https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322221#M9222 <P>Thank you Antoine!</P> Mon, 14 Jan 2013 15:03:42 GMT Laurent_Doguin 2013-01-14T15:03:42Z https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322220#M9221 <P>This post is kind of a copy paste from this <A href="http://javaskeleton.blogspot.fr/2010/07/avoiding-peer-not-authenticated-with.html">resource</A>.</P> <P>If you're running nuxeo platform over https, you may face this exception the first time you try HttpAutomationClient, following the example provided in REST API documentation :</P> <BLOCKQUOTE> <P>javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated</P> </BLOCKQUOTE> <P>Here is how i went through it and finally could have fun with AutomationClient :</P> <P>First, you need a wrapper class to update the HttpClient reference of your HttpAutomationClient :</P> <PRE><CODE>import java.security.KeyManagementException; import java.security.NoSuchAlgorithmException; import java.security.cert.X509Certificate; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManager; import javax.net.ssl.X509TrustManager; import org.apache.http.client.HttpClient; import org.apache.http.conn.ClientConnectionManager; import org.apache.http.conn.scheme.Scheme; import org.apache.http.conn.scheme.SchemeRegistry; import org.apache.http.conn.ssl.SSLSocketFactory; import org.apache.http.impl.client.DefaultHttpClient; public class SSLClientWrapper { @SuppressWarnings("deprecation") public static HttpClient wrapClient(HttpClient client) { DefaultHttpClient clientReference = null; try { SSLContext context = SSLContext.getInstance("TLS"); X509TrustManager trustManager = new X509TrustManager() { public void checkClientTrusted(X509Certificate[] xcs, String string) { } public void checkServerTrusted(X509Certificate[] xcs, String string) { } public X509Certificate[] getAcceptedIssuers() { return null; } }; context.init(null, new TrustManager[]{trustManager}, null); SSLSocketFactory socketFactory = new SSLSocketFactory(context); socketFactory.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER); ClientConnectionManager connectionManager = client.getConnectionManager(); SchemeRegistry schemeRegistry = connectionManager.getSchemeRegistry(); schemeRegistry.register(new Scheme("https", socketFactory, 443)); clientReference = new DefaultHttpClient(connectionManager,client.getParams()); } catch (NoSuchAlgorithmException e) { e.printStackTrace(); } catch (KeyManagementException e) { // TODO Auto-generated catch block e.printStackTrace(); } return clientReference; } } </CODE></PRE> <P>Then you just need to use the static method to update Nuxeo HttpAutomationClient HttpClient reference :</P> <PRE><CODE> HttpAutomationClient client = new HttpAutomationClient("https://my-server.com/nuxeo/site/automation"); SSLClientWrapper.wrapClient(client.http()); Session session = client.getSession("user", "pass"); </CODE></PRE> <P>(Of course you will need to update authentication with a correct user and password)</P> <P>Hope this helps,</P> <P>Antoine</P> Fri, 11 Jan 2013 12:28:38 GMT https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322220#M9221 Antoine_Cordier 2013-01-11T12:28:38Z https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322221#M9222 <P>Thank you Antoine!</P> Mon, 14 Jan 2013 15:03:42 GMT https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322221#M9222 Laurent_Doguin 2013-01-14T15:03:42Z https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322222#M9223 <P>Niceeeeeeee, got a badge</P> Fri, 18 Jan 2013 22:50:19 GMT https://connect.hyland.com/t5/nuxeo-forum/java-automation-client-over-ssl/m-p/322222#M9223 Antoine_Cordier 2013-01-18T22:50:19Z