Closed GoogleCodeExporter closed 9 years ago
Are you able to hit your https url using browser? How about hitting some public
https urls like https://www.google.com/accounts/ServiceLoginAuth using
restclient?
SSL trust verification and hostname verification are two different things.
First SSL trust is verified then, if hostname verification is enabled, target
hostname is matched against the names stored inside the server's X.509
certificate, after connection has been established. Hostname verification is
disabled in restclient.
It looks like your self-signed certificate is not correctly
installed/configured and connection is not established at very first step.
-Yadu
Original comment by a1yadu
on 9 Aug 2011 at 6:04
Hitting https://www.google.com/accounts/ServiceLoginAuth using restclient works
fine.
I had the same problem with wiztools.org restclient, and that was solved by
adding the cert to a keystore, but I can't do that with restclient-tool.
The cert is on Amazon Elastic Beanstalk so there isn't much I can do about the
configuration except enable/disable.
Original comment by haj...@gmail.com
on 9 Aug 2011 at 6:30
Able to reproduce in case of self signed SSL certificate. It should work fine
with all other valid SSLs.
As a side note, it complains if there is no SSL certificate installed on server
and request is made over https, no matter if verification is disabled.
I'll add fix in next release. Thanks for raising it.
Original comment by a1yadu
on 22 Aug 2011 at 6:45
When I am saying "It should work fine with all other valid SSLs." that means
certificate must be signed by CA as recognized by JVM.
Original comment by a1yadu
on 22 Aug 2011 at 7:51
Fixed with version 1.0.3. Refer documentation @
http://code.google.com/a/eclipselabs.org/p/restclient-tool/source/browse/trunk/d
ocs/ssl-handling.txt
Original comment by a1yadu
on 12 Sep 2011 at 8:52
Original issue reported on code.google.com by
haj...@gmail.com
on 9 Aug 2011 at 4:03