Skip to main content
Contact a Moderator

Question

6
Replies
398
Views
 Ankur Das (@nkur.das_GCS) PEGA Principal Software Solutions Engineer
Pegasystems Inc.
US
@nkur.das_GCS Member since 2010 5 posts
PEGA
Posted: July 7, 2016
Last activity: October 4, 2018
Posted: 7 Jul 2016 21:38 EDT
Last activity: 4 Oct 2018 13:54 EDT
Closed
Solved

How to override the pyInvokeRestConnector activity to change SSL Protocol version in PRPC v7.1.7

Report

How to override the pyInvokeRestConnector activity to change SSL Protocol version in PRPC v7.1.7?


**Moderation Team has archived post**


This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.

Data Integration Support Case Exists
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.
Posted: 6 years ago
Posted: 7 Jul 2016 21:46 EDT
Abhijith Kolanakuduru (Abhijith_CLSA_v62) IP Australia Pega Certified Lead System Architect
IP Australia
AU

Hi Ankur,

I wouldn't suggest overrding invoke activities [You may lose future updates coming to this activity]. Please raise an SR with Pega to check your options. 

If that's a parameter, you can set it to a value you want before calling "Connect-REST" method.
Posted: 6 years ago
Posted: 8 Jul 2016 0:03 EDT
Vidyaranjan AV (Vidyaranjan) MOD Senior Online Community Moderator
Pegasystems Inc.
IN

Hi Ankur Das

As the next plan of action, if you go ahead and raise an SR with GCS , I request you to share the SR number here, so that we can track it for you within the thread.
 
Thanks,
Vidyaranjan A V  | Community Moderator  |  Pegasystems Inc.

Accepted Solution

Posted: 6 years ago
Posted: 11 Jul 2016 19:40 EDT
Ankur Das (@nkur.das_GCS) PEGA Principal Software Solutions Engineer
Pegasystems Inc.
US

Thank you Abhijit and Vidyaranjan,

This issue or question has been addressed as below - 

  1. Save the “pyInvokeRESTConnector” rule under Pega-IntergrationEngine:07-10-15 ruleset to your own application ruleset.
  2. Modify the Step4 (Initialize HTTP Client and handle authentication) Java code as below to modify the protocol version from “SSL” to “TLSv1.2” as highlighted below –

 

if (serviceURL.toLowerCase().startsWith("https"))

     {

           com.pega.apache.http.conn.ssl.SSLSocketFactory sf = null;

 

           // HFix-9721 START

 

           String truststoreName = stepPage.getString("pyTruststoreName");

           String keystoreName = stepPage.getString("pyKeystoreName");

          

 

           // Create a new SSLContext that merges custom PRPC keystore/truststore with default JDK ones

           javax.net.ssl.SSLContext sslContext = tools.getServiceUtils().getSSLContext(keystoreName, truststoreName, protocol);

           sf = new com.pega.apache.http.conn.ssl.SSLSocketFactory(sslContext);

 

  1. Save the rule and test your Connect-REST.
Posted: 6 years ago
Posted: 11 Jul 2016 21:52 EDT
Joel McLeish (JoelMcLeish) PEGA Senior Director, Service Assurance
Pegasystems Inc.
AU

As you say,

modify the pyInvokeRESTConnector activity to not use "SSL" I use the following snippet:

String protocol = myStepPage.getString("pySSLProtocolVersion");
        if(protocol==null) {
               protocol = "SSL";
        }

 

This requires specialising Rule-Connect-REST.RuleFormLayout to include section Rule-Connect-.pzSSLConfiguration, it however gives you the ability to define the protocol on a connector by connector basis.

 
Posted: 4 years ago
Posted: 8 Jan 2018 6:49 EST
Mandar Kulkarni (MandarK7478) Schwab
Schwab
IN

How to fix this for 7.1.6 PEGA version?

if we try to use above code, its giving error as below:

The method getSSLContext(String, String, String) is undefined for the type ServiceUtils
 

any quick workaround for this?

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice