First of all i am sorry if this question is not valid, i am dealing with a situation where i have created the SSL certificate locally and its signed by local CA.
My frontend application is in angular and my backend application is in Spring boot when i try to connect to login from the UI then i need to add this certificate manually for that i had given a link button by clicking of that i will load the backend api in the browser
After this a popup will be open and the backend api will be loaded ,
then manually i need to click on the "Advance" and then proceed to unsafe . After all these steps certificate are getting added in the browser.
Can anyone suggest how to add this automatically without all these manual work.
You can use below configurations to enable self signed certificate on differernt browser. Although remember, this is not for PRODUCTION
Firefox : Go to URL https://localhost:<port_no> and add security exception to allow connections. If connection error still comes, Go to URL about:config and set value for security.mixed_content.block_active_content to false and security.mixed_content.block_display_content to true.
Chrome : Go to URL chrome://flags/#allow-insecure-localhost and click on Enable and restart Chrome to allow connections.
IE 10 and above : Go to URL https://localhost:<port_no> and add the certificate to Trusted Root Certification Authoritiesif certificate error comes.
You'll need to get a new Valid SSL Certificate. This might help
Related
We have recently needed to change our SSL certificate on our server. Our consuming application has suddenly stopped working. I had presumed this was to do with Java's cacerts, and modified the program to import the new certificate to each client, the problem was not resolved.
When the application attempts to load the remote view (shown below) on the server, it simply loads a white page. I have tried loading the page through http:// and it seems to function, however the rest of the application (including the API) requires https, and subsequent calls to the API fail (images loaded through https are showing as broken within the app).
The website is functional, and when I access URL's being provided to the app, through my desktop browser they load without issue. The app is also functional when I run it in Debug mode, these issues only occur when I use the "Run" build mode.
I have tried creating a blank MAF application, hoping it was some caching issue, however this new app also cannot load the remote URI. I have done a clean build and have tested other remote URI's (they work). I feel as if there is an issue with Java somehow not accepting the new certificate. The first time I tried to load the website within Eclipse's browser, an error displayed along the lines of "certificate revocation information". I didn't pay much attention to this error and it provided the option to install the new certificate, after which the page loaded within eclipse's browser.
In Jdeveloper there is an option of Disabling the Application Transport Security as shown in the image.
Could you try disabling in your eclipse too, Kindly refer this doc https://wiki.eclipse.org/Jetty/Howto/Configure_SSL, this might do a little help :)
The issue seems to be due to the changed SSL certificate on your server.
Short answer:
There was no chain installed, I installed the provided ca-bundle file and updated the httpd.conf file to reflect the chain location and the app now works.
Long answer:
When our server dev installed the new certificate, he neglected to install the ca-bundle (certificate chain) provided by the CA. The site was working in a browser, I can only assume, because it has a more complete list of trusted CA's built in. My best guess is that MAF requires the chain to be installed and was failing some security test, or the chrome webview it uses did not have this CA on the trusted list.
I have a GWT module/application deployed in Appache Tomcat and I have secured the connection to the application using SSL (so that one connects to it via https:// instead of http:// as it has been the case so far).So I created CSR (Certificate Signing Request), gave it to the IT guys of my Company who signed it using the company's Root Certifcate and issued me a Certificate chain which I imported to Tomcat keystore. Everything works fine with firefox and Chrome (The connection is secured). But I have a problem with IE11. Although the connection is also secured in IE11, there is a Login Panel/Form on the first page which is not displayed. Before we decided to secure the connection to the application, the login form was there and everything was working fine.
When I go to Developer Tools -> DOM Explorer of IE, I see that there is indeed a login form (username/password field and submit button) as you can see on the picture below :
I am just wondering was is the problem hier and I would appreciate any help because i am stuck.
Thanks in Advance!
After an investigatation , I found out that the problem with the login form not displaying in IE had to do with the settings for compatibility mode for Internet Explorer in the Development Tools. So I changed the Document Mode from 7(Standard) to 11 as follows :
-> Press F12
-> From the Document Mode List Box ,select 11
Note : 7(standard) was selected instead as default.
-> Refresh the browser and problem Solved.
I have been developing a web application using java and I wanted to use implement mutual certificate authentication.
I used a self-signed certificate, I put it on my browser(chrome) and to my glassfish trust store(cacerts.jks) and configure my web.xml and sun-web.xml and works fine.
When I run the application it asked me to choose a certificate and after the proper authentication the page I requested is displayed.
However I need to make different certificate(actually three) and based on the role I want to authorize the user.
But even if I created other two certificates and added to the browser certificate list, the browser didn't list them on the certificate selection prompt except for the first certificate.
It seems that I am adding the certificate to the wrong version of glassfish trust store(cacerts.jks) now everything is working fine. The browser lists all certificate I added and authorize correctly according to the role.
I am currently working on project that requires SSL Communication. What I want that login in page should prompt the user for their certificate (and it does, the first time). But when you click the 'Sign in' button on the Signed out page it's using the SSL state from the previous user and no certificate prompting occurs.
I do not want to clear SSL Cache after closing the browser or do it to manually in the browser.
I know that java script clears SSL Cache for the browser but it is not universal to all.
Is there any client or server side approach (for server side I only prefer java) to clear ssl cache.
Deployed the project in weblogic server 10.3 in local. The application works fine in Firefox but in IE says error
There is a problem with this website's security certificate
after click the login.
Used J_Security_Check for login.
even clicked continue this web site also not help
I am using the default certificates that come with weblogic installation. I have not generated any private keys or certificates.
I am new to the web logic server.
Please let me know we need to do any configurations in Web logic server to work in IE
or how to solve the issue.
Method-1 Install the certificate
1. In Windows Internet Explorer, click Continue to this website (not recommended).
2. A red Address Bar and a certificate warning appear.
3. Click the Certificate Error button to open the information window.
4. Click View Certificates, and then click Install Certificate.
5. On the warning message that appears, click Yes to install the certificate.
Method-2 Add website to Security zone
Check this : Add sites to security zone
Method-3 Disable certificate check.
1. To clear the certificate error, go to Tools --> Internet Options from the menu.
2. Click on the Advanced tab and scroll down to the security section. Clear the boxes for: "Check for publisher's certificate revocation" and "Check for server certificate revocation".
3. Click Apply and Ok.
4. Attempt to reload the page by clicking the Refresh button at the end of the address bar or by pressing the F5 key. Your page should now load as expected.
Personally i don't recommend Method-3. If you are facing the issue in development environment, i suggest you ignore it :)