client-certificates

I have a project with microservices deployed in Bluemix with Docker containers. All microservices are written in Java and the communication is using JKS files. I also developed a microservice in Node.js with Express.js. To consume the other microservices, I used the Request module with option.agentOptions feature and a pfx file , like this: var options = { uri: config.get("https://www.example.com/ms/service"), method: 'POST', body: data, json: true, headers: { 'Content-Type': 'application/json; charset=UTF-8' }, agentOptions: { pfx: fs.readFileSync(config.get("/path/to/file.pfx")), passphrase:

I am having client Certificate "A" which is signed by the CA1 certificate. CA1 certificate is signed by the Root certificate. Now I have the CA1 certificate (trusted ) and received Client certificate (non trusted ) . during validation I need to verify the trust path of the client certificate using CA1 (trusted) only .. I dont have /receive the Root certificate. Is it possible to do this validation ? I am using Openssl 1.0.0g version library. If any one know how to do that please share with me . Since, you have given the Tag, ssl-certificate , I assume that you need such a validation during an

I'm migrating a web app from an IIS 6 server to an IIS 7 server and I'm having some troubles with getting the client's certificate. The piece of code that I'm using looks like this: HttpClientCertificate cert = Request.ClientCertificate; if (cert.IsPresent) { ... } On the IIS 6 server, the cert.IsPresent is always true. However, on the IIS 7 box, it is always false. Both tests were done with IE 8 from the same computer. The only change was the Server URL, so the client should be setup correctly. I'm not getting any SSL connection errors (I'm accessing the page via https ) and I've set the SSL

This code: ( https://github.com/stuffmc/Safari-Push-Notifications/blob/master/index.php#L195 ) stream_socket_client('ssl://gateway.push.apple.com:2195', $error, $errorString, 60, STREAM_CLIENT_CONNECT, $streamContext); returns false , but with no errors. It means that when I'm sending to /v1/push it fails for every device/token :( The PHP documentation says: If the value returned in errno is 0 and the function returned FALSE, it is an indication that the error occurred before the connect() call. This is most likely due to a problem initializing the socket. I have this code running perfectly

How to pass a client certificate automatically in JavaScript (I am using XmlHttpRequest to make the call)? If this is not possible (and from what I have read it isn't because it is the browser which determines this security aspect and not the javascript running within it) then can I atleast prompt the user to select a client certificate on an event click? Any other way to accomplish this? The code will run in IE. I am currently getting an HTTP Forbidden (requesting a client certificate) when I connect to the URL. There is no prompt for any client cert selection similar to what I get when I

We are one application in a larger environment and a client for some data interface, using Websphere MQ 8.x. Our application is a Java EE application running on a WildFly 9 which uses a resource adaptor ( wmq.jmsra.rar ) which is deployed together with the EAR file in the same AS. We interact with the MQ Server in both directions. So we have on the one hand some MDBs (which are due to historical origins still in EJB 2.x format without annotations) listining to some queues and which are configured by the ejb-jar.xml deployment descriptor, containing the activation config properties