4

Hello fellow programmers!

I have to admit I'm still new to webservices and don't know exactly how to secure them.

I try to make a call to a webservice secured by ws-security in SoapUI. When I call WS without SSL, I get a proper answer. But when I call the WS through HTTPS, I receive status message:

Error getting response; javax.ssl.SSLException: Unrecognized SSL message, plaintext connection?

I thought that this is a problem with the SSL certificate, so I exported certificate from website and imported it to java keystore. Then I set this store in SoapUI configuration. But without success.

I used Wireshark to capture connection session, with following result:

Packet Transmission

TCP Stream

In view of this situation, I have a few questions.

  1. What could I have done wrong?
  2. It's possible that site which provides this WS supports only non-SSL connections. Is there any way to check this?

Thanks in advance! Any help or suggestion will be appreciated :3

Improve this question

1 Answer 1

Reset to default
5

You're connecting on the wrong (plain HTTP) port. It's not possible to run HTTPS and HTTP on the same port, so there will be another listening port for HTTPS in your config.

Improve this answer
Sign up to request clarification or add additional context in comments.

1 Comment

Yes, that's true. I actually resolved it thanks to your help. However, I'm still surprised, because webservice now works, even if keystore is not configured in SoapUI. (!) Is there any explanation to this behavior?

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.