Re: [Hbci4java-help] java.security.cert.CertPathValidatorException: Path does not chain with any of
Brought to you by:
kleiner77
Menu
▾
▴
Re: [Hbci4java-help] java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
|
From: Marcus W. <Ma...@Wo...> - 2010-01-11 17:24:20
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
HBCI4Java (Stefan Palme) schrieb:
> I thought about the following solution: YOU (as the developer of
> your special application) fetch the missing certificate(s) and
> create a cacert-style file from them using Java's keytool.
Do you realize that I have
a) no Idea what banks my users want to use
b) no way of knowing when they change certificates
c) a job and a number of other, more imporant software-projects
to care about?
You are proposing to sit here for weeks to find all hbci-servers
of all banks on this planet and then to constantly monitor them.
If not, I would risk that my software just does not work
for any random bank with the user blaming me, not his bank
or his own abilities.
> So no user of your application must do anything complicated.
Wouldn´t it be far easier to just connect to the server
at the time the user configures my program, fetch the
certificate and let the user decide if he wants to trust it?
THAT is what I asked if you knew how to do that or knew
(Java-)code that did that so I could integrate this feature.
At runtime my program runs without user-interaction
so I have to ask at configure-time.
Marcus
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAktLXrYACgkQf1hPnk3Z0cTDfwCglxOUlk16oF1veub4+FMm5+tn
WDoAoNP+wyQrJj3P79PCNCd7n2yssBYL
=I1bq
-----END PGP SIGNATURE-----
|
