Hi all,
I have an OpenID client webapp which works fine with an OpenID
Provider server over SSL, but my app throws the $subject exception
when I try to use Google OpenID. I have successfully installed the
public key certificate of Google but still I get this error. I did
some Google search and I found this issue has been there in many cases
but I could not find a proper solution. Please help me with this,
My environment :
OpenID4Java 0.9.6
Oracle Java 1.6.0_26 (64-bit)
Ubuntu 11.10
Apr 26, 2012 7:54:43 PM org.openid4java.server.RealmVerifier
setEnforceRpId
WARNING: RP discovery / realm validation disabled;
Apr 26, 2012 7:54:43 PM org.openid4java.discovery.Discovery discover
INFO: Starting discovery on URL identifier:
https://profiles.google.com/suresh.attanayake
org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport
error: peer not authenticated
at
org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisResolver.java:
478)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
248)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
232)
at
org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:
166)
at org.openid4java.discovery.Discovery.discover(Discovery.java:147)
at org.openid4java.discovery.Discovery.discover(Discovery.java:129)
at
org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:
542)
at
org.wso2.carbon.identity.openid.openidclient.OpenIDRelyingPartyServlet.doPost(OpenIDRelyingPartyServlet.java:
148)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:
290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:
206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:
233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:
191)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:
127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:
102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:
109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:
293)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:
859)
at org.apache.coyote.http11.Http11Protocol
$Http11ConnectionHandler.process(Http11Protocol.java:602)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:
489)
at java.lang.Thread.run(Thread.java:662)
Caused by: javax.net.ssl.SSLPeerUnverifiedException: peer not
authenticated
at
com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:
352)
at
org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:
128)
at
org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:
339)
at
org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:
123)
at
org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:
147)
at
org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java:
101)
at
org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:
381)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:
641)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:
576)
at
org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:
554)
at org.openid4java.util.HttpCache.head(HttpCache.java:335)
at
org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisResolver.java:
400)
... 21 more
Thanks & Regards,
-Suresh