jax-ws
  1. jax-ws
  2. JAX_WS-289

option to skip hostname verification for wsimport

    Details

    • Type: Improvement Improvement
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: current
    • Fix Version/s: 2.1.5
    • Component/s: wsimport
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: Macintosh

    • Issuezilla Id:
      289

      Description

      During development (not production) it is sometimes convenient to use X.509
      certificates whose CN (Common Name) does not match the hostname in the URL.

      We should not disable hostname verification by default.

      Since wsimport is typically invoked from the command line or Ant, it would be
      necessary to have a "--insecure" option on wsimport to skip SSL hostname
      verification.

        Activity

        Hide
        jitu added a comment -

        Assigning this to Rama

        Show
        jitu added a comment - Assigning this to Rama
        Hide
        scm_issue_link added a comment -

        Code changed in jax-ws-sources
        User: ramapulavarthi
        Path:
        /jax-ws-sources/jaxws-ri/tools/wscompile/src/com/sun/tools/ws/wsdl/parser/DOMForest.java (1.11)
        /jax-ws-sources/jaxws-ri/tools/wscompile/src/com/sun/tools/ws/wscompile/WsimportOptions.java (1.11)
        http://fisheye5.cenqua.com/changelog/jax-ws-sources/?cs=MAIN:ramapulavarthi:20080922190113

        Log:
        JAX-WS-289:Adding a new option "-XdisableSSLHostnameVerfication" to wsimport, to disable SSL Hostname verification while wsimport fetches wsdl metadata.

        Show
        scm_issue_link added a comment - Code changed in jax-ws-sources User: ramapulavarthi Path: /jax-ws-sources/jaxws-ri/tools/wscompile/src/com/sun/tools/ws/wsdl/parser/DOMForest.java (1.11) /jax-ws-sources/jaxws-ri/tools/wscompile/src/com/sun/tools/ws/wscompile/WsimportOptions.java (1.11) http://fisheye5.cenqua.com/changelog/jax-ws-sources/?cs=MAIN:ramapulavarthi:20080922190113 Log: JAX-WS-289:Adding a new option "-XdisableSSLHostnameVerfication" to wsimport, to disable SSL Hostname verification while wsimport fetches wsdl metadata.
        Hide
        jitu added a comment -

        Marking it as fixed in 2.1.5

        Show
        jitu added a comment - Marking it as fixed in 2.1.5
        Hide
        mirza9 added a comment -

        Disclaimer: I am not JAX-WS developer.

        New NetBeans it seems started using WsImport2 instead of WsImport while creating web-service clients. WsImport2 however don't have XdisableSSLHostnameVerification option. It seems that simple way to connect to SSL web service is gone or am I missing something?

        Show
        mirza9 added a comment - Disclaimer: I am not JAX-WS developer. New NetBeans it seems started using WsImport2 instead of WsImport while creating web-service clients. WsImport2 however don't have XdisableSSLHostnameVerification option. It seems that simple way to connect to SSL web service is gone or am I missing something?

          People

          • Assignee:
            ramapulavarthi
            Reporter:
            ritzmann
          • Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: