shibboleth-dev - RE: testing a localhost shib install......
Subject: Shibboleth Developers
List archive
- From:
- To: Scott Cantor <>,
- Subject: RE: testing a localhost shib install......
- Date: Tue, 22 Jun 2004 13:38:15 -0400
At 12:37 PM -0400 6/22/04, Scott Cantor wrote:
> the origin + target are running on the same solaris box; the browser
is running on the Mac desktop in front of me.
Ok, you can always run curl to hit the server and verify it's responding.
so I need to give curl a CA bundle holding the cert being used by apache server....
... I had pointed my httpd.conf file at the shar.key and shar.cert files included in the target distribution.....
... but, it now occurs to me, where there a different key/cert combination distributed with the origin, and should I be pointing apache at those? (I'm presuming that when the SHAR runs,and invokes curl, it passes curl a bundle of certs obtained from the trust files.....)
curl -L -o tmp http://localhost/index.htmlld.so.1: curl: fatal: libgcc_s.so.1: open failed: No such file or directory
Killed
setenv LD_LIBRARY_PATH /opt/local/shibboleth-1.2/lib:/usr/local/lib% Total % Received % Xferd Average Speed Time Curr.
curl -L -o tmp http://localhost/index.html
Dload Upload Total Current Left Speed
100 71 100 71 0 0 97 0 0:00:00 0:00:00 0:00:00 0
more tmp<html>
<head>
</head>
<body>
This is a test index page.
</body>
</html>
curl -L -o tmp https://localhost/index.htmlcurl: (60) Failed to connect to localhost IP number 1: 128
More details here: http://curl.haxx.se/docs/sslcerts.html
curl performs SSL certificate verification by default, using a "bundle"
of Certificate Authority (CA) public keys (CA certs). The default
bundle is named curl-ca-bundle.crt; you can specify an alternate file
using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
the bundle, the certificate verification probably failed due to a
problem with the certificate (it might be expired, or the name might
not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
the -k (or --insecure) option.
- RE: testing a localhost shib install......, (continued)
- RE: testing a localhost shib install......, Howard Gilbert, 06/21/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/21/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/21/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/21/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/22/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/21/2004
- RE: testing a localhost shib install......, Steven_Carmody, 06/21/2004
- RE: testing a localhost shib install......, Scott Cantor, 06/21/2004
- RE: testing a localhost shib install......, Howard Gilbert, 06/21/2004
Archive powered by MHonArc 2.6.16.