[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: XML post using SSL and client identity certificate

From: Michelle Balzarini <MichellB@xxxxxxxxxxxxxxx>
To: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: XML post using SSL and client identity certificate
Date: Thu, 26 May 2016 18:50:36 +0000

Thank you for the Https_init.  

We still cannot connect.  We currently have TLS 1.0 until we upgrade the OS, while we are currently building 2 new systems that will be 1.1 or 1.2 to replace older systems.  The vendor we are trying to send to suggests 1.1 and above.  They also suggested trying to use curl or wget to send the inquiry.  Does the I Series use either of these or something similar? 

Michelle Balzarini
Senior Programmer/Analyst
CrossCheck, Inc.

707.665.2100, ext. 1118
707.793.5799  FAX
Michelle.Balzarini@xxxxxxxxxxxxxxx
www.cross-check.com

Notice of Confidentiality: This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information.  If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited.  If you have received this e-mail in error, please immediately notify me by e-mail (by replying to this message) or telephone (noted above) and permanently delete the original and any copy of any e-mail and any printout thereof.  Thank you for your cooperation with respect to this matter.

-----Original Message-----
From: ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx [mailto:ftpapi-bounces@xxxxxxxxxxxxxxxxxxxxxx] On Behalf Of Scott Klement
Sent: Wednesday, May 25, 2016 1:58 PM
To: HTTPAPI and FTPAPI Projects
Subject: Re: XML post using SSL and client identity certificate

Michelle,

HTTPAPI uses the SSL support in the IBM i operating system, so there is very little to set up in HTTPAPI or your program... instead, you need to configure the operating system.  This is done by using the IBM Digital Certificate Manager (DCM) -- where you can create a new application definition.  That definition should be given an identifier such as CROSSCHECK_MYAPPLICATION, and should be set up as a client-side application.  You will assign a client side certificate to it and tell it to use that certificate.  This is all done in the OS, so please refer to IBM documentation.

Once that is done, in HTTPAPI, you need to add one line of code at the start of your program like this:

https_init('CROSSCHECK_MYAPPLICATION');

Now HTTPAPI will ask the operating system to use that application definition that you made in the DCM.  The next time you do any HTTP operations (http_url_post_xml or any other operations) with a URL that starts wtih 'https://' for SSL, it will use that application definition.

-SK

On 5/24/2016 12:59 PM, Michelle Balzarini wrote:
>     I am trying to use http_url_post_xml to send an inquiry via XML from an
>     RPG program which needs to do SSL and present the client identity
>     certificate.  Does anyone have an example of a program doing this kind
>     of a XML post.
>
>
>
>     Michelle Balzarini
>
>     Senior Programmer/Analyst
>
>     CrossCheck, Inc.
>
>
>     707.665.2100, ext. 1118
>
>     707.793.5799  FAX
>
>     [1]Michelle.Balzarini@xxxxxxxxxxxxxxx
>
>     [2]www.cross-check.com
>
>
>
>     Notice of Confidentiality: This e-mail, and any attachments thereto, is
>     intended only for use by the addressee(s) named herein and may contain
>     legally privileged and/or confidential information.  If you are not the
>     intended recipient of this e-mail, you are hereby notified that any
>     dissemination, distribution or copying of this e-mail, and any
>     attachments thereto, is strictly prohibited.  If you have received this
>     e-mail in error, please immediately notify me by e-mail (by replying to
>     this message) or telephone (noted above) and permanently delete the
>     original and any copy of any e-mail and any printout thereof.  Thank
>     you for your cooperation with respect to this matter.
>
> References
>
>     1. mailto:Michelle.Balzarini@xxxxxxxxxxxxxxx
>     2. http://www.cross-check.com/
>
>
>
> ----------------------------------------------------------------------
> - This is the FTPAPI mailing list.  To unsubscribe, please go to:
> http://www.scottklement.com/mailman/listinfo/ftpapi
> ----------------------------------------------------------------------
> -
>
>
> -----
> No virus found in this message.
> Checked by AVG - www.avg.com
> Version: 2016.0.7598 / Virus Database: 4568/12295 - Release Date: 
> 05/25/16

-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

Follow-Ups:
- Re: XML post using SSL and client identity certificate
  - From: Scott Klement

References:
- XML post using SSL and client identity certificate
  - From: Michelle Balzarini
- Re: XML post using SSL and client identity certificate
  - From: Scott Klement

Prev by Date: Re: HTTPAPI Threadsafe
Next by Date: Re: XML post using SSL and client identity certificate
Previous by thread: Re: XML post using SSL and client identity certificate
Next by thread: Re: XML post using SSL and client identity certificate
Index(es):
- Date
- Thread