Home > Software design >  Rest Assured, Java - using TLS/SSL certificate in post request
Rest Assured, Java - using TLS/SSL certificate in post request

Time:08-04

I red probably all answers regarding using the TLS certificate in Rest Assured, unfortunately with all of them I get an error message:

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

But let's start from the beginning: I got from the service which I try to reach file .crt(certificate file is 2 way certificate - two way certificate) and RSA private key (.key). Once I merged them to the one PKCS12 file with openssl:

openssl pkcs12 -export -out keystore.p12 -inkey MY_KEY.key -in MY_FILE.crt

and imported to the POSTMAN with configuration postman setting-1, postman setting-2. I get correct response.

Once I try to use it in the Java code:

RestAssured.config = RestAssured.config().sslConfig(new SSLConfig()
.keyStore("src/test/resources/testdata/sslCerts/keystore.p12", "PASSWORD"));

or

.given()
        .spec(new RequestSpecBuilder()
            .setAuth(RestAssured
                .certificate("src/test/resources/testdata/sslCerts/keystore.p12","PASSWORD",
                    CertificateAuthSettings
                        .certAuthSettings()
                        .keyStoreType("pkcs12")
                        )).build())

I get the error from above. When I try to use for example relaxed HTTPs/allow all host names or disable SSL verification I get response:

RestAssured.config = RestAssured.config().sslConfig(new SSLConfig()
        .allowAllHostnames()
        .relaxedHTTPSValidation());

I get the response from the server:

496 - Client TLS certificate missing - please provide a valid TLS client certificate to access this service

Do you have any info how can I use provided certificate as a server and client site validation certificate and get correct response from server?

CodePudding user response:

I think this could be caused by that you're configuring only a keystore, but not a truststore.

Key stores are typically used for keeping the keys or certs to provide to a third party. But for validating the provided certificates trust stores are used.

Try to do something like:

RestAssured.config = RestAssured.config().sslConfig(new SSLConfig()
.keyStore("src/test/resources/testdata/sslCerts/keystore.p12", "PASSWORD")
.trustStore("src/test/resources/testdata/sslCerts/keystore.p12", "PASSWORD"));

Your trust store has to contain the certificate that is returned by your service or the certificate chain that was used to sign service certificate.

Page link:https//www.codepudding.com/Softwaredesign/498718.html

Prev:Static not existing though being declared in nginx default config
Next:mongoose return null in the query
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding