1. connect2id Avatar connect2id
  2. Crypto
  3. Nimbus-JOSE-JWT
  4. Issues

unable to find valid certification path to requested target

Issue #277 invalid
Pasu created an issue

I'm trying to utilize public ket from https://www.gstatic.com/iap/verify/public_key-jwk

Code: 

JWKSet jwkSet = JWKSet.load(new URL("https://www.gstatic.com/iap/verify/public_key-jwk"));

It's throwing javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

How do we ignore SSL verification

Comments (2)

  2. Vladimir Dzhuvinov

    This exception means that the default JVM trust store doesn't have a root certificate for the CA that issued the certificate for the gstatic.com domain.

    My suggestion is to go and find it, and then import it into the JVM trust store.

    My browser (Firefox) recognises the CA, but I've found that the default JVM trust store supports fewer CAs.

  3. Log in to comment
Assignee
Type
bug
Priority
major
Status
invalid
Component
JWT
Milestone
Votes
0
Watchers
1
Jira: the preferred issue tracker for Bitbucket. Join the team!