Configuring a SSL connection for Invoke REST API palette in TIBCO ActiveMatrix BusinessWorks Plug-in for REST and JSON.
Article ID: KB0073653
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks Plug-in for REST and JSON | - |
| Not Applicable | - |
Description
TIBCO ActiveMatrix BusinessWorks Plug-in for REST and JSON Invoke REST API activity uses Java key store for SSL connections. Java key store ships certificates signed by a well-known CA such as Verisign. If the target server uses such certificates, no additional SSL configuration is needed for Invoke REST API activity since the default Java key store already has those CA. If the server uses certificates that are not signed by a well-known CA, those certificates need to be added into the Java key store as trusted certificates.
Issue/Introduction
Resolution
If the Service Provider does not use well-known CA certificates or requires a specific certificate, perform the following steps:
1. Import the intermediate and root certificates to the TIBCO_HOME\tibcojre\version_number\lib\security\cacerts directory.
2. If the REST application requires a specific authentication other than the typical OAuth authentication, you must request a client certificate from the same CA as that for your REST application and then import the certificate to the TIBCO_HOME\tibcojre\version_number\lib\security\cacerts directory.
The value you set for BW_GLOBAL_TRUSTED_CA_STORE must be a file URL, for example, file:///c:/tibco/certs. See the information about trusted certificates in TIBCO ActiveMatrix BusinessWorksTM Process Design for details about how to store certificates to your project.
Feedback
