Win a copy of The Career Toolkit this week in the Jobs Discussion forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Paul Clapham
  • Ron McLeod
  • Bear Bibeault
  • Liutauras Vilda
Sheriffs:
  • Jeanne Boyarsky
  • Tim Cooke
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Tim Holloway
  • Stephan van Hulst
  • Jj Roberts
  • Carey Brown
Bartenders:
  • salvin francis
  • Frits Walraven
  • Piet Souris

<sc:Trustore> is missing on server side's WSIT configuration file

 
Bartender
Posts: 2006
13
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
According to WSIT tutorial chapter 6 mutual certificate security, it demonstrates how to create a server side WSIT configuration file for mutual authentication.
It says make sure sc:KeyStore> is in the file. But why it does not have <sc:TrustStore> to authenticate the client?
This is an example I generated:
 
Creator of Enthuware JWS+ V6
Posts: 3363
305
Android Eclipse IDE Chrome
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I am not sure what you are asking because in chapter 6 they explain how to secure the client and server, and this is the description of Mutual Certificates Security:

Mutual Certificates Security

The Mutual Certificates Security mechanism adds security via authentication and message protection that ensures integrity and confidentiality. When using mutual certificates, a keystore and truststore file must be configured for both the client and server sides of the application.

 
Himai Minh
Bartender
Posts: 2006
13
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for your reply.
When mutual authentication is used, the server should have a trust store to authenticate the client's certificate.
But in the previous example, after line 55, there is no <sc:trustStore>..... node on the server side's WSIT config file.

However in the client side's WSIT config file, there is a keyStore and trustStore like this as shown in chapter 6:

Simplified server side WSIT config file :
 
Live a little! The night is young! And we have umbrellas in our drinks! This umbrella has a tiny ad:
Building a Better World in your Backyard by Paul Wheaton and Shawn Klassen-Koop
https://coderanch.com/wiki/718759/books/Building-World-Backyard-Paul-Wheaton
reply
    Bookmark Topic Watch Topic
  • New Topic