https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332485#M101357 <BLOCKQUOTE> <TABLE border="1"> <TBODY> <TR> <TD>Hi ,&nbsp;<BR />Thank you for reply .I do have url on the http conduits . Edited the post with full file .<BR />But my route is like below<BR />cCXF(http://localhost:8089/testService)&nbsp;-&gt;cProcessor-&gt;&nbsp;cCXF(https :// externa-webservice)&nbsp;&nbsp;<BR />will this service pick settings of ssl from http conduits ?<BR />Thanks,<BR />Nitesh</TD> </TR> </TBODY> </TABLE> </BLOCKQUOTE> <BR />I believe the "org.apache.cxf.http.conduits-common.cfg" config is used for the localhost, however now I see the same truststore and url is used <span class="lia-inline-image-display-wrapper" image-alt="0683p000009MPcz.png"><img src="https://community.qlik.com/t5/image/serverpage/image-id/157233iD1A564EF62DE3BC2/image-size/large?v=v2&amp;px=999" role="button" title="0683p000009MPcz.png" alt="0683p000009MPcz.png" /></span> To go really deeply, you can start the container with -Djavax.net.debug=ssl and you will see which keystore, truststore is really loaded and used. <BR />and looking at trace, try to use the url for " <FONT face="Times New Roman, serif"><FONT size="3">192.168.101.25", not localhost<BR />g.<BR /></FONT></FONT> Fri, 29 Jan 2016 08:33:19 GMT Anonymous 2016-01-29T08:33:19Z https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332482#M101354 Hello Everyone , <BR />I have usecase where using cCXF component to consume &nbsp;external https based webservice and this webservice requires an ssl certificate to communicate. <BR />We have loaded the certificate in a keystore and configured runtime with &nbsp;etc/ org.apache.cxf.http.conduits-test.cfg&nbsp;&nbsp; with tls parameters as below and deployed this route having cCXF &nbsp;but ended up with&nbsp; <BR /> Caused by: javax.net.ssl.SSLHandshakeException: SSLHandshakeException invoking&nbsp; : Received fatal alert: handshake_failure <BR />Is this correct way of consuming a service with cCXF . Do we need to write any extra bean code in mediation like&nbsp; <BR />here in section &nbsp; CONFIGURING SSL SUPPORT ? <BR /> <BR />______________________________________________________________ <BR /> org.apache.cxf.http.conduits-token.cfg&nbsp; <BR />url = <A href="https://localhost.*" target="_blank">https://localhost.*</A> <BR />client.ConnectionTimeout = 20000 client.ReceiveTime <BR /><BR />To see the whole post, download it <A href="https://community.qlik.com/legacyfs/online/tlnd_dw_files/0683p000009Md0O" target="_blank">here</A> Sat, 16 Nov 2024 10:50:27 GMT https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332482#M101354 Anonymous 2024-11-16T10:50:27Z https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332483#M101355 Hi<BR />don't you miss the "url" property from your conduit file?<BR />g. Thu, 28 Jan 2016 15:52:45 GMT https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332483#M101355 Anonymous 2016-01-28T15:52:45Z https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332484#M101356 Hi ,&nbsp;<BR />Thank you for reply .I do have url on the http conduits . Edited the post with full file .<BR />But my route is like below<BR />cCXF(http://localhost:8089/testService)&nbsp;-&gt;cProcessor-&gt;&nbsp;cCXF(https :// externa-webservice)&nbsp;&nbsp;<BR />will this service pick settings of ssl from http conduits ?<BR />Thanks,<BR />Nitesh Thu, 28 Jan 2016 17:26:21 GMT https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332484#M101356 Anonymous 2016-01-28T17:26:21Z https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332485#M101357 <BLOCKQUOTE> <TABLE border="1"> <TBODY> <TR> <TD>Hi ,&nbsp;<BR />Thank you for reply .I do have url on the http conduits . Edited the post with full file .<BR />But my route is like below<BR />cCXF(http://localhost:8089/testService)&nbsp;-&gt;cProcessor-&gt;&nbsp;cCXF(https :// externa-webservice)&nbsp;&nbsp;<BR />will this service pick settings of ssl from http conduits ?<BR />Thanks,<BR />Nitesh</TD> </TR> </TBODY> </TABLE> </BLOCKQUOTE> <BR />I believe the "org.apache.cxf.http.conduits-common.cfg" config is used for the localhost, however now I see the same truststore and url is used <span class="lia-inline-image-display-wrapper" image-alt="0683p000009MPcz.png"><img src="https://community.qlik.com/t5/image/serverpage/image-id/157233iD1A564EF62DE3BC2/image-size/large?v=v2&amp;px=999" role="button" title="0683p000009MPcz.png" alt="0683p000009MPcz.png" /></span> To go really deeply, you can start the container with -Djavax.net.debug=ssl and you will see which keystore, truststore is really loaded and used. <BR />and looking at trace, try to use the url for " <FONT face="Times New Roman, serif"><FONT size="3">192.168.101.25", not localhost<BR />g.<BR /></FONT></FONT> Fri, 29 Jan 2016 08:33:19 GMT https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332485#M101357 Anonymous 2016-01-29T08:33:19Z https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332486#M101358 Thank you &nbsp;for help Gabriel . On modifying&nbsp; <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif"><FONT color="#000000">org.apache.cxf.http.conduits-token.cfg&nbsp;</FONT></FONT></FONT> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif">url = https://localhost.*</FONT></FONT> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif">to&nbsp;</FONT></FONT> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif">url =https://&lt;external-service&gt;.* &nbsp;&nbsp;</FONT></FONT> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif">made the cxf client on runtime to pick certificate from keystore pointed in&nbsp;<FONT color="#000000">org.apache.cxf.http.conduits-token.cfg&nbsp;</FONT></FONT></FONT> <BR /> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif"><FONT color="#000000">Thanks,</FONT></FONT></FONT> <BR /> <FONT size="1"><FONT face="Verdana, Helvetica, Arial, sans-serif"><FONT color="#000000">Nitesh</FONT></FONT></FONT> Fri, 29 Jan 2016 17:35:40 GMT https://community.qlik.com/t5/Talend-Studio/cCXF-SSL-javax-net-ssl-SSLHandshakeException/m-p/2332486#M101358 Anonymous 2016-01-29T17:35:40Z