Hello, I've tried searching and searching, and I'm not having an success. Here's my problem:
I'm trying to write a java application that connects to an https page that has client authentication enabled. Just incase that is not the right terminology, if you're in a web-browser, and go to a url: https://ssl.ssl.ssl/index.htm it pops up and says, which certificate would you like to use? you hit ok, then it asks for your password. It then returns the page. I would like to do this in JAVA, where I connect to the page in code, and get the resulting page back. I've tried several ways. Currently, I'm trying jakarta HTTPClient. But I know I'm implementing it wrong, it blows up trying with the handshake . I'm lost on how to go about passing the client log-in information to the website. I can do it with a regular http request, but that does me no good
Any help would be GREATLY appreciated. All the java developers I ask around haven't had to do it. It seems like someone would have had to do it...
oh, and let me add, I'll be working on this until I figure it out...SOOO..even if you don't know an exact answer, if you can point me to another library like Jakarta HTTPClient, or anything that might help me solve the problem, I'll investigate it more and hopefully find something.
There are two issues here: HTTPS (by means of SSL) and authentication. The two have nothing to do with each other. To use HTTPS in your app, you use javax.net.HttpsUrlConnection instead fo java.net.HttpUrlCOnnection, and you should be all set.
As regards authentication, there is a chapter in the HttpClient user guide on this topic.
By the way, you do not need to deal with JSSE. Either javax.net.HttpsUrlConnection or the HttpClient package (whichever of the two you are using) will handle this for you. [ January 26, 2006: Message edited by: Ulf Dittmer ]
I thought you meant "crypto authentication" (in which case they are related since SSL uses many different algorithms for such authentication via the certificates you mentioned - both mutual and one way).
I didn't read your post correctly, and sorry to mix you up.