
  faultDetail:
  {http://xml.apache.org/axis/}stackTrace:java.net.SocketException: Software caused connection abort: recv failed
  at java.net.SocketInputStream.socketRead0(Native Method)
  at java.net.SocketInputStream.read(Unknown Source)
  at com.sun.net.ssl.internal.ssl.InputRecord.readFully(Unknown Source)
  at com.sun.net.ssl.internal.ssl.InputRecord.read(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.waitForClose(Unknown Source)
  at com.sun.net.ssl.internal.ssl.HandshakeOutStream.flush(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.sendChangeCipherSpec(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.sendChangeCipherAndFinish(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverHelloDone(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
  at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
  at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191)
  at org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:404)
  at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
  at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
  at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
  at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
  at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
  at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
  at org.apache.axis.client.Call.invoke(Call.java:2767)
  at org.apache.axis.client.Call.invoke(Call.java:2443)
  at org.apache.axis.client.Call.invoke(Call.java:2366)
  at org.apache.axis.client.Call.invoke(Call.java:1812)
  at currenex.webservice.share.definitions.AuthenticationBindingStub.login(AuthenticationBindingStub.java:362)
  at currenex.webservice.clients.util.WebserviceTestUtil.callLoginLogoutWebService(WebserviceTestUtil.java:132)
  at currenex.webservice.clients.util.TradeCreateTester.createWebLogin(TradeCreateTester.java:64)
  {http://xml.apache.org/axis/}hostname:anuj
  java.net.SocketException: Software caused connection abort: recv failed
  at org.apache.axis.AxisFault.makeFault(AxisFault.java:101)
  at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:154)
  at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
  at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
  at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
  at org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
  at org.apache.axis.client.Call.invokeEngine(Call.java:2784)
  at org.apache.axis.client.Call.invoke(Call.java:2767)
  at org.apache.axis.client.Call.invoke(Call.java:2443)
  at org.apache.axis.client.Call.invoke(Call.java:2366)
  at org.apache.axis.client.Call.invoke(Call.java:1812)
  at currenex.webservice.share.definitions.AuthenticationBindingStub.login(AuthenticationBindingStub.java:362)
  at currenex.webservice.clients.util.WebserviceTestUtil.callLoginLogoutWebService(WebserviceTestUtil.java:132)
  at currenex.webservice.clients.util.TradeCreateTester.createWebLogin(TradeCreateTester.java:64)
  Caused by: java.net.SocketException: Software caused connection abort: recv failed
  at java.net.SocketInputStream.socketRead0(Native Method)
  at java.net.SocketInputStream.read(Unknown Source)
  at com.sun.net.ssl.internal.ssl.InputRecord.readFully(Unknown Source)
  at com.sun.net.ssl.internal.ssl.InputRecord.read(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.waitForClose(Unknown Source)
  at com.sun.net.ssl.internal.ssl.HandshakeOutStream.flush(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.sendChangeCipherSpec(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.sendChangeCipherAndFinish(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverHelloDone(Unknown Source)
  at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)
  at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
  at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)
  at org.apache.axis.components.net.JSSESocketFactory.create(JSSESocketFactory.java:186)
  at org.apache.axis.transport.http.HTTPSender.getSocket(HTTPSender.java:191)
  at org.apache.axis.transport.http.HTTPSender.writeToSocket(HTTPSender.java:404)
  at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:138)
  ... 12 more
  Jun 23, 2008 3:06:06 PM currenex.share.log.CxLogger log
  INFO: details=Login response is null, login was not successful
  Login was unsuccessful
  *In apache's server.xml, My webservice is deployed as*
  <Connector className="org.apache.catalina.connector.http.HttpConnector"
       port="8443" minProcessors="5" maxProcessors="75" enableLookups="true"
       acceptCount="10" debug="0"
       protocol="HTTP/1.1" SSLEnabled="true" secure="true"
  maxThreads="150" scheme="https"
       keystoreFile="lib/server.keystore"
  keystorePass="changeit" clientAuth="true"
            >
            <Factory className="org.apache.catalina.net.SSLServerSocketFactory"
       protocol="TLS"/>
  </Connector>
  Please note clientAuth="true" parameter,
  when I set it to false, My test runs smoothly and no exception/issue is reported
  Not to forget, my javaclient has following lines too..
  //System.setProperty("javax.net.ssl.keyStore", "C:\\java\\jdk1.6.0_10\\jre\\lib\\security\\cacerts");
  //System.setProperty("javax.net.ssl.keyStorePassword", "changeit");
  //System.setProperty("javax.net.ssl.trustStore", "C:\\java\\jdk1.6.0_10\\jre\\lib\\security\\cacerts");
  //System.setProperty("java.protocol.handler.pkgs" , "com.sun.net.ssl.internal.www.protocol");
  System.setProperty("javax.net.ssl.trustStore","C:\\java\\jdk1.6.0_10\\bin\\client.keystore");
  System.setProperty("javax.net.ssl.trustStorePassword","changeit");
  //System.setProperty("com.sun.net.ssl.rsaPreMasterSecretFix" , "true");
  //System.setProperty("javax.net.ssl.keyStore", "C:\\java\\jdk1.6.0_10\\bin\\server.keystore");
  //System.setProperty("javax.net.ssl.keyStorePassword","changeit");
  System.setProperty("javax.net.debug", "ssl");
  s_log.info("after SSL change");
  I tried all possible combinbations of these properties but nothing worked...
  Please let me know if I am missing any required step.. here
  Ask me if you want to know more details about my problem.
  This is very urgent and critical.. Many thanks in advance.

  Hi ejp,
  thanks for your reply. I did read your post in other thread that you pointed.
  I had searched quite a lot on this issue and had idea that it might be due to firewall settings..
  but sadly, I don't know the solution. Well, you have seen the entire code that I wrote and exception too, Could you suggest me a way out? or any specific firewall setting or a workaround?
  Please let me know if you need any other info from my side regarding the code.
  Thanks a Ton!
  Anuj

• Invoking Soap over HTTPS

  Has any one tested invoking the BPEL process using the SOAP WS invokcation over HTTPS from a OA framework web page?
  We have a UI page that takes the BPEL end point via profile option and invokes the BPEL process as follows:
  // code to create the SOAP message and send it
  org.apache.soap.messaging.Message msg = new org.apache.soap.messaging.Message();
  msg.setSOAPTransport(new SOAPHTTPConnection());
  msg.send(new URL(location), "process", requestEnv);
  Envelope responseEnv = msg.receive();
  Body responseBody = responseEnv.getBody();
  I am not sure if this can handle the HTTPS as there is no code to set the key store and certificate.
  Thank you,
  Chida

  Has any one tested invoking the BPEL process using the SOAP WS invokcation over HTTPS from a OA framework web page?
  We have a UI page that takes the BPEL end point via profile option and invokes the BPEL process as follows:
  // code to create the SOAP message and send it
  org.apache.soap.messaging.Message msg = new org.apache.soap.messaging.Message();
  msg.setSOAPTransport(new SOAPHTTPConnection());
  msg.send(new URL(location), "process", requestEnv);
  Envelope responseEnv = msg.receive();
  Body responseBody = responseEnv.getBody();
  I am not sure if this can handle the HTTPS as there is no code to set the key store and certificate.
  Thank you,
  Chida

• Error when invoking webservice on https (unable to find valid certification

  I have a webservice which run on https..
  When I made a simple test (jsp) page on my local computer all works fine (jdeveloper 10g) ..
  When I deploy the ear file to remote oc4j and run the test page I get the error:
  javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  My test page is just simple jsp page with some system parameters like this:
  ================
  String dir = request.getRealPath("/cert");
  System.getProperties().put("javax.net.ssl.keyStore", dir + "/adriatic.p12");
  System.getProperties().put("javax.net.ssl.keyStorePassword", "as-p4ss");
  System.getProperties().put("javax.net.ssl.keyStoreType", "PKCS12");
  System.getProperties().put("javax.net.ssl.trustStore", dir + "/service.megapos.si.jks");
  System.getProperties().put("javax.net.ssl.trustStorePassword", "megapos");
  System.getProperties().put("javax.net.ssl.trustStoreType", "JKS");
  ================
  why this works on windows and doesn't work on linux?
  All paths to my certificare and truststore are correct.
  On my local pc (windows) there is a Jdeveloper Oc4j version (10.1.2.0.2) and works fine
  On linux there is a oc4j version 10.1.3.4.0 and doesn't work..
  thank you for any help

  Peter,
  Apparently the linux jdk/jre doesn't have the ability to validate the certificate being used.
  I dunno if [url http://www.java-samples.com/showtutorial.php?tutorialid=210]this might help you?
  John

• Webservices over https

  hi, i have a webservice deployed on weblogic 10.3, now i want to add ssl config to web logic, so i configured an identity and trust store, used them to configure the servers->myserver->keystores section, i also configured a trust store for the web service's clients and they are now working ok, the problem is that when i test the web service through the test page i get this exception :
  javax.net.ssl.SSLException: Handshake has been interrupted, can't find trusted CA certificates file trusted-ca.pem
  i dont know where "trsuted-ca.pem" is or why weblogic is looking for that file to search for trusted cas, how can i fix this problem?
  tank you.

  heres the config.xml
  <?xml version='1.0' encoding='UTF-8'?>
  <domain xmlns="http://www.bea.com/ns/weblogic/920/domain" xmlns:sec="http://www.bea.com/ns/weblogic/90/security" xmlns:wls="http://www.bea.com/ns/weblogic/90/security/wls" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.bea.com/ns/weblogic/90/security/wls http://www.bea.com/ns/weblogic/90/security/wls.xsd http://www.bea.com/ns/weblogic/920/domain http://www.bea.com/ns/weblogic/920/domain.xsd http://www.bea.com/ns/weblogic/90/security/xacml http://www.bea.com/ns/weblogic/90/security/xacml.xsd http://www.bea.com/ns/weblogic/90/security http://www.bea.com/ns/weblogic/90/security.xsd">
  <name>crea</name>
  <domain-version>10.3.0.0</domain-version>
  <security-configuration>
  <name>crea</name>
  <realm>
  <sec:authentication-provider xsi:type="wls:default-authenticatorType"></sec:authentication-provider>
  <sec:authentication-provider xsi:type="wls:default-identity-asserterType">
  <sec:active-type>AuthenticatedUser</sec:active-type>
  </sec:authentication-provider>
  <sec:role-mapper xmlns:xac="http://www.bea.com/ns/weblogic/90/security/xacml" xsi:type="xac:xacml-role-mapperType"></sec:role-mapper>
  <sec:authorizer xmlns:xac="http://www.bea.com/ns/weblogic/90/security/xacml" xsi:type="xac:xacml-authorizerType"></sec:authorizer>
  <sec:adjudicator xsi:type="wls:default-adjudicatorType"></sec:adjudicator>
  <sec:credential-mapper xsi:type="wls:default-credential-mapperType"></sec:credential-mapper>
  <sec:cert-path-provider xsi:type="wls:web-logic-cert-path-providerType"></sec:cert-path-provider>
  <sec:cert-path-builder>WebLogicCertPathProvider</sec:cert-path-builder>
  <sec:name>myrealm</sec:name>
  </realm>
  <default-realm>myrealm</default-realm>
  <credential-encrypted>{3DES}XtMoab+eKc179JnDxnuMPFwxKevYTpP3jZq++QjZ//z9E86YihIQEQtK5fh1RoN9xjzqeEZ4MkwnLu1fw14sLAFFBP8drQp6</credential-encrypted>
  <node-manager-username>dEtowdn54x</node-manager-username>
  <node-manager-password-encrypted>{3DES}ssCoKA0pOzQ4D17K4W07qA==</node-manager-password-encrypted>
  </security-configuration>
  <server>
  <name>creadev01</name>
  <ssl>
  <name>creadev01</name>
  <enabled>true</enabled>
  <hostname-verifier xsi:nil="true"></hostname-verifier>
  <hostname-verification-ignored>true</hostname-verification-ignored>
  <export-key-lifespan>500</export-key-lifespan>
  <client-certificate-enforced>false</client-certificate-enforced>
  <listen-port>7012</listen-port>
  <two-way-ssl-enabled>false</two-way-ssl-enabled>
  <server-private-key-alias>wl-cert</server-private-key-alias>
  <server-private-key-pass-phrase-encrypted>{3DES}ENT4oweHmZZM2b6F1wByuQ==</server-private-key-pass-phrase-encrypted>
  <ssl-rejection-logging-enabled>true</ssl-rejection-logging-enabled>
  <inbound-certificate-validation>BuiltinSSLValidationOnly</inbound-certificate-validation>
  <outbound-certificate-validation>BuiltinSSLValidationOnly</outbound-certificate-validation>
  <allow-unencrypted-null-cipher>false</allow-unencrypted-null-cipher>
  <use-server-certs>false</use-server-certs>
  </ssl>
  <listen-port>7011</listen-port>
  <listen-port-enabled>true</listen-port-enabled>
  <listen-address>15.128.1.32</listen-address>
  <java-compiler>javac</java-compiler>
  <client-cert-proxy-enabled>false</client-cert-proxy-enabled>
  <key-stores>CustomIdentityAndCustomTrust</key-stores>
  <custom-identity-key-store-file-name>/AD/herramientas/apps/intranet/SSL/keystores/weblogic_truststore.jks</custom-identity-key-store-file-name>
  <custom-identity-key-store-type>JKS</custom-identity-key-store-type>
  <custom-identity-key-store-pass-phrase-encrypted>{3DES}ENT4oweHmZZM2b6F1wByuQ==</custom-identity-key-store-pass-phrase-encrypted>
  <custom-trust-key-store-file-name>/AD/herramientas/apps/intranet/SSL/keystores/weblogic_truststore.jks</custom-trust-key-store-file-name>
  <custom-trust-key-store-type>JKS</custom-trust-key-store-type>
  <custom-trust-key-store-pass-phrase-encrypted>{3DES}ENT4oweHmZZM2b6F1wByuQ==</custom-trust-key-store-pass-phrase-encrypted>
  </server>
  <production-mode-enabled>true</production-mode-enabled>
  <embedded-ldap>
  <name>crea</name>
  <credential-encrypted>{3DES}iSZyyr9vmuPVdQ4lRyNwZbdZP06ZnVkX/mKCu6CpwjI=</credential-encrypted>
  </embedded-ldap>
  <configuration-version>10.3.0.0</configuration-version>
  <app-deployment>
  <name>AdministradorEscaner</name>
  <target>creadev01</target>
  <module-type>war</module-type>
  <source-path>/AD/herramientas/apps/intranet/administradorEscaner/AdministradorEscaner</source-path>
  <deployment-order>100</deployment-order>
  <security-dd-model>DDOnly</security-dd-model>
  </app-deployment>
  <app-deployment>
  <name>digitalizar</name>
  <target>creadev01</target>
  <module-type>war</module-type>
  <source-path>/AD/herramientas/apps/intranet/digitalizar/digitalizar</source-path>
  <security-dd-model>DDOnly</security-dd-model>
  </app-deployment>
  <app-deployment>
  <name>ImageService</name>
  <target>creadev01</target>
  <module-type>ear</module-type>
  <source-path>/AD/herramientas/apps/intranet/ImagesServlet/aplicacion/ImageService.ear</source-path>
  <security-dd-model>DDOnly</security-dd-model>
  <staging-mode>nostage</staging-mode>
  </app-deployment>
  <app-deployment>
  <name>gestor_ora</name>
  <target>creadev01</target>
  <module-type>ear</module-type>
  <source-path>/AD/herramientas/apps/intranet/gestor_ora</source-path>
  <security-dd-model>DDOnly</security-dd-model>
  <staging-mode>nostage</staging-mode>
  </app-deployment>
  <app-deployment>
  <name>PruebaWLSettings</name>
  <target>creadev01</target>
  <module-type>war</module-type>
  <source-path>/AD/herramientas/apps/intranet/PruebaWLSettings</source-path>
  <security-dd-model>DDOnly</security-dd-model>
  <staging-mode>nostage</staging-mode>
  </app-deployment>
  <admin-server-name>creadev01</admin-server-name>
  <jdbc-system-resource>
  <name>Innova</name>
  <target></target>
  <descriptor-file-name>jdbc/Innova-4527-jdbc.xml</descriptor-file-name>
  </jdbc-system-resource>
  <jdbc-system-resource>
  <name>AdministradorEscanerDataSource</name>
  <target>creadev01</target>
  <descriptor-file-name>jdbc/AdministradorEscanerDataSource-3255-jdbc.xml</descriptor-file-name>
  </jdbc-system-resource>
  <jdbc-system-resource>
  <name>DigitalizarDataSource</name>
  <target>creadev01</target>
  <descriptor-file-name>jdbc/DigitalizarDataSource-7745-jdbc.xml</descriptor-file-name>
  </jdbc-system-resource>
  <jdbc-system-resource>
  <name>ImageServiceDataSource</name>
  <target>creadev01</target>
  <descriptor-file-name>jdbc/ImageServiceDataSource-5407-jdbc.xml</descriptor-file-name>
  </jdbc-system-resource>
  <jdbc-system-resource>
  <name>GestorCMWSDataSource</name>
  <target>creadev01</target>
  <descriptor-file-name>jdbc/GestorCMWSDataSource-4211-jdbc.xml</descriptor-file-name>
  </jdbc-system-resource>
  </domain>

• WebServices over SSL - 403 Forbidden error

  Hello all,
  I am able to successfully communicate with a SSL enabled .NET webservice using apache-axis in my java code. however, when i
  try the same with weblogic based libs [%bea_home%\server\lib\webserviceclient+ssl.jar] - assume the other jars are ok, i get
  the following exception stack trace:
  Disabling strict checking on adapter weblogic.webservice.client.WLSSLAdapter@55a338
  Set TrustManager to weblogic.webservice.client.BaseWLSSLAdapter$NullTrustManager@fdb00d
  Set HostnameVerifier to weblogic.webservice.client.WLSSLAdapter$NullVerifier@131303f
  Disabling strict checking on adapter weblogic.webservice.client.WLSSLAdapter@6b9c84
  Set TrustManager to weblogic.webservice.client.BaseWLSSLAdapter$NullTrustManager@e1eea8
  Set HostnameVerifier to weblogic.webservice.client.WLSSLAdapter$NullVerifier@131303f
  Got new socketfactory javax.net.ssl.impl.SSLSocketFactoryImpl@18f51f
  Connecting to:www.abc.com port:443
  socket:Socket[addr=www.abc.com/12.345.67.89,port=443,localport=4802]com.certicom.tls.interfaceimpl.TLSConnectionImpl@e35bb7
  Warning: cert chain incomplete
  Warning: cert chain untrusted
  Warning: subject (www.abc.com, OU=Terms of use at www.verisign.com/rpa (c)00, OU=ABC 1, O=ABC inc, L=abc, ST=abc, C=abc) does
  not match server name (null)
  <Jul 27, 2004 10:52:49 AM GMT+05:30> <Info> <WebService> <BEA-220025> <Handler weblogic.webservice.core.handler.ClientHandler
  threw an exception from its handleResponse method. The exception was:
  javax.xml.rpc.JAXRPCException: weblogic.webservice.util.AccessException: The server at
  https://www.abc.com/abcdef/ABCWebService.asmx?WSDL returned a 403 error code (Forbidden). Please ensure that your URL is
  correct and that the correct protocol is in use..>
  A RemoteException has been thrown
  java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.soap.SOAPFaultException: The server at
  https://www.abc.com/abcdef/ABCWebService.asmx?WSDL returned a 403 error code (Forbidden). Please ensure that your URL is
  correct and that the correct protocol is in use.
  Detail:
  <detail>
  <bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webservice/fault/1.0.0">
  </bea_fault:stacktrace>weblogic.webservice.util.AccessException: The server at
  https://www.abc.com/abcdef/ABCWebService.asmx?WSDL returned a 403 error code (Forbidden). Please ensure that your URL is
  correct and that the correct protocol is in use.
       at weblogic.webservice.binding.soap.HttpClientBinding.handleErrorResponse(HttpClientBinding.java:371)
       at weblogic.webservice.binding.soap.HttpClientBinding.receive(HttpClientBinding.java:233)
       at weblogic.webservice.core.handler.ClientHandler.handleResponse(ClientHandler.java:63)
       at weblogic.webservice.core.HandlerChainImpl.handleResponse(HandlerChainImpl.java:230)
       at weblogic.webservice.core.ClientDispatcher.receive(ClientDispatcher.java:229)
       at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDispatcher.java:144)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:444)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:430)
       at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:270)
       at com.webservice.abc.client.proxy.ABCWebserviceSoap_Stub.getABC(ABCWebserviceSoap_Stub.java:113)
       at com.webservice.abc.client.ABC_WS_Client.main(ABC_WS_Client.java:158)
  </detail>; nested exception is:
       javax.xml.rpc.soap.SOAPFaultException: The server at https://www.abc.com/abcdef/ABCWebService.asmx?WSDL returned a
  403 error code (Forbidden). Please ensure that your URL is correct and that the correct protocol is in use.
       at com.webservice.abc.client.proxy.ABCWebserviceSoap_Stub.getABC(ABCWebserviceSoap_Stub.java:118)
       at com.webservice.abc.client.ABC_WS_Client.main(ABC_WS_Client.java:158)
  Caused by: javax.xml.rpc.soap.SOAPFaultException: The server at https://www.abc.com/abcdef/ABCWebService.asmx?WSDL returned a
  403 error code (Forbidden). Please ensure that your URL is correct and that the correct protocol is in use.
       at weblogic.webservice.core.ClientDispatcher.receive(ClientDispatcher.java:285)
       at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDispatcher.java:144)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:444)
       at weblogic.webservice.core.DefaultOperation.invoke(DefaultOperation.java:430)END
       at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:270)
       at com.webservice.abc.client.proxy.ABCWebserviceSoap_Stub.getABC(ABCWebserviceSoap_Stub.java:113)
       ... 1 more

  Hi All,
  I am new to webservice programming. I am trying to consume webservice over https. I am using weblogic 8.1 sp2. I am getting http 403 forbidden error. from the log it seems that ssl handshaking is completing.
  Algorithm: [MD2withRSA]
  Signature:
  0000: BB 4C 12 2B CF 2C 26 00 4F 14 13 DD A6 FB FC 0A .L.+.,&.O.......
  0010: 11 84 8C F3 28 1C 67 92 2F 7C B6 C5 FA DF F0 E8 ....(.g./.......
  0020: 95 BC 1D 8F 6C 2C A8 51 CC 73 D8 A4 C0 53 F0 4E ....l,.Q.s...S.N
  0030: D6 26 C0 76 01 57 81 92 5E 21 F1 D1 B1 FF E7 D0 .&.v.W..^!......
  0040: 21 58 CD 69 17 E3 44 1C 9C 19 44 39 89 5C DC 9C !X.i..D...D9.\..
  0050: 00 0F 56 8D 02 99 ED A2 90 45 4C E4 BB 10 A4 3D ..V......EL....=
  0060: F0 32 03 0E F1 CE F8 E8 C9 51 8C E6 62 9F E6 9F .2.......Q..b...
  0070: C0 7D B7 72 9C C9 36 3A 6B 9F 4E A8 FF 64 0D 64 ...r..6:k.N..d.d
  ]>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <SSLTrustValidator r
  eturns: 0>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <Trust status (0): N
  ONE>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <HANDSHAKEMESSAGE: S
  erverHelloDone>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <write HANDSHAKE off
  set = 0 length = 134>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <write CHANGE_CIPHER
  _SPEC offset = 0 length = 1>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <write HANDSHAKE off
  set = 0 length = 16>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <isMuxerActivated: f
  alse>
  <Jan 30, 2006 11:39:29 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 readRecord(
  )>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 SSL3/TLS MA
  C>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 received CH
  ANGE_CIPHER_SPEC>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <isMuxerActivated: f
  alse>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 readRecord(
  )>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 SSL3/TLS MA
  C>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 received HA
  NDSHAKE>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <HANDSHAKEMESSAGE: F
  inished>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <write APPLICATION_D
  ATA offset = 0 length = 304>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <write APPLICATION_D
  ATA offset = 0 length = 558>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 read( offse
  t: 0 length: 2048 )>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <isMuxerActivated: f
  alse>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <SSLFilter.isActivat
  ed: false>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 readRecord(
  )>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 SSL3/TLS MA
  C>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 received AP
  PLICATION_DATA>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 APPDATA dat
  abufferLen 0>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 APPDATA con
  tentLength 1907>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 read databu
  fferLen 1907>
  <Jan 30, 2006 11:39:30 AM GMT+05:30> <Debug> <TLS> <000000> <5564590 read A retu
  rns 1907>
  javax.xml.soap.SOAPException: Failed to send message: weblogic.webservice.util.A
  ccessException: The server at https://www.3pv.net/3PVWebServices/3PVWebServices.
  asmx?wsdl returned a 403 error code (Forbidden). Please ensure that your URL is
  correct and that the correct protocol is in use.
  at weblogic.webservice.core.soap.SOAPConnectionImpl.call(SOAPConnectionI
  mpl.java:61)
  at com.ceon.pencor.threepv.ThreePVUtils.sendOrderRequest(ThreePVUtils.ja
  va:350)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl.sendThreePVRequest(ThreePV
  AdapterImpl.java:119)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl_ydsnbq_EOImpl.sendThreePVR
  equest(ThreePVAdapterImpl_ydsnbq_EOImpl.java:46)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl_ydsnbq_EOImpl_WLSkel.invok
  e(Unknown Source)
  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
  at weblogic.rmi.cluster.ReplicaAwareServerRef.invoke(ReplicaAwareServerR
  ef.java:108)
  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
  dSubject.java:353)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
  144)
  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.jav
  a:415)
  at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest
  .java:30)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
  Caused by: weblogic.webservice.util.AccessException: The server at https://www.3
  pv.net/3PVWebServices/3PVWebServices.asmx?wsdl returned a 403 error code (Forbid
  den). Please ensure that your URL is correct and that the correct protocol is i
  n use.
  at weblogic.webservice.binding.http11.Http11ClientBinding.handleErrorRes
  ponse(Http11ClientBinding.java:136)
  at weblogic.webservice.binding.http11.Http11ClientBinding.receive(Http11
  ClientBinding.java:220)
  at weblogic.webservice.core.soap.SOAPConnectionImpl.call(SOAPConnectionI
  mpl.java:57)
  ... 13 more
  javax.xml.soap.SOAPException: Failed to send message: weblogic.webservice.util.A
  ccessException: The server at https://www.3pv.net/3PVWebServices/3PVWebServices.
  asmx?wsdl returned a 403 error code (Forbidden). Please ensure that your URL is
  correct and that the correct protocol is in use.
  at weblogic.webservice.core.soap.SOAPConnectionImpl.call(SOAPConnectionI
  mpl.java:61)
  at com.ceon.pencor.threepv.ThreePVUtils.sendOrderRequest(ThreePVUtils.ja
  va:350)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl.sendThreePVRequest(ThreePV
  AdapterImpl.java:119)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl_ydsnbq_EOImpl.sendThreePVR
  equest(ThreePVAdapterImpl_ydsnbq_EOImpl.java:46)
  at com.ceon.pencor.threepv.ThreePVAdapterImpl_ydsnbq_EOImpl_WLSkel.invok
  e(Unknown Source)
  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
  at weblogic.rmi.cluster.ReplicaAwareServerRef.invoke(ReplicaAwareServerR
  ef.java:108)
  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
  dSubject.java:353)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
  144)
  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.jav
  a:415)
  at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest
  .java:30)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
  Caused by: weblogic.webservice.util.AccessException: The server at https://www.3
  pv.net/3PVWebServices/3PVWebServices.asmx?wsdl returned a 403 error code (Forbid
  den). Please ensure that your URL is correct and that the correct protocol is i
  n use.
  at weblogic.webservice.binding.http11.Http11ClientBinding.handleErrorRes
  ponse(Http11ClientBinding.java:136)
  at weblogic.webservice.binding.http11.Http11ClientBinding.receive(Http11
  ClientBinding.java:220)
  at weblogic.webservice.core.soap.SOAPConnectionImpl.call(SOAPConnectionI
  mpl.java:57)
  ... 13 more
  ERROR : Exception is occurred during connecting url:https://www.3pv.net/3PVWebS
  ervices/3PVWebServices.asmx?wsdl
  Please help...
  Cordially
  Sandip

• OSB 10.3.1 : Calling externall MTOM webservice through HTTPS

  Hi,
  We have OSB process that calls MTOM webservice via Business Service. It's works fine over HTTP connection.
  We secure the connection one-way ssl client, we imported public certificate to trusted keystore in wls.
  The business service calls the webservice over https, the Webservice receive the streaming and generates file.
  The problem is when the webservice returns result, the connection is froze and the wls where is the webservice generates this exception
  Couldn't create SOAP message due to exception: org.jvnet.mimepull.MIMEParsingException: Missing start boundary
  com.sun.xml.ws.protocol.soap.MessageCreationException: Couldn't create SOAP message due to exception: org.jvnet.mimepull.MIMEParsingException: Missing start boundary
  at com.sun.xml.ws.encoding.SOAPBindingCodec.decode(SOAPBindingCodec.java:292)
  at com.sun.xml.ws.transport.http.HttpAdapter.decodePacket(HttpAdapter.java:276)
  at com.sun.xml.ws.transport.http.HttpAdapter.access$500(HttpAdapter.java:93)
  at com.sun.xml.ws.transport.http.HttpAdapter$HttpToolkit.handle(HttpAdapter.java:432)
  at com.sun.xml.ws.transport.http.HttpAdapter.handle(HttpAdapter.java:244)
  at com.sun.xml.ws.transport.http.servlet.ServletAdapter.handle(ServletAdapter.java:134)
  at weblogic.wsee.jaxws.HttpServletAdapter$AuthorizedInvoke.run(HttpServletAdapter.java:272)
  at weblogic.wsee.jaxws.HttpServletAdapter.post(HttpServletAdapter.java:185)
  at weblogic.wsee.jaxws.JAXWSServlet.doPost(JAXWSServlet.java:180)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
  at weblogic.wsee.jaxws.JAXWSServlet.service(JAXWSServlet.java:64)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3498)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(Unknown Source)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: org.jvnet.mimepull.MIMEParsingException: Missing start boundary
  at org.jvnet.mimepull.MIMEParser.skipPreamble(MIMEParser.java:290)
  at org.jvnet.mimepull.MIMEParser.access$200(MIMEParser.java:62)
  at org.jvnet.mimepull.MIMEParser$MIMEEventIterator.next(MIMEParser.java:130)
  at org.jvnet.mimepull.MIMEParser$MIMEEventIterator.next(MIMEParser.java:117)
  at org.jvnet.mimepull.MIMEMessage.makeProgress(MIMEMessage.java:186)
  at org.jvnet.mimepull.MIMEMessage.parseAll(MIMEMessage.java:168)
  at org.jvnet.mimepull.MIMEMessage.<init>(MIMEMessage.java:85)
  at com.sun.xml.ws.encoding.MimeMultipartParser.<init>(MimeMultipartParser.java:88)
  at com.sun.xml.ws.encoding.MimeCodec.decode(MimeCodec.java:180)
  at com.sun.xml.ws.encoding.SOAPBindingCodec.decode(SOAPBindingCodec.java:279)
  I tested over https the same webservice using java client WS (generated by jdeveloper) and that works fine.
  Any idea
  Thanks,
  Maroun

  Resolved
  The problem is coming from OSB it happens when Business Service invoke WS in HTTPS, BS sends twice the request the first one contains the right envelop and the second one contains in empty request.
  The Oracle Support helped me to resolve the problem; we changed the QoS (Quality Of Service) to Exactly once
  Maroun

• Making a call over HTTPS with LoadVars, XML.load(), and WebService - Yes or No?

  Hello, do LoadVars, XML.load(), or WebService support HTTPS-based endpoints, Yes or No?
  BACKGROUND
  ============
  I've been trying to get a LoadVars to actually make a call to an HTTPS endpoint. There is nothing in the documentation that says it can't. I know that there's also XML.load() and WebService class, but from the looks of it they don't do HTTPS.
  During my tests I have absolutely no issues with making calls to the same service over HTTP. When I change it to HTTPS I don't see HTTPStatus or even failures. Also, netstat on my server will show a connection being established with the endpoint when using HTTP but not when using HTTPS. I've also tried setting SSLVerifyCertificate to "false" in my Server.xml and after a restart of AMS it doesn't help, same symptom.
  I've also googled and looked through all Adobe forum posts that I can find:
  https://forums.adobe.com/message/4938426#4938426
  https://forums.adobe.com/thread/1661461
  https://forums.adobe.com/thread/782037
  https://forums.adobe.com/message/74981
  https://forums.adobe.com/message/5107735#5107735
  https://forums.adobe.com/message/7815#7815
  https://forums.adobe.com/message/53870#53870
  https://forums.adobe.com/message/87797#87797
  WebService Class - http://stackoverflow.com/questions/5619776/webservice-and-fms
  The best I found from the posts above is a non-commital answer from adobe staff at https://forums.adobe.com/message/4938426#4938426 and a 3rd party person saying that Webservice doesn't work at http://stackoverflow.com/questions/5619776/webservice-and-fms.
  All I need is an official supported/not-supported from the Adobe staff. Shouldn't be to hard after 5 years or so of ignoring the questions in the forum right?

  Adobe, please provide some details to your current and possibly potential customers, in at least one of the many unanswered posts about making HTTPS requests from AMS.
  P.S.
  realeyes_jun,
  RealEyes Media has been an inspiration to me for many years, and I would like to thank them for their efforts to better the media streaming community.
  Also, would it be possible to please release the source to REDbug?

• TNSNames - Connect database over HTTP protocol - Webservices

  Hi,
  I just want to know whether I can connect oracle over HTTP protocol instead of TCP/IP protocol in TNSNames.ORA. I'm trying to connect Oracle database which is out of network (over internet). Is this possible? If yes, how secure it is? Can I use HTTPS for secure connection?
  Here is some background, previously we had two different databases within our network and we used database link to connect to the other database. Now, the database is going out of our network (seperated as different company). And we still need to use that database and we don't want to connect to database via NAT IP address.
  We are looking for some solution probably HTTP protocol connection in TNSNames.ORA (if possible) or webservices. Regarding webservices in Oracle, I can see some documents that uses UTL_DBWS and Oracle XML DB to handle this. I'm not sure how to expose webservice from Oracle 10g database. Also, how secure is the Oracle webservice?
  Appreciate any help on this.
  Thanks
  Kumar

  Once more, missleading advices. It is not me who pursues the 'Hollier than thou' attitude, it is you who put yourself in the target.
  You cannot connect directly to Oracle using the HTTP
  protocol or HTTPS protocol.Yes you can, OraDAV has been available since Oracle 8i, as I have previously mentioned this was the first use of the Listener as an application server and supports protocols such as http and ftp. This feature is not widespreaded used because either people don't know about it or becuase it is easier to manage a regular Application Server. This was used about 6 or 7 years ago for the iFS feature. Today the OraDAV protocol is used for the Oracle Portal application to easy the life of non-technical people who contribute with contents to the portal. One more platform where OraDAV is used is in the Oracle XE, it supports the XE web administrator console and is the point of access of APEX.
  If you could this would have been documented.
  Did you read the documentation?Have you? It would not be the first time you recommend something you don't do.
  Ref.
  * FTP, HTTP(S), and WebDAV Access to Repository Data.
  * Managing Network Connections
  * Configuring and Using mod_oradav
  -- ~ Madrid
  http://hrivera99.blogstpot.com

• Invokation of Webservices using HTTP

  Can I invoke webservices in SAP using HTTP instead of SOAP? If so How?

  Hi Vijay,
  yes we can do it with HTTP
  Configuring the Receiver Plain HTTP Adapter
  Use
  The plain HTTP outbound channel is a service provided by the Integration Engine. The system is addressed when technical routing determines a corresponding communication channel for the logical receiver from logical routing. The system sends the payload of the message to an HTTP address using HTTP, without being enhanced with an envelope.
  Integration
  You configure the adapter on the Parameters tab page during the definition of a communication channel in the Integration Server.
  Activities
  The plain HTTP adapter gives the receiver system the following specifications:
  Transport Protocol
  HTTP 1.0
  Message Protocol
  XI payload in HTTP body
  Adapter Engine
  Integration Server
  Addressing Type
  URL Address
  HTTP Destination
  Specify the target host, service number, and path prefix including query string:
  http://<hostname:port>/<path>?<query-string>
  You can identify the target host (HTTP port) of a SAP Web Application Server using the ICM monitor.
  Host and port of the HTTP proxy (optional if there is a firewall between the plain HTTP adapter and the receiver system)
  Authentication data for the receiver system, see also: transaction Display and Maintain RFC Destinations (SM59)
  Specify the RFC destination.
  Parameters from the Communication Channel for Technical Routing
  ●      Content type (the entry text/XML is expected as default)
  Specifies the content format  (payload) that the message should have.
  ●      (Optional) header fields for the receiver-specific protocol
  ●      Select Additional Query String Attributes:
  ○       Sender party
  ○       Sender service
  ○       Receiver interface
  ○       Message ID
  ○       Quality of service
  ○       Queue ID
  The queue ID is only required if the quality of service is EOIO.
  ●      Specifications for payload manipulation
  ○       XML code (default UTF-8)
  Specifies the character set.
  ○       URL escaping
  Presents the XML in a URL-enabled format.
  Special characters that could be interpreted as control characters are replaced with escape characters (masked).
  ○       Prolog
  Enhances the payload for particular servers (optional, see below).
  ○       Epilog
  Enhances the payload for particular servers (optional, see below).
  Adapter-Specific Message Attributes
  ●      To evaluate adapter attributes in the message header of the XI message, select Set Adapter-Specific Message Attributes.
  ●      If you want missing message attributes to trigger an error message, select Fail If Adapter-Specific Message Attributes Missing.
  If the indicator is set and the header for adapter-specific message attributes or one of the set attributes is missing from the message, this leads to a system error (red flag).
  If you do not set the indicator, and message attributes are missing, the adapter accesses information from the adapter configuration.
  ●      If you want to use an HTTP destination or URL set by the mapping, select URL orHTTP Destination.
  (The indicator displayed depends on the Addressing Type you selected above). If you set the indicator, the URL or HTTP destination set dynamically is called by HTTP.
  If the message header does not contain the URL or the HTTP destination, and you have set the Fail If Adapter-Specific Message Attributes Missingindicator, the XI message is set to status System Error.
  If you do not set the indicator, the URL or HTTP destination defined statically in the communication channel is used.
  The technical names of the fields are:
  ○       URL: TargetURL
  ○       HTTP Destination: HTTPDest
  ●      If you want to use HTTP header fields, select Apply HTTP Header Fields and enter the fields in Field 1 to Field 6.
  The fields are embedded in the HTTP request under the names you enter here.
  The technical names of the fields are HeaderFieldOne, .... HeaderFieldSix.
  ●      If you want to use URL parameters, select Apply URL Parameters and enter the parameters in the fields Parameter 1 to Parameter 6.
  The parameters are included in the HTTP request under the names specified here.
  The technical names of the fields are URLParamOne, u2026, URLParamSix.
  ●      If you want to save HTTP header fields from the synchronous response in the XI message header, choose HTTP Header Fields (Synchronous Response) and enter the fields in the fields Field 1 to Field 6.
  The fields must have the same names as the fields that are also to be sent in the HTTP response.
  The technical names of the fields are HeaderFieldOne,...,HeaderFieldSix.
  ●      The attribute namespace for the adapter is http://sap.com/xi/XI/System/HTTP.

• Accessing Java webservice (XML over http) via WCF or HTTP adapter with content-type and authorization HTTP headers with POST method

  Hi Team,
  I need to access Java web service which is simple service and accepts and returns XML over HTTP. No credentials are needed to access the service. We need to pass following two HTTP headers (Content-Type and Authorization) along with XML request message:
  <GetStatus> message is being constructed in the orchestration and URI is constant to access.
  Which adapter shall I use to get the response back? I tried using WCF-WSHttp with Security Mode = Transport, and different options of client credential types but every time, error returned stating:
  System.Net.WebException:
  The HTTP request is unauthorized with client authentication scheme 'Basic'. The
  authentication header received from the server was 'Basic realm='.
  Authentication failed for principal Basic. Message payload is of type:
  String 
  In Fiddler, request looks line following
  POST <https://URL/GetServiceReopnse HTTP/1.1
  Content-Type: application/xml
  Authorization: Basic cmVmU3RhdHN2Y19kgeRfsdfs=
  Host: <Server name>
  <GetStatus XMLNS="http://server.com/.....">
  <OrgId>232323</OrgId>
  <HubId>3232342323</HubId>
  </GetStatus>
  MMK-007

  First, you should not use the HTTP Adapter because it's been deprecated and replaced by WCF.
  Start with the WCF-Custom Adapter and select the customBinding.
  You should start with the textMessageEncoder and httpTransport and go from there.

• Error calling external web service over HTTPS

  Hi everyone
  I'm trying to call an external web service over HTTPS, and continually get the following error:
  com.sap.engine.services.webservices.espbase.wsdl.exceptions.WSDLException: Peer sent alert: Alert Fatal: handshake failure
  I haven't tried doing this before, so not quite sure where to start. I have a client certificate that must be used to access the remote web service, and I think the problem is associating the client cert with the web service call.
  Has anyone else tried this before? Any suggestions of where to look?
  I've had a brief look at Key Storage in NWA, but it's not something I'm familiar with - so not sure if it's even the right place to be looking.
  Some help on this would be great!
  Thanks
  Stuart

  Thanks Aleksandar
  Here's the output from the trace. Unfortunately the SAP forums don't allow attachments, so it may be difficult to read. Please let me know if you see anything that may help.
  Thanks
  Stuart
  Time Severity User Thread Location Message
  09:18:23:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:23:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@fa1b67
  09:18:24:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:24:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@4c8af
  09:18:24:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:24:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@b6981b
  09:18:25:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:25:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:25:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:25:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:26:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:26:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider [com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider] 'nonProxyHosts' are configured '10.|127.|192.168.*'.
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider [com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider] 'nonProxyHosts' default value is '10.|127.|192.168.*'.
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider Loadin mapping file from location :[c:/mapping.txt]
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider Additional file for CTS configuration can not be found [c:\mapping.txt (The system cannot find the file specified)].
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider >>>>>>>>> ERROR: Could not find mapping for service QName=vipSoapInterfaceService, class=class com.verisign._2006._08.vipservice.VipSoapInterfaceService
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider: Creating client instance with WSDL URL [https://pilot-vipservices-auth.verisign.com:443/prov/soap/val/soap] (vipSoapInterfaceService) <com.verisign._2006._08.vipservice.VipSoapInterfaceService>
  09:18:26:203 Debug Administrator HTTP Worker [0] ~es.espbase.client.jaxws.cts.CTSProvider com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider: Using SAP JAX-WS Implemetation to create service delegate.
  09:18:26:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:26:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@5586b0
  09:18:26:687 Path Administrator HTTP Worker [0] ~s.espbase.wsdl.exceptions.WSDLException Exception : Peer sent alert: Alert Fatal: handshake failure
  java.lang.Exception
  at com.sap.exception.BaseExceptionInfo.traceAutomatically(BaseExceptionInfo.java:1230)
  at com.sap.exception.BaseExceptionInfo.<init>(BaseExceptionInfo.java:147)
  at com.sap.exception.BaseException.<init>(BaseException.java:89)
  at com.sap.engine.services.webservices.espbase.wsdl.exceptions.WSDLException.<init>(WSDLException.java:34)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.loadDOMDocument(WSDLLoader.java:140)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.load(WSDLLoader.java:91)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.load(WSDLLoader.java:80)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.loadWSDLDefinitions(SAPServiceDelegate.java:201)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.initWSDL(SAPServiceDelegate.java:159)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.<init>(SAPServiceDelegate.java:113)
  at com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider.createDelegate(CTSProvider.java:170)
  at com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider.createServiceDelegate(CTSProvider.java:151)
  at javax.xml.ws.Service.<init>(Service.java:57)
  at com.verisign._2006._08.vipservice.VipSoapInterfaceService.<init>(VipSoapInterfaceService.java:41)
  at JEE_jsp_result_6740550_1225116575421_1225116585468._jspService(JEE_jsp_result_6740550_1225116575421_1225116585468.java:64)
  at com.sap.engine.services.servlets_jsp.lib.jspruntime.JspBase.service(JspBase.java:102)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:66)
  at com.sap.engine.services.servlets_jsp.server.servlet.JSPServlet.service(JSPServlet.java:433)
  at com.sap.engine.services.servlets_jsp.server.servlet.JSPServlet.service(JSPServlet.java:240)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:66)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:32)
  at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:431)
  at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:289)
  at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
  at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:376)
  at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:85)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:160)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.WebContainerInvoker.process(WebContainerInvoker.java:67)
  at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.ResponseLogWriter.process(ResponseLogWriter.java:60)
  at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.DefineHostFilter.process(DefineHostFilter.java:27)
  at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.MonitoringFilter.process(MonitoringFilter.java:29)
  at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.server.Processor.chainedRequest(Processor.java:309)
  at com.sap.engine.services.httpserver.server.Processor$FCAProcessorThread.run(Processor.java:222)
  at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
  at java.security.AccessController.doPrivileged(Native Method)
  at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:152)
  at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:247)
  Caused by: org.w3c.www.protocol.http.HttpException: Peer sent alert: Alert Fatal: handshake failure
  iaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: handshake failure
  at iaik.security.ssl.r.f(Unknown Source)
  at iaik.security.ssl.x.b(Unknown Source)
  at iaik.security.ssl.x.a(Unknown Source)
  at iaik.security.ssl.r.d(Unknown Source)
  at iaik.security.ssl.SSLTransport.startHandshake(Unknown Source)
  at iaik.security.ssl.SSLTransport.getOutputStream(Unknown Source)
  at iaik.security.ssl.SSLSocket.getOutputStream(Unknown Source)
  at org.w3c.www.protocol.http.g.markUsed(Unknown Source)
  at org.w3c.www.protocol.http.HttpBasicServer.getConnection(Unknown Source)
  at org.w3c.www.protocol.http.HttpBasicServer.runRequest(Unknown Source)
  at org.w3c.www.protocol.http.HttpManager.runRequest(Unknown Source)
  at org.w3c.www.protocol.http.HttpURLConnection.connect(Unknown Source)
  at org.w3c.www.protocol.http.HttpURLConnection.a(Unknown Source)
  at org.w3c.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
  at java.net.URL.openStream(URL.java:1007)
  at com.sap.engine.lib.xml.parser.AbstractXMLParser.parse(AbstractXMLParser.java:201)
  at com.sap.engine.lib.xml.parser.AbstractXMLParser.parse(AbstractXMLParser.java:263)
  at com.sap.engine.lib.xml.parser.Parser.parse_DTDValidation(Parser.java:282)
  at com.sap.engine.lib.xml.parser.Parser.parse(Parser.java:293)
  at com.sap.engine.lib.xml.parser.DOMParser.parse(DOMParser.java:101)
  at com.sap.engine.lib.jaxp.DocumentBuilderImpl.parse(DocumentBuilderImpl.java:127)
  at javax.xml.parsers.DocumentBuilder.parse(DocumentBuilder.java:146)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.loadDOMDocument(WSDLLoader.java:132)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.load(WSDLLoader.java:91)
  at com.sap.engine.services.webservices.espbase.wsdl.WSDLLoader.load(WSDLLoader.java:80)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.loadWSDLDefinitions(SAPServiceDelegate.java:201)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.initWSDL(SAPServiceDelegate.java:159)
  at com.sap.engine.services.webservices.espbase.client.jaxws.core.SAPServiceDelegate.<init>(SAPServiceDelegate.java:113)
  at com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider.createDelegate(CTSProvider.java:170)
  at com.sap.engine.services.webservices.espbase.client.jaxws.cts.CTSProvider.createServiceDelegate(CTSProvider.java:151)
  at javax.xml.ws.Service.<init>(Service.java:57)
  at com.verisign._2006._08.vipservice.VipSoapInterfaceService.<init>(VipSoapInterfaceService.java:41)
  at JEE_jsp_result_6740550_1225116575421_1225116585468._jspService(JEE_jsp_result_6740550_1225116575421_1225116585468.java:64)
  at com.sap.engine.services.servlets_jsp.lib.jspruntime.JspBase.service(JspBase.java:102)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:66)
  at com.sap.engine.services.servlets_jsp.server.servlet.JSPServlet.service(JSPServlet.java:433)
  at com.sap.engine.services.servlets_jsp.server.servlet.JSPServlet.service(JSPServlet.java:240)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:66)
  at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:32)
  at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:431)
  at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:289)
  at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
  at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:376)
  at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:85)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:160)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.WebContainerInvoker.process(WebContainerInvoker.java:67)
  at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.ResponseLogWriter.process(ResponseLogWriter.java:60)
  at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.DefineHostFilter.process(DefineHostFilter.java:27)
  at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.filters.MonitoringFilter.process(MonitoringFilter.java:29)
  at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
  at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
  at com.sap.engine.services.httpserver.server.Processor.chainedRequest(Processor.java:309)
  at com.sap.engine.services.httpserver.server.Processor$FCAProcessorThread.run(Processor.java:222)
  at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
  at java.security.AccessController.doPrivileged(Native Method)
  at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:152)
  at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:247)
  09:18:27:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:27:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@20ba3c
  09:18:27:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:27:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:28:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:28:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@26e3bf
  09:18:28:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:28:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:29:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:29:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@f827f6
  09:18:29:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:29:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@a8646a
  09:18:30:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:30:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:30:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:30:687 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=com.sap.engine.services.dbpool.cci.CommonConnectionHandle@c449f1
  09:18:31:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out About to get connection from DS
  09:18:31:187 Info caf_gp_svcuser Thread[Timer-8,5,ApplicationThreadGroup] System.out DS connection=[email protected]
  09:18:31:593 Info Administrator HTTP Worker [3] System.out SessionImpl::getContext():[ B E G I N ].timerId=15
  09:18:31:593 Info Administrator HTTP Worker [3] System.out SessionImpl::getContext():[ E N D ].timerId=[id:#15, elapsed: 0 ms.]

• Handshake between tomcat and sap xi over https

  I have a webservice which is hosted on sap xi server. My class in tomcat will call it over https protocol. For that, tomcat needs to import the xi certificate. I did it in cacerts which resides in jre's lib/security directory. Still, it doesn't work. But the strange thing is, if i write the stand alone class, and use the same cacerts file, it works.
  // For standalone class
  System.setProperty("javax.net.ssl.trustStore", "C:\\certs\\cacerts");
  //For class which is in tomcat
  System.setProperty("javax.net.ssl.trustStore", <cacerts file path>);
            System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
  I am getting the following exception :
  javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: No trusted certificate found
       org.apache.axis.AxisFault.makeFault(AxisFault.java:101)
       org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:154)
       org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
       org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
       org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
       org.apache.axis.client.AxisClient.invoke(AxisClient.java:165)
       org.apache.axis.client.Call.invokeEngine(Call.java:2784)
       org.apache.axis.client.Call.invoke(Call.java:2767)
       org.apache.axis.client.Call.invoke(Call.java:2443)
       org.apache.axis.client.Call.invoke(Call.java:2366)
       org.apache.axis.client.Call.invoke(Call.java:1812)
       com.reliant.ws.xi.client.Os_getDocumentRequestBindingStub.os_getDocumentRequest(Os_getDocumentRequestBindingStub.java:164)
       com.reliant.ws.xi.client.BillFetchClient.fetchContent(BillFetchClient.java:83)
       org.apache.jsp.en_005fUS.EBillViewer.EBillWSCall_jsp._jspService(EBillWSCall_jsp.java:56)
       org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
       javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
       org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
       org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
       org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
       javax.servlet.http.HttpServlet.service(HttpServlet.java:802)

  The problem was with the certificate. The XI certificate was expired. It was valid from 2002 to 2005. And Tomcat ignores the certificates which are expired. So I was getting No trusted certificate found.