Dificuldade em se acessar um Web Service

Boa tarde pessoal, estou com um belo de um problema aqui, vejam se podem me dar uma luz:

Estou fazendo uma POC sobre segurança em Web Services, primeiramente fiz utilizando apenas autenticação básica(fiz um client em java que acessava o WS, utilizei axis 2, gerando stubs).
Essa autenticação básica funcionou perfeitamente(tanto no browser, qnto no cliente Java que eu fiz pra acessar)

Porém, quando fui fazer o acesso usando HTTPS(gerei o certificado usando o keytool), não ta dando certo, e toda hora que eu pesquiso, eu acho que o problema pode ser outra coisa.

Eu fiz o seguinte, mudei na classe stub o endpoint(em todo lugar que tinha http, mudei pra https) e rodei o programa:

auth.setPassword("123");
		auth.setUsername("matheus");
		auth.setPreemptiveAuthentication(true);

		// Seta a propriedade do tipo de autenticação que será feita, e o objeto
		// auth, que descreve a autenticação.
		options.setProperty(HTTPConstants.AUTHENTICATE, auth);
		options.setProperty("javax.net.ssl.trustStore", 
			    "C:\\Documents and Settings\\Administrador\\.keystore");

		
		
		// Realiza a requisição do serviço, passando os parâmetros definidos no
		// método do WS
		SysInfoStub.GetSysInfo request = new SysInfoStub.GetSysInfo();
		request.setPasswd("SENHA SENHA SENHA SENHA SENHA");
		request.setUser("USER USER USER USER");

		try {
			stub.getSysInfo(request);
			SysInfoStub.GetSysInfoResponse response = stub.getSysInfo(request);
			System.out.println(response.get_return());

		} catch (RemoteException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}

Que me apresentou o seguinte erro:

org.apache.axis2.AxisFault: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

at org.apache.axis2.AxisFault.makeFault(AxisFault.java:417)

at org.apache.axis2.transport.http.SOAPMessageFormatter.writeTo(SOAPMessageFormatter.java:72)

at org.apache.axis2.transport.http.AxisRequestEntity.writeRequest(AxisRequestEntity.java:84)

at org.apache.commons.httpclient.methods.EntityEnclosingMethod.writeRequestBody(EntityEnclosingMethod.java:495)

at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:1973)

at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:993)

at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDirector.java:397)

at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirector.java:170)

at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:396)

at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:346)

at org.apache.axis2.transport.http.AbstractHTTPSender.executeMethod(AbstractHTTPSender.java:520)

at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPSender.java:191)

at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77)

at org.apache.axis2.transport.http.CommonsHTTPTransportSender.writeMessageWithCommons(CommonsHTTPTransportSender.java:327)

at org.apache.axis2.transport.http.CommonsHTTPTransportSender.invoke(CommonsHTTPTransportSender.java:206)

at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:396)

at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:374)

at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:211)

at org.apache.axis2.client.OperationClient.execute(OperationClient.java:163)

at lab.puc.soa.esb.wss.sysinfo.SysInfoStub.getSysInfo(SysInfoStub.java:145)

at lab.puc.soa.esb.wss.sysinfo.ChamadaWS.main(ChamadaWS.java:68)

Caused by: com.ctc.wstx.exc.WstxIOException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

at com.ctc.wstx.sw.BaseStreamWriter.flush(BaseStreamWriter.java:313)

at org.apache.axiom.om.impl.MTOMXMLStreamWriter.flush(MTOMXMLStreamWriter.java:118)

at org.apache.axiom.om.impl.llom.OMNodeImpl.serializeAndConsume(OMNodeImpl.java:422)

at org.apache.axis2.transport.http.SOAPMessageFormatter.writeTo(SOAPMessageFormatter.java:68)

… 19 more

Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)

at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)

at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)

at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)

at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unknown Source)

at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source)

at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)

at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source)

at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)

at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)

at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(Unknown Source)

at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown Source)

at java.io.BufferedOutputStream.flushBuffer(Unknown Source)

at java.io.BufferedOutputStream.flush(Unknown Source)

at java.io.FilterOutputStream.flush(Unknown Source)

at org.apache.commons.httpclient.ChunkedOutputStream.flush(ChunkedOutputStream.java:190)

at com.ctc.wstx.io.UTF8Writer.flush(UTF8Writer.java:99)

at com.ctc.wstx.sw.BufferingXmlWriter.flush(BufferingXmlWriter.java:214)

at com.ctc.wstx.sw.BaseStreamWriter.flush(BaseStreamWriter.java:311)

… 22 more

Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

at sun.security.validator.PKIXValidator.doBuild(Unknown Source)

at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)

at sun.security.validator.Validator.validate(Unknown Source)

at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.validate(Unknown Source)

at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)

at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(Unknown Source)

… 37 more

Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown Source)

at java.security.cert.CertPathBuilder.build(Unknown Source)

… 43 more

Ao que parece, é erro no .keystore, só que não to entendendo o que eu posso fazer pra resolver isso

Pesquisei em vários lugares, mas não encontrei nada pudesse resolver meu problema…

Alguém tem idéia do que eu preciso fazer?

Eu já consegui resolver o problema sim, o código correto:

auth.setPassword("123");
		auth.setUsername("matheus");
		auth.setPreemptiveAuthentication(true);

		// Seta a propriedade do tipo de autenticação que será feita, e o objeto
		// auth, que descreve a autenticação.
		options.setProperty(HTTPConstants.AUTHENTICATE, auth);
		// specify the location of where to find key material for the default
		// TrustManager
		// (this overrides jssecacerts and cacerts)
		System.setProperty("javax.net.ssl.trustStore", "client.keystore");
		System.setProperty("javax.net.ssl.trustStorePassword", "changeit");
		// use Sun's reference implementation of a URL handler for the "https"
		// URL protocol type.
		System.setProperty("java.protocol.handler.pkgs",
				"com.sun.net.ssl.internal.www.protocol");
		// dynamically register sun's ssl provider
		Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());

		// Realiza a requisição do serviço, passando os parâmetros definidos no
		// método do WS
		SysInfoStub.GetSysInfo request = new SysInfoStub.GetSysInfo();
		request.setPasswd("SENHA SENHA SENHA SENHA SENHA");
		request.setUser("USER USER USER USER");
		request.getPasswd();

		try {

			stub.getSysInfo(request);
			SysInfoStub.GetSysInfoResponse response = stub.getSysInfo(request);
			System.out.println(response.get_return());

		} catch (RemoteException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}

4 Respostas

Topicos relacionados