This week's book giveaway is in the OCPJP forum. We're giving away four copies of OCA/OCP Java SE 7 Programmer I & II Study Guide and have Kathy Sierra & Bert Bates on-line! See this thread for details.
1. I am working on modifying an existing web application hosted on tomcat version 5. The front end components consists of HTML, JSP, and Applets. Applets are launched using Java Web Start & JNLP. I have successfully been able to modify tomcat so that it uses "https" "two-way SSL" authentication. All program components are working correctly except for the Applets. I can't start any of the applets using Java Web Start & JNLP in the "https" mode. If I disable "https", and simply use "http" then ALL components work correctly. The Business requirement calls for the use of "https".
2. In TroubleShooting, I get the following: "JNLPException[category: Download Error : Exception: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target : LaunchDesc: null ]"
3. I have seen other POSTS where developers experienced the same problem set, and I tried to use posted ideas without success. --- I did not see a PROBLEM RESOLUTION in any of the others POSTS.
NOTE: I am using java 1.5.0, and I also have java plug-in 1.4.2 . I have tried importing Certificates into the plug-in, and Java platform using the Control Panels w/o success. I have also imported Certificates into the keystore "cacerts" located in the "security" directory w/o success.
SURELY, I am not the only person that have had this Issue! Does ANYONE know of a potential resolution to this PROBLEM?
(https -> Java web start -> jnlp) Any IDEAS? Helpful Suggestions are greatly appreciated.
Don't assume from my answering that I have any idea how to solve your problem. But let me ask you this: are you using a well-known certificate, like Verisign for example, which is already found in the browser? Or are you using a self-signed certificate?
Joined: Oct 28, 2003
I work for an established Agency. The Certificates in Play were generated by a specific department within the Agency. The certificte(s) were not self sealed or self generated.
Okay. So, for example, your certificate would be in my browser already?
Joined: Oct 28, 2003
I'm trying to find out if ANYone has managed to get client certificates over HTTPs working with webstart on JDK1.5.
Consistent SSLHandshakeException is on webstart load even though webstart appears to have imported the certificates from the browser correctly .... Works fine authenticating via the browser so I don't think the problem lies on the server. NOTE: Other Entities from the Server works correctly, in that I can traverse links, and other applications. I SIMPLY Can't launch any of the Applets using JavaWebStart & JNLP. I am looking at various POSTS in "forums.sun.com" ..... Apparently this is an ongoing problem that has been around for awhile. I am looking for a feasible solution.