(keitai-l) Re: SSL for P503i in JSP

From: Zev Blut <zev_at_atc.yamatake.co.jp>
Date: 11/13/01
Message-ID: <011401c16c29$cc043010$da1414ac@taishakurhq> 
Hello,

Your F503i is responding correctly for the case where the server's
certificate is
not authorized from one of the phones embedded Certificate Authorities.
Therefore, yes that is acting properly.

So on to the problem,

What JSP engine are you using? Tomcat, WebSphere, etc ??
I ask because it  could be an issue with JSP engine.

I kind of wonder how simple of a JSP case you have...
Try something like this make a file called test.jsp with
the following code:

<html>
<head>
<title>Test</title>
</head>
<body>
<% String hello = "Hello"; %>
This is a test:
<%= hello %>
</body>
</html>

Or if you want to be a bit more fancy get the hello string from a parameter
instead.
<% String hello = request.getParameter("hello"); %>

Then make a request to it like such
https://server/test.jsp?hello=SSLFUN

Either one of these should work...

With JSP you really should not be worrying about setting the content length.
Your engine should handle that for you, because how would you handle the
above
example when we use the hello variable from a parameter in a request that
can
vary in its' length?
You can, but it becomes ugly and then something better done in a Servlet
proper,
instead of a JSP page.  Plus you would then have to include the length of
the HTML
tags in your content-length response and that is no fun.


Hope that helps,
Zev

----- Original Message -----
From: "Cheng Peter" <peteinjp@hotmail.com>
To: <keitai-l@appelsiini.net>
Cc: <zev@atc.yamatake.co.jp>
Sent: Tuesday, November 13, 2001 3:03 PM
Subject: (keitai-l) Re: SSL for P503i in JSP


>
> Hi,
>
> Thanks for the reply.
>
> Yeah, we haven't still figured it out, and will greatly appreciate your
> further help.
>
> I am not quite sure about your question, but guess my answer is "we are
> using apache with SSL to then talk to JSP engine".
>
> We are testing with an extremely simple test JSP case.
>
> Although we tested only with F503 and P503, we are aware that they
responde
> a bit differently.
>
> F503 displays a handshake message asking whether I want to use SSL.
>
> In a belief that F503 responds this way for the same reason that P503 does
> not work, at this point we are only focusing on P503.
>
> Regarding redirects, we do not use redirects (if you meant redirects by
> something like meta tag redirects in HTML or JSP codes).
>
> So redirects can't be the cause of the problem.
>
> If you are not having any problem with SSL + JSP, could you show me how
you
> indicate a content_length in a JSP file?
>
> We are hopelessly digging into it with various methods like one below.
> Actually, 5120 is the variable number we have to figure out as you can
see.
>
> CharArrayWriter caw = new CharArrayWriter(5120);
> response.setContentLength(caw.toString().getBytes
>              (response.getCharacterEncoding()).length);
>
> We use JSDK2.0 by the way.
>
> Thanks a lot.   -Pete
>
>


[ Need archives? How to unsubscribe? http://www.appelsiini.net/keitai-l/ ]
Received on Tue Nov 13 12:02:47 2001