And question #3 - are you setting the QIBM_RPG_JAVA_PROPERTIES in your RPG program? This implies that you may have to do that before you start the RPG program. https://groups.google.com/g/comp.sys.ibm.as400.misc/c/9iiIjEA0EZg?pli=1


On Fri, 2021-09-10 at 18:30 +0000, Kevin Bucknum wrote:
I don't have anything using java from rpg anymore, but couple of questions. Does this always run as one user? Do you have other stuff running that invokes a JVM? The reason I ask, is you may can use the system.properties file to do some of this.

On Fri, 2021-09-10 at 13:37 +0000, Blake Butterworth wrote:
[You don't often get email from bbutterworth@xxxxxxxxxxxxxx<mailto:bbutterworth@xxxxxxxxxxxxxx><mailto:bbutterworth@xxxxxxxxxxxxxx<mailto:bbutterworth@xxxxxxxxxxxxxx>>. Learn why this is important at http://aka.ms/LearnAboutSenderIdentification.]

Hello All,

We have an RPG application that uses a Java class to perform HTTPS REST requests to an external web API. The connectivity between the systems broke recently (probably due to an update applied on the other side). We’ve determined the problem is that the process needs to establish a TLS 1.2-level connection since by default the Java environment appears to use an older, now unsupported version of TLS. We found a way to enable the Java code to establish a TLS 1.2 connection with the following property:

-Dcom.ibm.jsse2.overrideDefaultTLS=true

When we run a Java test app within QSH from the command line, it causes the Java code to negotiate a connection using TLS 1.2, which fixes our problem.

Java -Dcom.ibm.jsse2.overrideDefaultTLS=true <class>

When we put the property into the RPG program using the QIBM_RPG_JAVA_PROPERTIES environment variable, it fails. The JVM has an error on startup. We tried using ADDENVVAR and then the command line invocation without the property, which doesn’t work either. Lastly, we tried putting the property in a SystemDefault.properties file. It seems the system sees the property, but the JVM fails on startup.

Has anyone else run into something like this? Is there a better/alternate way to configure Java to use TLS 1.2? We are currently running Java 8 on IBM i 7.2. Sorry, this is kind of a cross-over question. I can post it to the RPG side, if need be.

Thanks,
Blake Butterworth

Application Development Manager

Kansas Turnpike Authority
--
This is the Java Programming on and around the IBM i (JAVA400-L) mailing list
To post a message email: JAVA400-L@xxxxxxxxxxxxxxxxxx<mailto:JAVA400-L@xxxxxxxxxxxxxxxxxx><mailto:JAVA400-L@xxxxxxxxxxxxxxxxxx<mailto:JAVA400-L@xxxxxxxxxxxxxxxxxx>>
To subscribe, unsubscribe, or change list options,
visit: https://lists.midrange.com/mailman/listinfo/java400-l
or email: JAVA400-L-request@xxxxxxxxxxxxxxxxxx<mailto:JAVA400-L-request@xxxxxxxxxxxxxxxxxx><mailto:JAVA400-L-request@xxxxxxxxxxxxxxxxxx<mailto:JAVA400-L-request@xxxxxxxxxxxxxxxxxx>>
Before posting, please take a moment to review the archives
at https://archive.midrange.com/java400-l.

Help support midrange.com by shopping at amazon.com with our affiliate
link: https://amazon.midrange.com




[https://www.medtronsoftware.com/img/MedtronMinilogo.bmp] Kevin Bucknum
Senior Programmer Analyst
MEDDATA / MEDTRON
120 Innwood Drive
Covington LA 70433
Local: 985-893-2550
Toll Free: 877-893-2550
https://www.medtronsoftware.com



CONFIDENTIALITY NOTICE

This document and any accompanying this email transmission contain confidential information, belonging to the sender that is legally privileged. This information is intended only for the use of the individual or entity named above. The authorized recipient of this information is prohibited from disclosing this information to any other party and is required to destroy the information after its stated need has been fulfilled. If you are not the intended recipient, or the employee of agent responsible to deliver it to the intended recipient, you are hereby notified that any disclosure, copying, distribution or action taken in reliance on the contents of these documents is STRICTLY PROHIBITED. If you have received this email in error, please notify the sender immediately to arrange for return or destruction of these documents.




[https://www.medtronsoftware.com/img/MedtronMinilogo.bmp] Kevin Bucknum
Senior Programmer Analyst
MEDDATA / MEDTRON
120 Innwood Drive
Covington LA 70433
Local: 985-893-2550
Toll Free: 877-893-2550
https://www.medtronsoftware.com



CONFIDENTIALITY NOTICE

This document and any accompanying this email transmission contain confidential information, belonging to the sender that is legally privileged. This information is intended only for the use of the individual or entity named above. The authorized recipient of this information is prohibited from disclosing this information to any other party and is required to destroy the information after its stated need has been fulfilled. If you are not the intended recipient, or the employee of agent responsible to deliver it to the intended recipient, you are hereby notified that any disclosure, copying, distribution or action taken in reliance on the contents of these documents is STRICTLY PROHIBITED. If you have received this email in error, please notify the sender immediately to arrange for return or destruction of these documents.

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2021 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.