This week's book giveaway is in the Other Languages forum.
We're giving away four copies of Functional Reactive Programming and have Stephen Blackheath and Anthony Jones on-line!
See this thread for details.
Win a copy of Functional Reactive Programming this week in the Other Languages forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

creating naive Trust Providers to get around testing agaisnt a different domain to the cert

 
Gavin Tranter
Ranch Hand
Posts: 333
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi all,
I am trying to test an application I have control over, however I can not change the application as that would invalidate the testing I am trying to carry out.
The application uses certificates to talk to a third party server.

The problem is, the values are hard coded, and we have hacked hosts file and iptables so we can connect it to the the third parties testing site.
(please dont ask, its horrible if you ask I may cry).

So the test site is a sub domain (partners.test.somedomain.com rather than partners.somedomain.com) and of course java complains.
So I would like to create a trust provider that just trusts everything.

Is it possible, from the command line, to somehow "install" this provider into the virtual machine so that my application will just trust all the responses?



Thanks
G

 
Gavin Tranter
Ranch Hand
Posts: 333
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Ok, seems the easiest way was to call the main class of the jar from an external class that had already added a naive security provide that just accepted everything.

Not the cleanest but it works.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic