Forum Discussion

Visitor

10 years ago

able to get response from Webservice without configuring client certificates in SOAPUI

hi, We have implemented One way SSL for Webservices. configured .jks file in keystore of soapui and tested the https webservice and it is working as expected. now need to check scenario witho...

rupert_anderson

Valued Contributor

10 years ago

Hi,

For 1-way SSL (no client cert), SoapUI always trusts the server cert - Last time I looked SoapUI has a custom SSLSocketFactory (SoapUISSLSocketFactory) written to override the checkServerTrusted methods to do nothing.

I guess this is for reasons of convenience, since an API testing tool may have to consume many APIs over SSL/TLS without needing to test whether their certificate is trusted.

Regards,

Rupert

Forum Discussion

able to get response from Webservice without configuring client certificates in SOAPUI

Recent Discussions

Signature\Encryption tags missing in Security Header

CVE-2024-7565 and CVE-2017-16670 vulnabilities

Vulnerabilities found in SoapUI 5.9.1

Related Content

[Solved] SSL Handshake exception calling a secure webservice

testcomplete certification

MSTest Configuration