*
The moose likes Sockets and Internet Protocols and the fly likes Unable to get security certificates from HTTPS Server Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Sockets and Internet Protocols
Bookmark "Unable to get security certificates from HTTPS Server" Watch "Unable to get security certificates from HTTPS Server" New topic
Author

Unable to get security certificates from HTTPS Server

tarandeep sawhney
Greenhorn

Joined: Mar 13, 2007
Posts: 2
Hi
Below is the requirement for which i need to get hold of security certificate.

The Requirement:
Prior to processing standard Net Connect HTTPS transactions, the Net Connect client must check the certificate on the HTTPS server.

The client must check the following four conditions in order to validate if certificate is valid:
1) The URL in the certificate must match the URL retrieved from ECALS
2) The certificate must be from a valid certificate authority
3) The certificate must not be expired

When i open http connection to HTTPS URL and debug, HttpURLConnection object, i could notice security certificates in the object.
I need help in how to get these certificates from HttpConnection InputStream.

I've tried doing:

is = httpcon.getInputStream();
CertificateFactory cf = CertificateFactory.getInstance("X509");
X509Certificate c = (X509Certificate) cf.generateCertificate(is);

but it throws exception "Invalid DER Encoded format".

Not sure how to get hold of certificates at HTTPS server.

Look fwd to timely help

regards
tarandeep
Sat Ram
Greenhorn

Joined: Dec 31, 2002
Posts: 5
Looks like this is a very old thread ..but I am now in this ..any resolution was found for the below...
The Requirement:
Prior to processing standard Net Connect HTTPS transactions, the Net Connect client must check the certificate on the HTTPS server.

The client must check the following four conditions in order to validate if certificate is valid:
1) The URL in the certificate must match the URL retrieved from ECALS
2) The certificate must be from a valid certificate authority
3) The certificate must not be expired


thanks
Wouter Oet
Saloon Keeper

Joined: Oct 25, 2008
Posts: 2700

I don't really see your question. What have you tried and why did it fail?


"Any fool can write code that a computer can understand. Good programmers write code that humans can understand." --- Martin Fowler
Please correct my English.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Unable to get security certificates from HTTPS Server