Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

SSL: Ignore invalid server certificate

843811Sep 11 2003 — edited Sep 11 2003

Hi,
When performing the SSL handshake between a client and server using the JSSE API, is it possible to ignore the fact that the server's cert is invalid? The main cause of invalidity is the fact that the client doesnt trust who issued the certificate. Is it possible to proceed and communicate over SSL even though the client knows that the server's cert is invalid?
I want to achieve the same feeling a client browser has, i.e. if the server's cert is invalid, the client can choose to proceed anyway.

thanks in advance,
James.

Locked Post

New comments cannot be posted to this locked post.

Locked on Oct 9 2003

Added on Sep 11 2003

#java-secure-socket-extension-jsse

1 comment

350 views