I am getting a SSL handshake failed error on my skill app. It is using a SSL from starfield and is writtin in PHP so i am not entirely sure what the check java keystore description means. It tests well using the service emulator. any help would be appreciated. TIA J
After a bit of reading of other threads on here, it appears Alexa does not support SSL SNI (several domains sharing the same ip address with different certificates), even when testing. I find that very odd sense she will support a self signed certificate. Go figure !
It's probably less about an explicit choice to not support SNI and more about the fact that SNI is a relatively new standard in the overall SSL/TLS suite of protocols/standars than self-signed certificate. One would have to be on a recent version of whatever app platform you use to get the support and for whatever reason Alexa service isn't. -- Stefan
And that is in fact the case. While looking through our skill's logs, I noticed that the UserAgent string from the Alexa service is "Apache-HttpClient/4.3 (java 1.5)" which presumably uses JDK 1.5. SNI was added to the JDK in 1.7.