AXIS Soap Call - use truststore only for selfsigned certifiates
https://stackoverflow.com/questions/12040121
-
27-06-2021 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russianسؤال
I'm using Axis 1.4 in my client app to make SOAP calls. I am calling services over HTTPS. Some services use self signed certificates, others use certificates issued by a certificate authority.
I've used the code from this answer to add the self signed certificate to my trust store. My problem is that the truststore is being used for all calls - even the one's to servers that have a valid certificate from a CA.
Is there anyway to tell Axis to only use the truststore for servers that have self signed certificates ?
المحلول
It's essentially the same issue as here (except that this was for client-certificate authentication).
You'll need to create your own socket factory class and pass it to axis using this property:
AxisProperties.setProperty("axis.socketSecureFactory",
"com.example.MySSLSocketFactory");
(See org.apache.axis.components.net.SecureSocketFactory.)
Since you already have a working SSLContext, instead of setting it as the default context, you need to create a javax.net.ssl.SSLSocketFactory from it and use this to create the socket within the Apache Axis socket factory.
