usage of SSL management facilities of WebSphere by EDT

Question

Hi there,

we are thinking of using edtFTPj/PRO as client library for programmatically executing secure ftp functions to external parties. The core code is running within WebSphere (which provides - as part of java - TLS support for HTTP etc.), and we will therefore take advantage of the SSL management facilities of WebSphere to manage keystores, configs and certificates.

Without having delved too much into edt docu, I am interested in getting some pointers how the interface between edtFTPj/PRO and externalized SSL facilities could be implemented (ideally a little bit more sophisticated than accessing cacerts directly).

let me know if I am on the wrong path here.

nick

Answer 1

As far as I can tell Websphere ends up storing certificates in keystores. edtFTPj/PRO supports the use of keystores, so I would suppose you would use Websphere tools to obtain the FTP server's certificate, and then load it into a keystore. It would then be accessible to edtFTPj/PRO.

edtFTPj/PRO also supports the use of callbacks when a certificate is received from the server, so that user code can be executed. There may be a way to hook into the signer exchange prompt mechanism from this callback.

There's an article on this stuff at http://www.ibm.com/developerworks/websp ... _birk.html.

Hopefully this will give you some ideas anyway ...