Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-8211

JAX-RS Client - Failover does not respect truststore settings

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Information Provided
    • Affects Version/s: 3.2.1
    • Fix Version/s: None
    • Component/s: JAX-RS Security
    • Labels:
      None
    • Estimated Complexity:
      Unknown

      Description

      Setup the client for TLS/SSL (use my own truststore)
      Setup the client for Failover

      • In normal case, the client communicates over TLS/SSL with the server (certificate found in my own truststore)
      • But in the case of a failover, the client use cacerts (???) and not my own configured truststore (-> SSLHandshakeException)

      If I set the 2 properties 'javax.net.ssl.trustStore' and 'javax.net.ssl.trustStorePassword' to my own truststore the TLS/SSL connection to the failover host works as well.
      But this is not the idea, because I configured my own truststore with TLSClientParameters and TrustManagerFactory (with method init(myOwnTruststore)).

        Attachments

          Activity

            People

            • Assignee:
              coheigea Colm O hEigeartaigh
              Reporter:
              stegas Stephan Gasser

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment