CODEWITHSUNDEEP
sslhttpscxfmule
user486442
user486442

Reputation: 41

Problem with Mule cxf:outbound-endpoint (client) and HTTPS/SSL

I have a small problem configuring the CXF transport in Mule 2.2 to call a WS-method on service exposed, using HTTPS/SSL. Calling the same method using plain HTTP works fine. I’ve searched a lot on this issue and found among others the following link:

http://www.mulesoft.org/documentation/display/MULE2CB/Using+HTTPS+with+CXF

which is helpful but there is still a few things that I don’t fully understand:

What I do get in the Mule log when trying to connect to the HTTPS-enabled WS is as below and it’s clearly related to the SSL key but I miss the last piece to get it all to fall into place. Any help and comments on this matter would be greatly appriciated.

/Ola

********************************************************************************
Message               : Failed to invoke lifecycle phase "initialise" on object:
HttpsConnector{this=a7769e, started=false, initialised=false,
name='connector.https.0', disposed=false, numberOfConcurrentTransactedReceivers=4,
createMultipleTransactedReceivers=true, connected=false, supportedProtocols=[https],
serviceOverrides=null}
Type                  : org.mule.api.lifecycle.LifecycleException
Code                  : MULE_ERROR-70228
JavaDoc               : http://www.mulesource.org/docs/site/current2/apidocs/org/mule/api/lifecycle/LifecycleException.html
********************************************************************************
Exception stack is:
1. The Key password cannot be null (java.lang.IllegalArgumentException)
org.mule.api.security.tls.TlsConfiguration:290 (null)
2. Failed to invoke lifecycle phase "initialise" on object: 
HttpsConnector{this=a7769e, started=false, initialised=false, 
name='connector.https.0', disposed=false, numberOfConcurrentTransactedReceivers=4, 
createMultipleTransactedReceivers=true, connected=false, supportedProtocols=[https], 
serviceOverrides=null} (org.mule.api.lifecycle.LifecycleException)
org.mule.lifecycle.DefaultLifecyclePhase:277 (http://www.mulesource.org/docs/site
/current2/apidocs/org/mule/api/lifecycle/LifecycleException.html)
********************************************************************************
Root Exception stack trace:
java.lang.IllegalArgumentException: The Key password cannot be null
    at
org.mule.api.security.tls.TlsConfiguration.assertNotNull(TlsConfiguration.java:290)
at org.mule.api.security.tls.TlsConfiguration.validate(TlsConfiguration.java:208)
...
..

Upvotes: 1

Views: 1652

Answers (1)

Brakara
Brakara

Reputation: 31

If there are no Mule https:connector, then it could mean an external service is doing the SSL part (like a JBoss server). I have no experience doing that myself though.

But if everything is done through Mule, you also need to set the client properties (as explained in the link you mentioned):

<https:tls-client path="clientKeystore" storePassword="mulepassword" />

And to recap the various key stores (which may be confusing):

  • clientKeyStore contains your client's key(s)
  • serverKeyStore contains your server's key(s)
  • trustStore contains the public keys of all peers, i.e. keys to clients connecting to your server, keys to any external servers (like the ws you are trying to connect to)

But the error message you got indicates that there is a missing key password. That should not happen if you have set up the key stores and the https connector properly.

Upvotes: 1

Related Questions