YadisException: 0x704: I/O transport error: peer not authenticated - OpenID4Java

The old Google Groups will be going away soon, but your browser is incompatible with the new version.

« Groups Home

OpenID4Java

Home

Discussions

+ new post

About this group

Join this group

YadisException: 0x704: I/O transport error: peer not authenticated

Options

7 messages - Collapse all

SureshAtt

Apr 26 2012, 10:57 am

From: SureshAtt <suresh.attanay...@gmail.com>

Date: Thu, 26 Apr 2012 07:57:21 -0700 (PDT)

Local: Thurs, Apr 26 2012 10:57 am

Subject: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

Hi all,

I have an OpenID client webapp which works fine with an OpenID
Provider server over SSL, but my app throws the $subject exception
when I try to use Google OpenID. I have successfully installed the
public key certificate of Google but still I get this error. I did
some Google search and I found this issue has been there in many cases
but I could not find a proper solution. Please help me with this,

My environment :
OpenID4Java 0.9.6
Oracle Java 1.6.0_26 (64-bit)
Ubuntu 11.10

Apr 26, 2012 7:54:43 PM org.openid4java.server.RealmVerifier
setEnforceRpId
WARNING: RP discovery / realm validation disabled;
Apr 26, 2012 7:54:43 PM org.openid4java.discovery.Discovery discover
INFO: Starting discovery on URL identifier: https://profiles.google.com/suresh.attanayake
org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport
error: peer not authenticated
at
org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:
478)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
248)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
232)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
166)
at org.openid4java.discovery.Discovery.discover(Discovery.java:147)
at org.openid4java.discovery.Discovery.discover(Discovery.java:129)
at
org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:
542)
at
org.wso2.carbon.identity.openid.openidclient.OpenIDRelyingPartyServlet.doPo st(OpenIDRelyingPartyServlet.java:
148)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicatio nFilterChain.java:
290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterC hain.java:
206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.j ava:
233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.j ava:
191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.jav a:
109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:
293)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:
859)
at org.apache.coyote.http11.Http11Protocol
$Http11ConnectionHandler.process(Http11Protocol.java:602)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:
489)
at java.lang.Thread.run(Thread.java:662)
Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not
authenticated
at
com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionI mpl.java:
352)
at
org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:
128)
at
org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.ja va:
339)
at
org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(De faultClientConnectionOperator.java:
123)
at
org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:
147)
at
org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConn Adapter.java:
101)
at
org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDi rector.java:
381)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
641)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
576)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
554)
at org.openid4java.util.HttpCache.head(HttpCache.java:335)
at
org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:
400)
... 21 more

Thanks & Regards,
-Suresh

Nick Duan

View profile

More options Apr 28 2012, 9:20 pm

From: Nick Duan <jediat...@gmail.com>

Date: Sat, 28 Apr 2012 21:20:53 -0400

Local: Sat, Apr 28 2012 9:20 pm

Subject: Re: [openid4java] YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

This looks like a SSL error, not really an openid4java problem. What
JavaEE container are you using? Have you configured SSL properly?

On Thu, Apr 26, 2012 at 10:57 AM, SureshAtt <suresh.attanay...@gmail.com>wrote:

- Show quoted text -

> Hi all,

> I have an OpenID client webapp which works fine with an OpenID
> Provider server over SSL, but my app throws the $subject exception
> when I try to use Google OpenID. I have successfully installed the
> public key certificate of Google but still I get this error. I did
> some Google search and I found this issue has been there in many cases
> but I could not find a proper solution. Please help me with this,

> My environment :
> OpenID4Java 0.9.6
> Oracle Java 1.6.0_26 (64-bit)
> Ubuntu 11.10

> Apr 26, 2012 7:54:43 PM org.openid4java.server.RealmVerifier
> setEnforceRpId
> WARNING: RP discovery / realm validation disabled;
> Apr 26, 2012 7:54:43 PM org.openid4java.discovery.Discovery discover
> INFO: Starting discovery on URL identifier:
> https://profiles.google.com/suresh.attanayake
> org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport
> error: peer not authenticated
> at

> org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:
> 478)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 248)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 232)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 166)
> at org.openid4java.discovery.Discovery.discover(Discovery.java:147)
> at org.openid4java.discovery.Discovery.discover(Discovery.java:129)
> at
> org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:
> 542)
> at

> org.wso2.carbon.identity.openid.openidclient.OpenIDRelyingPartyServlet.doPo st(OpenIDRelyingPartyServlet.java:
> 148)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at

> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicatio nFilterChain.java:
> 290)
> at

> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterC hain.java:
> 206)
> at

> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.j ava:
> 233)
> at

> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.j ava:
> 191)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
> 127)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
> 102)
> at

> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.jav a:
> 109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:
> 293)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:
> 859)
> at org.apache.coyote.http11.Http11Protocol
> $Http11ConnectionHandler.process(Http11Protocol.java:602)
> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:
> 489)
> at java.lang.Thread.run(Thread.java:662)
> Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not
> authenticated
> at

> com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionI mpl.java:
> 352)
> at
> org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:
> 128)
> at

> org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.ja va:
> 339)
> at

> org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(De faultClientConnectionOperator.java:
> 123)
> at
> org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:
> 147)
> at

> org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConn Adapter.java:
> 101)
> at

> org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDi rector.java:
> 381)
> at

> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
> 641)
> at

> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
> 576)
> at

> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:
> 554)
> at org.openid4java.util.HttpCache.head(HttpCache.java:335)
> at

> org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:
> 400)
> ... 21 more

> Thanks & Regards,
> -Suresh

> --
> You received this message because you are subscribed to the Google Groups
> "OpenID4Java" group.
> To post to this group, send email to openid4java@googlegroups.com.
> To unsubscribe from this group, send email to
> openid4java+unsubscribe@googlegroups.com.
> For more options, visit this group at
> http://groups.google.com/group/openid4java?hl=en.

Acojako Chces

Apr 17, 3:55 am

From: Acojako Chces <acojakoch...@gmail.com>

Date: Wed, 17 Apr 2013 00:55:28 -0700 (PDT)

Local: Wed, Apr 17 2013 3:55 am

Subject: Re: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

How did you installed Google certificate and where? I'm confused, is it
necessary to install certificates for openid4java?

- Show quoted text -

On Thursday, April 26, 2012 4:57:21 PM UTC+2, SureshAtt wrote:

> Hi all,

> My environment :
> OpenID4Java 0.9.6
> Oracle Java 1.6.0_26 (64-bit)
> Ubuntu 11.10

> 478)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 248)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 232)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
> 166)
> at
> org.openid4java.discovery.Discovery.discover(Discovery.java:147)
> at
> org.openid4java.discovery.Discovery.discover(Discovery.java:129)
> at
> org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:
> 542)
> at
> org.wso2.carbon.identity.openid.openidclient.OpenIDRelyingPartyServlet.doPo st(OpenIDRelyingPartyServlet.java:

> 148)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicatio nFilterChain.java:

> 290)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterC hain.java:

> 206)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.j ava:

> 233)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.j ava:

> 191)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
> 127)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
> 102)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.jav a:

> 109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:
> 293)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:
> 859)
> at org.apache.coyote.http11.Http11Protocol
> $Http11ConnectionHandler.process(Http11Protocol.java:602)
> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:
> 489)
> at java.lang.Thread.run(Thread.java:662)
> Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not
> authenticated
> at
> com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionI mpl.java:

> 352)
> at
> org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:
> 128)
> at
> org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.ja va:

> 339)
> at
> org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(De faultClientConnectionOperator.java:

> 123)
> at
> org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:
> 147)
> at
> org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConn Adapter.java:

> 101)
> at
> org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDi rector.java:

> 381)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 641)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 576)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 554)
> at org.openid4java.util.HttpCache.head(HttpCache.java:335)
> at
> org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:

> 400)
> ... 21 more

> Thanks & Regards,
> -Suresh

Suresh Attanayake

Apr 17, 1:35 pm

From: Suresh Attanayake <suresh.attanay...@gmail.com>

Date: Wed, 17 Apr 2013 23:05:36 +0530

Local: Wed, Apr 17 2013 1:35 pm

Subject: Re: [openid4java] Re: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

Hi,

I installed the certificate in the keystore I used in my application.

Thanks,
-Suresh

On Wed, Apr 17, 2013 at 1:25 PM, Acojako Chces <acojakoch...@gmail.com>wrote:

- Show quoted text -

> How did you installed Google certificate and where? I'm confused, is it
> necessary to install certificates for openid4java?

> On Thursday, April 26, 2012 4:57:21 PM UTC+2, SureshAtt wrote:

>> Hi all,

>> I have an OpenID client webapp which works fine with an OpenID
>> Provider server over SSL, but my app throws the $subject exception
>> when I try to use Google OpenID. I have successfully installed the
>> public key certificate of Google but still I get this error. I did
>> some Google search and I found this issue has been there in many cases
>> but I could not find a proper solution. Please help me with this,

>> My environment :
>> OpenID4Java 0.9.6
>> Oracle Java 1.6.0_26 (64-bit)
>> Ubuntu 11.10

>> Apr 26, 2012 7:54:43 PM org.openid4java.server.**RealmVerifier
>> setEnforceRpId
>> WARNING: RP discovery / realm validation disabled;
>> Apr 26, 2012 7:54:43 PM org.openid4java.discovery.**Discovery discover
>> INFO: Starting discovery on URL identifier: https://profiles.google.com/*
>> *suresh.attanayake <https://profiles.google.com/suresh.attanayake>
>> org.openid4java.discovery.**yadis.YadisException: 0x704: I/O transport
>> error: peer not authenticated
>> at
>> org.openid4java.discovery.**yadis.YadisResolver.**retrieveXrdsLocation(**Ya disResolver.java:

>> 478)
>> at
>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>> 248)
>> at
>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>> 232)
>> at
>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>> 166)
>> at org.openid4java.discovery.**Discovery.discover(Discovery.**java:147)

>> at org.openid4java.discovery.**Discovery.discover(Discovery.**java:129)

>> at
>> org.openid4java.consumer.**ConsumerManager.discover(**ConsumerManager.java:

>> 542)
>> at
>> org.wso2.carbon.identity.**openid.openidclient.**
>> OpenIDRelyingPartyServlet.**doPost(**OpenIDRelyingPartyServlet.**java:
>> 148)
>> at javax.servlet.http.**HttpServlet.service(**HttpServlet.java:637)

>> at javax.servlet.http.**HttpServlet.service(**HttpServlet.java:717)

>> at
>> org.apache.catalina.core.**ApplicationFilterChain.**internalDoFilter(**Appl icationFilterChain.java:

>> 290)
>> at
>> org.apache.catalina.core.**ApplicationFilterChain.**doFilter(**ApplicationF ilterChain.java:

>> 206)
>> at
>> org.apache.catalina.core.**StandardWrapperValve.invoke(**StandardWrapperVal ve.java:

>> 233)
>> at
>> org.apache.catalina.core.**StandardContextValve.invoke(**StandardContextVal ve.java:

>> 191)
>> at
>> org.apache.catalina.core.**StandardHostValve.invoke(**StandardHostValve.jav a:

>> 127)
>> at
>> org.apache.catalina.valves.**ErrorReportValve.invoke(**ErrorReportValve.jav a:

>> 102)
>> at
>> org.apache.catalina.core.**StandardEngineValve.invoke(**StandardEngineValve .java:

>> 109)
>> at
>> org.apache.catalina.connector.**CoyoteAdapter.service(**CoyoteAdapter.java:

>> 293)
>> at
>> org.apache.coyote.http11.**Http11Processor.process(**Http11Processor.java:

>> 859)
>> at org.apache.coyote.http11.**Http11Protocol
>> $Http11ConnectionHandler.**process(Http11Protocol.java:**602)
>> at org.apache.tomcat.util.net.**JIoEndpoint$Worker.run(**JIoEndpoint.java:

>> 489)
>> at java.lang.Thread.run(Thread.**java:662)
>> Caused by: javax.net.ssl.**SSLPeerUnverifiedException: peer not
>> authenticated
>> at
>> com.sun.net.ssl.internal.ssl.**SSLSessionImpl.**getPeerCertificates(**SSLSe ssionImpl.java:

>> 352)
>> at
>> org.apache.http.conn.ssl.**AbstractVerifier.verify(**AbstractVerifier.java:

>> 128)
>> at
>> org.apache.http.conn.ssl.**SSLSocketFactory.**connectSocket(**SSLSocketFact ory.java:

>> 339)
>> at
>> org.apache.http.impl.conn.**DefaultClientConnectionOperato**
>> r.openConnection(**DefaultClientConnectionOperato**r.java:
>> 123)
>> at
>> org.apache.http.impl.conn.**AbstractPoolEntry.open(**AbstractPoolEntry.java :

>> 147)
>> at
>> org.apache.http.impl.conn.**AbstractPooledConnAdapter.**open(**
>> AbstractPooledConnAdapter.**java:
>> 101)
>> at
>> org.apache.http.impl.client.**DefaultRequestDirector.**execute(**DefaultReq uestDirector.java:

>> 381)
>> at
>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>> 641)
>> at
>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>> 576)
>> at
>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>> 554)
>> at org.openid4java.util.**HttpCache.head(HttpCache.java:**335)
>> at
>> org.openid4java.discovery.**yadis.YadisResolver.**retrieveXrdsLocation(**Ya disResolver.java:

>> 400)
>> ... 21 more

>> Thanks & Regards,
>> -Suresh

> To post to this group, send email to openid4java@googlegroups.com.
> Visit this group at http://groups.google.com/group/openid4java?hl=en.
> For more options, visit https://groups.google.com/groups/opt_out.

--
Suresh Attanayake

Blog : http://sureshatt.blogspot.com/
Web : http://www.ssoarcade.com/
LinkedIn : http://www.linkedin.com/pub/suresh-attanayake/16/165/181
Twitter : http://twitter.com/sureshatt
Facebook : https://www.facebook.com/IdentityWorld

ShengChe Hsiao

Apr 17, 6:42 pm

From: ShengChe Hsiao <front...@gmail.com>

Date: Thu, 18 Apr 2013 06:42:49 +0800

Local: Wed, Apr 17 2013 6:42 pm

Subject: Re: [openid4java] Re: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

Dear

Try google discovery url https://www.google.com/accounts/o8/id instead
your personal identifier

On Thu, Apr 18, 2013 at 1:35 AM, Suresh Attanayake <

- Show quoted text -

suresh.attanay...@gmail.com> wrote:
> Hi,

> I installed the certificate in the keystore I used in my application.

> Thanks,
> -Suresh

> On Wed, Apr 17, 2013 at 1:25 PM, Acojako Chces <acojakoch...@gmail.com>wrote:

>> How did you installed Google certificate and where? I'm confused, is it
>> necessary to install certificates for openid4java?

>> On Thursday, April 26, 2012 4:57:21 PM UTC+2, SureshAtt wrote:

>>> Hi all,

>>> I have an OpenID client webapp which works fine with an OpenID
>>> Provider server over SSL, but my app throws the $subject exception
>>> when I try to use Google OpenID. I have successfully installed the
>>> public key certificate of Google but still I get this error. I did
>>> some Google search and I found this issue has been there in many cases
>>> but I could not find a proper solution. Please help me with this,

>>> My environment :
>>> OpenID4Java 0.9.6
>>> Oracle Java 1.6.0_26 (64-bit)
>>> Ubuntu 11.10

>>> Apr 26, 2012 7:54:43 PM org.openid4java.server.**RealmVerifier
>>> setEnforceRpId
>>> WARNING: RP discovery / realm validation disabled;
>>> Apr 26, 2012 7:54:43 PM org.openid4java.discovery.**Discovery discover
>>> INFO: Starting discovery on URL identifier: https://profiles.google.com/
>>> **suresh.attanayake <https://profiles.google.com/suresh.attanayake>
>>> org.openid4java.discovery.**yadis.YadisException: 0x704: I/O transport
>>> error: peer not authenticated
>>> at
>>> org.openid4java.discovery.**yadis.YadisResolver.**retrieveXrdsLocation(*
>>> *YadisResolver.java:
>>> 478)
>>> at
>>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>>> 248)
>>> at
>>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>>> 232)
>>> at
>>> org.openid4java.discovery.**yadis.YadisResolver.discover(**YadisResolver.ja va:

>>> 166)
>>> at org.openid4java.discovery.**Discovery.discover(Discovery.**java:147)

>>> at org.openid4java.discovery.**Discovery.discover(Discovery.**java:129)

>>> at
>>> org.openid4java.consumer.**ConsumerManager.discover(**ConsumerManager.java:

>>> 542)
>>> at
>>> org.wso2.carbon.identity.**openid.openidclient.**
>>> OpenIDRelyingPartyServlet.**doPost(**OpenIDRelyingPartyServlet.**java:
>>> 148)
>>> at javax.servlet.http.**HttpServlet.service(**HttpServlet.java:637)

>>> at javax.servlet.http.**HttpServlet.service(**HttpServlet.java:717)

>>> at
>>> org.apache.catalina.core.**ApplicationFilterChain.**internalDoFilter(**Appl icationFilterChain.java:

>>> 290)
>>> at
>>> org.apache.catalina.core.**ApplicationFilterChain.**doFilter(**ApplicationF ilterChain.java:

>>> 206)
>>> at
>>> org.apache.catalina.core.**StandardWrapperValve.invoke(**StandardWrapperVal ve.java:

>>> 233)
>>> at
>>> org.apache.catalina.core.**StandardContextValve.invoke(**StandardContextVal ve.java:

>>> 191)
>>> at
>>> org.apache.catalina.core.**StandardHostValve.invoke(**StandardHostValve.jav a:

>>> 127)
>>> at
>>> org.apache.catalina.valves.**ErrorReportValve.invoke(**ErrorReportValve.jav a:

>>> 102)
>>> at
>>> org.apache.catalina.core.**StandardEngineValve.invoke(**StandardEngineValve .java:

>>> 109)
>>> at
>>> org.apache.catalina.connector.**CoyoteAdapter.service(**CoyoteAdapter.java:

>>> 293)
>>> at
>>> org.apache.coyote.http11.**Http11Processor.process(**Http11Processor.java:

>>> 859)
>>> at org.apache.coyote.http11.**Http11Protocol
>>> $Http11ConnectionHandler.**process(Http11Protocol.java:**602)
>>> at org.apache.tomcat.util.net.**JIoEndpoint$Worker.run(**JIoEndpoint.java:

>>> 489)
>>> at java.lang.Thread.run(Thread.**java:662)
>>> Caused by: javax.net.ssl.**SSLPeerUnverifiedException: peer not
>>> authenticated
>>> at
>>> com.sun.net.ssl.internal.ssl.**SSLSessionImpl.**getPeerCertificates(**SSLSe ssionImpl.java:

>>> 352)
>>> at
>>> org.apache.http.conn.ssl.**AbstractVerifier.verify(**AbstractVerifier.java:

>>> 128)
>>> at
>>> org.apache.http.conn.ssl.**SSLSocketFactory.**connectSocket(**SSLSocketFact ory.java:

>>> 339)
>>> at
>>> org.apache.http.impl.conn.**DefaultClientConnectionOperato**
>>> r.openConnection(**DefaultClientConnectionOperato**r.java:
>>> 123)
>>> at
>>> org.apache.http.impl.conn.**AbstractPoolEntry.open(**AbstractPoolEntry.java :

>>> 147)
>>> at
>>> org.apache.http.impl.conn.**AbstractPooledConnAdapter.**open(**
>>> AbstractPooledConnAdapter.**java:
>>> 101)
>>> at
>>> org.apache.http.impl.client.**DefaultRequestDirector.**execute(**DefaultReq uestDirector.java:

>>> 381)
>>> at
>>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>>> 641)
>>> at
>>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>>> 576)
>>> at
>>> org.apache.http.impl.client.**AbstractHttpClient.execute(**AbstractHttpClie nt.java:

>>> 554)
>>> at org.openid4java.util.**HttpCache.head(HttpCache.java:**335)
>>> at
>>> org.openid4java.discovery.**yadis.YadisResolver.**retrieveXrdsLocation(*
>>> *YadisResolver.java:
>>> 400)
>>> ... 21 more

>>> Thanks & Regards,
>>> -Suresh

>> --
>> You received this message because you are subscribed to the Google Groups
>> "OpenID4Java" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to openid4java+unsubscribe@googlegroups.com.

>> To post to this group, send email to openid4java@googlegroups.com.
>> Visit this group at http://groups.google.com/group/openid4java?hl=en.
>> For more options, visit https://groups.google.com/groups/opt_out.

> --
> Suresh Attanayake

> --
> You received this message because you are subscribed to the Google Groups
> "OpenID4Java" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to openid4java+unsubscribe@googlegroups.com.
> To post to this group, send email to openid4java@googlegroups.com.
> Visit this group at http://groups.google.com/group/openid4java?hl=en.
> For more options, visit https://groups.google.com/groups/opt_out.

--
ShengChe Hsiao

請多使用免費壓縮軟體7-ZIP
http://www.7-zip.org/zh-tw/
http://toget.pchome.com.tw/intro/utility_file/utility_file_compressio...

Shengche Hsiao

Apr 17, 10:25 pm

From: Shengche Hsiao <front...@gmail.com>

Date: Thu, 18 Apr 2013 10:25:33 +0800

Local: Wed, Apr 17 2013 10:25 pm

Subject: Re: [openid4java] Re: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

Do you export certificate chain?

On 2013/4/18 ?? 01:35, Suresh Attanayake wrote:

- Show quoted text -

> Hi,

> I installed the certificate in the keystore I used in my application.

> Thanks,
> -Suresh

> On Wed, Apr 17, 2013 at 1:25 PM, Acojako Chces <acojakoch...@gmail.com
> <mailto:acojakoch...@gmail.com>> wrote:

> How did you installed Google certificate and where? I'm confused,
> is it necessary to install certificates for openid4java?

> On Thursday, April 26, 2012 4:57:21 PM UTC+2, SureshAtt wrote:

> Hi all,

> I have an OpenID client webapp which works fine with an OpenID
> Provider server over SSL, but my app throws the $subject
> exception
> when I try to use Google OpenID. I have successfully installed
> the
> public key certificate of Google but still I get this error. I
> did
> some Google search and I found this issue has been there in
> many cases
> but I could not find a proper solution. Please help me with this,

> My environment :
> OpenID4Java 0.9.6
> Oracle Java 1.6.0_26 (64-bit)
> Ubuntu 11.10

> Apr 26, 2012 7:54:43 PM org.openid4java.server.RealmVerifier
> setEnforceRpId
> WARNING: RP discovery / realm validation disabled;
> Apr 26, 2012 7:54:43 PM org.openid4java.discovery.Discovery
> discover
> INFO: Starting discovery on URL identifier:
> https://profiles.google.com/suresh.attanayake
> org.openid4java.discovery.yadis.YadisException: 0x704: I/O
> transport
> error: peer not authenticated
> at
> org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:

> 478)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:

> 248)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:

> 232)
> at
> org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:

> 166)
> at
> org.openid4java.discovery.Discovery.discover(Discovery.java:147)
> at
> org.openid4java.discovery.Discovery.discover(Discovery.java:129)
> at
> org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:

> 542)
> at
> org.wso2.carbon.identity.openid.openidclient.OpenIDRelyingPartyServlet.doPo st(OpenIDRelyingPartyServlet.java:

> 148)
> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
> at
> javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applicatio nFilterChain.java:

> 290)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterC hain.java:

> 206)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.j ava:

> 233)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.j ava:

> 191)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:

> 127)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:

> 102)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.jav a:

> 109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:

> 293)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:

> 859)
> at org.apache.coyote.http11.Http11Protocol
> $Http11ConnectionHandler.process(Http11Protocol.java:602)
> at org.apache.tomcat.util.net
> <http://org.apache.tomcat.util.net>.JIoEndpoint$Worker.run(JIoEndpoint.java:

> 489)
> at java.lang.Thread.run(Thread.java:662)
> Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not
> authenticated
> at
> com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionI mpl.java:

> 352)
> at
> org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:

> 128)
> at
> org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.ja va:

> 339)
> at
> org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(De faultClientConnectionOperator.java:

> 123)
> at
> org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:

> 147)
> at
> org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConn Adapter.java:

> 101)
> at
> org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDi rector.java:

> 381)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 641)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 576)
> at
> org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.j ava:

> 554)
> at
> org.openid4java.util.HttpCache.head(HttpCache.java:335)
> at
> org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisRes olver.java:

> 400)
> ... 21 more

> Thanks & Regards,
> -Suresh

> --
> You received this message because you are subscribed to the Google
> Groups "OpenID4Java" group.
> To unsubscribe from this group and stop receiving emails from it,
> send an email to openid4java+unsubscribe@googlegroups.com
> <mailto:openid4java%2Bunsubscribe@googlegroups.com>.

> To post to this group, send email to openid4java@googlegroups.com
> <mailto:openid4java@googlegroups.com>.
> Visit this group at http://groups.google.com/group/openid4java?hl=en.
> For more options, visit https://groups.google.com/groups/opt_out.

> --
> Suresh Attanayake

> Blog : http://sureshatt.blogspot.com/
> Web : http://www.ssoarcade.com/
> LinkedIn : http://www.linkedin.com/pub/suresh-attanayake/16/165/181
> Twitter : http://twitter.com/sureshatt
> Facebook : https://www.facebook.com/IdentityWorld
> --
> You received this message because you are subscribed to the Google
> Groups "OpenID4Java" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to openid4java+unsubscribe@googlegroups.com.
> To post to this group, send email to openid4java@googlegroups.com.
> Visit this group at http://groups.google.com/group/openid4java?hl=en.
> For more options, visit https://groups.google.com/groups/opt_out.

----------------------------------------------------------------------->
We do this not because it is easy. We do this because it is hard.
----------------------------------------------------------------------->
ShengChe Hsiao
----------------------------------------------------------------------->
front...@gmail.com
front...@tc.edu.tw
----------------------------------------------------------------------->

rajendra

Apr 18, 4:42 am

From: rajendra <rajendraprasad.gund...@gmail.com>

Date: Thu, 18 Apr 2013 01:42:33 -0700 (PDT)

Local: Thurs, Apr 18 2013 4:42 am

Subject: Re: YadisException: 0x704: I/O transport error: peer not authenticated

Print | Individual message | Show original | Report this message | Find messages by this author

HI Suresh,

I also got same kind of error in OpenID authentication in some other
scenario.

I solved this by changing java security providers configuration order in
<JRE>\lib\security\java.security file.
Make sure that java security provider is "sun.security.provider.Sun".

Hope this helps in solving this problem.

Rajendra.

- Show quoted text -

On Thursday, April 26, 2012 8:27:21 PM UTC+5:30, SureshAtt wrote: