Ok chaps,
last and final questions with all this. One the server side postgreSQL
expects the following docs in the /data folder:
1. server.crt, server.key, root.crt, root.key
Now for the for handshaking to be successful with the root docs in the
/data folder, postgresql expects the client to return a certificate. So
my question is:
Where is postgresql expecting the certificate to come from, and what
format does the certificate take (in terms of postgresql knowing that
the client is a valid one)?
regards
Andrew
On 8 Dec 2004, at 13:37, Vadim Nasardinov wrote:
> On Wednesday 08 December 2004 05:06, Andrew M wrote:
>> I'm nearly there but not yet.....
> ...
>> I specify properties in jboss like so:
>>
>> javax.net.ssl.keyStore=/library/java/home/lib/security/cacerts
>> javax.net.ssl.keyStorePassword=changeit
>> javax.net.ssl.keyStoreType= JKS
>
>
> This is starting to look increasingly like a JBoss-specific issue that
> you may have better luck finding a solution to if you direct your
> questions to the JBoss crowd. I, for one, haven't done anything with
> keycerts in a long time.
>
>
>> The error message I get back is:
>> sun.security.validator.ValidatorException: No trusted certificate
>> found
> ...
>> I get the following error:
>> java.net.SocketException: Default SSL context init failed: null
>
> It is generally more informative to post the entire stack trace.
>
>