Coldfusion cfhttp with HTTPS not working although all certificates installed
I know this question has been asked a lot already, but although I've been searching for days now I didn't find a suitable answer.
We are running Coldfusion 9 Standard with JDK 1.7. I'm trying to perform a request with cfhttp, following code:
<cfhttp url="Https://subdomain.example.com" method="get" result="result" username="#myUsername#" password="#myPassword#" />
I get the following when dumping out the result:
[![1]](https://i.sstatic.net/CqDs9.png)
I already imported all certificates in the certificate chain to the right keystore. The CA is Let's Encrypt. Funny thing is, we have another site from which we are asking a webservice, also with certificate from Let's Encrypt and it is working. Accessed from the same Coldfusion server.
I also tried following code in onApplicationStart in Application.cfc, but didn't work:
<cfif NOT isDefined("Application.sslfix")>
<cfset objSecurity = createObject("java", "java.security.Security") />
<cfset objSecurity.removeProvider("JsafeJCE") />
<cfset Application.sslfix = true />
</cfif>
I simply had to add port="443" to the cfhttp tag, which made the following code works just fine:
<cfhttp port="443" url="Https://subdomain.example.com"
method="get"
result="result"
username="#myUsername#"
password="#myPassword#" />
I'm crying because I didn't try that earlier. Strange thing is that with the other request I don't have to specify the port and it works fine.
I also removed the setting below from the JVM Settings. It didn't have any effect on my problem.
-Dhttps.protocols=TLSv1.1,TLSv1.2
- meta tags not showing up in fb-messenger&discord ect... -> when using https
- nodejs: listen EACCES: permission denied 0.0.0.0:80
- How do I disable the security certificate check in Python requests
- javax.net.ssl.SSLException: Certificate for <> doesn't match any of the subject alternative names: []
- how to monitor the network on node.js similar to chrome/firefox developer tools?
- Django redirecting http -> https
- GitHub authentication failing over https, returning wrong email address
- Problem with loading jpg images in NextJS with NGINX over HTTPS
- POST call using https.request returns 408
- Your connection is not private NET::ERR_CERT_COMMON_NAME_INVALID
- UEFI Application: Unable to fetch the body of Http GET request
- How do I generate the correct TOTP with Node with correct Headers and SHA512 hashed Token?
- SSL handshake failure in Java Agent (in HCL Notes 14)
- Debugging HTTP traffic originating from npm install using Fiddler
- Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
- Experimental HTTPS in Next.JS doesn't work if I run dev from a external HD
- How to configure Pentaho Carte to accept HTTPS request instead of HTTP
- SSL and aiohttp: disable SSL verification do not work on python 3.12
- How to setup local environment to run on https
- Configuring HTTPS for Express and Nginx
- Strict-Transport-Security max-age not updating to 31536000 in ASP.NET Core application
- How do I make my JavaScript know the index number of the post I want to delete?
- How to change http/https Protocol while using relative URL
- Certificate error invoking gRPC service with HTTPS under .Net 5: UntrustedRoot
- How can I use HTTPS / SSL with Kestrel in ASP.NET Core 2.x?
- docker pull tries to talk http to registry that only understands https
- Using the 'integrity' attribute for script tags while avoiding CORS errors over the file-uri protocol
- How to correctly force SSL on WordPress via wp-config.php?
- Why do I get "The account does not have permission to access this resource" error when logging in to Bitbucket Cloud from XCode?
- Is it safe to use multiple listeners (HTTP and HTTPS) for a server with the default ServeMux in Go?