AnsweredAssumed Answered

ESRI proxy and HTTPS

Question asked by gregbulla on Feb 2, 2016

Hey everyone -

 

We're having a problem getting ESRI's ArcGIS proxy to work with HTTPS.  We're using the Java (JSP) version on our ArcGIS Server (loaded into it's internal Tomcat) and it's working, but only w/ HTTP -- it fails with HTTPS.

 

We've loaded our proxy at the following internal URL: 

https://server-core:6443/esri-proxy/proxy.jsp?

 

One of the internal URLs we're hitting is:

https://server-core:6443/arcgis/rest/services/SampleWorldCities/MapServer?f=json&dpi=96&transparent=true&format=png8&callback=dojo.io.script.jsonp_dojoIoScript1._jsonpCallback

 

The complete call is therefore:

https://server-core:6443/esri-proxy/proxy.jsp?https://server-core:6443/arcgis/rest/services/SampleWorldCities/MapServer?f=json&dpi=96&transparent=true&format=png8&callback=dojo.io.script.jsonp_dojoIoScript1._jsonpCallback

 

The error we are seeing in the browser is:

 

"HTTP Status 500 - sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"

 

Checking online, this appears to be a certificate handoff issue where the proxy is not forwarding the certificate to the endpoint URL.

 

Also note that if we make the same call using HTTP (vs HTTPS), everything works. Unfortunately, running the app using HTTP is not an option, for the final environment is HTTPS and calling HTTP leads to mixed-content errors.

 

Any info would be appreciated..  Thank you in advance.

 

GB

Outcomes