Invoking the Secure Protocol RestService from OSGI Client (AEM is in http protocol) not working. | Community
Skip to main content
R
RahulJain7th
Level 2
October 16, 2015
Solved

Invoking the Secure Protocol RestService from OSGI Client (AEM is in http protocol) not working.

  • October 16, 2015
  • 1 reply
  • 1122 views

Hi,

I have osgi client which invokes secure(https) rest-service through rest-template.

When I am Testing the Client through main program I am able to invoke the rest-service Successfully.

I have imported the certificates in cacerts under java_home/jre/lib/security to invoke the service successfully from osgi client.

But When I have installed osgi client in felix .Its Not able to invoke the service and Following Exception Occurs:

":sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target; nested exception is javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
    at org.springframework.web.client.RestTemplate.doExecute(RestTemplate.java:498)
    at org.springframework.web.client.RestTemplate.execute(RestTemplate.java:446)
    at org.springframework.web.client.RestTemplate.postForObject(RestTemplate.java:294)
    at com.phh.restfulservice.RestClientHandlerImpl.invokeRestService(RestClientHandlerImpl.java:52)

 

AEM is running on same JAVA_HOME.

1. can we invoke the secured protocol (https) service from non secured protocol( Aem )

2. Do I need to do any Additional configuration in AEM.

3.Is it necessary to ENABLE https in AEM also?

 

NOTE : my rest-service is deployed in Tomcat.

 

Thanks and Regards,

Rahul Jain

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Sham_HC

certification is not imported in your java keys. Please follow  http://nodsw.com/blog/leeland/2006/12/06-no-more-unable-find-valid-certification-path-requested-target

Generally mistake done are  While adding a certificate in the url you will append extra space.

No additional configuration needed in aem and also no need to enable https for your functionality. 

Many times it is different jre & forking cause issue. Just debug from jre perspective right jre certificate is used Or explicitly configure in startup script to use custom store. 

1 reply

Sham_HC
Sham_HCAccepted solution
Level 10
October 16, 2015

certification is not imported in your java keys. Please follow  http://nodsw.com/blog/leeland/2006/12/06-no-more-unable-find-valid-certification-path-requested-target

Generally mistake done are  While adding a certificate in the url you will append extra space.

No additional configuration needed in aem and also no need to enable https for your functionality. 

Many times it is different jre & forking cause issue. Just debug from jre perspective right jre certificate is used Or explicitly configure in startup script to use custom store. 

Terms & ConditionsAccessibility statement

Loading footer...