July 4, 2020 at 8:14 pm #28042suresh_aParticipant
I am in the process of integrating Forgerock from my java application using OpenID Connect as service provider initiated connection
I am able to get the authorisation code from openam by sending the authorisation request
However while reading the code and trying to send request for token, I got the below error
1. Unable to find valid Certification path to requested target. I have tried to install certificate and able to proceed, but the request for token failed in my application with the following exception
2.InvalidAlgorithmparameter exception: the trust anchors parameters must be non-empty
Iam unable to get the authentication successful due to above errorJuly 4, 2020 at 8:16 pm #28043suresh_aParticipant
Looking forward for supportJuly 6, 2020 at 6:25 pm #28045Jatinder SinghParticipant
Your trust relationship is likely broken. The reason why it worked for authorization code is because
/authorizeis a front channel request and likely browser threw a certificate exception but you bypassed it by clicking “add exception” or something similar. The
/tokenis a back channel request and therefore you need to have appropriate trust relationship established for SSL to work correctly. So, my question is – are you using a self-signed certificate on the AM side? If yes, you need to add that certificate to the trust store (e.g. cacerts) of your application i.e. from where you are calling the
Hope this helps!July 7, 2020 at 3:09 am #28047Jatinder SinghParticipant
Also, I would suggest to check if the TrustStore is getting loaded i.e path to trust store, password, etc.
You must be logged in to reply to this topic.