Closed essiembre closed 5 years ago
@ciroppina, Seems to be that your version of Java does not have the latest crypto ciphers required to communicate with your server via SSL.
I was able to reproduce and could not find a workaround until I installed the latest Java 8 (u202) and removed all custom settings under <httpClientFactory>
. It worked just fine after that.
Updated Java SDK and JRE to u202, added to java 'security/cacerts' the TLS 1.2 certificate for "sac.formalazio.it:443"
Removed all
but I still get: https://sac.formalazio.it/login.php (com.norconex.collector.core.CollectorException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
removing "sac.formalazio.it:443" TLS certificates from Java security/cacerts, I get the same exception
Humm... this is puzzling. I suggest you try importing the security certificate manually before running the crawler, using Java Keytool. Not always the easiest thing to do but you can find a few tutorials online. Here is one from Oracle:
https://docs.oracle.com/javase/tutorial/security/toolfilex/rstep1.html
Pls, deaar Pascal
let's consider closed this issue, by setting the following:
<httpClientFactory class="$httpClientFactory">
<cookiesDisabled>false</cookiesDisabled>
<trustAllSSLCertificates>true</trustAllSSLCertificates>
<expectContinueEnabled>true</expectContinueEnabled>
<sslProtocols>SSLv3, TLSv1, TLSv1.1, TLSv1.2</sslProtocols>
</httpClientFactory>
thnks mauch
Thanks for the update.
Dears, why I still get the "handshake_failure" alert with the following crawler configuration, and Java8_172 ?
on the contrary, with a curl command (win64 on Windows) and a RESTClient for Firefox the page is immediately downloaded eg: curl -X GET -i "https://sac.formalazio.it/login.php"
Originally posted by @ciroppina in https://github.com/Norconex/collector-http/issues/446#issuecomment-462331602