[arquillian-issues] [JBoss JIRA] (ARQ-1370) Warp: support SSL for CommandService using untrusted communication
Oliver Bock (JIRA)
jira-events at lists.jboss.org
Fri Apr 5 15:55:41 EDT 2013
[ https://issues.jboss.org/browse/ARQ-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12765344#comment-12765344 ]
Oliver Bock edited comment on ARQ-1370 at 4/5/13 3:54 PM:
----------------------------------------------------------
Some setup hints for testing with JBoss AS 7...
# Create a self-signed certificate by creating a local keystore following the [JBossWeb SSL Configuration HOW-TO|http://docs.jboss.org/jbossweb/7.0.x/ssl-howto.html] ("Prepare the Certificate Keystore")
{noformat}
keytool -genkey -alias tomcat -keyalg RSA
{noformat}
# Enable socket binding for HTTPS ({{standalone.xml}} at {{socket-binding-group[@name="standard-sockets"]}}):
{noformat}
<socket-binding name="https" port="8889"/>
{noformat}
# Redirect HTTP to HTTPS (standalone.xml / web subsystem):
{noformat}
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http" redirect-port="8889"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl password="[your_keystore_password_here]" session-timeout="900"/>
</connector>
{noformat}
# Enable SSL for your web app ([web.xml|http://docs.oracle.com/javaee/6/tutorial/doc/gkbaa.html#bncbm]):
{noformat}
<security-constraint>
<web-resource-collection>
<web-resource-name>secure</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
{noformat}
HTH
was (Author: brevilo):
Some setup hints for testing with JBoss AS 7...
# Create a self-signed certificate by creating a local keystore following the [JBossWeb SSL Configuration HOW-TO|http://docs.jboss.org/jbossweb/7.0.x/ssl-howto.html] ("Prepare the Certificate Keystore")
{noformat}
keytool -genkey -alias tomcat -keyalg RSA
{noformat}
# Enable socket binding for HTTPS (standalone.xml / socket-binding-group "standard-sockets"):
{noformat}
<socket-binding name="https" port="8889"/>
{noformat}
# Redirect HTTP to HTTPS (standalone.xml / web subsystem):
{noformat}
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http" redirect-port="8889"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl password="[your_keystore_password_here]" session-timeout="900"/>
</connector>
{noformat}
# Enable SSL for your web app ([web.xml|http://docs.oracle.com/javaee/6/tutorial/doc/gkbaa.html#bncbm]):
{noformat}
<security-constraint>
<web-resource-collection>
<web-resource-name>secure</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
{noformat}
HTH
> Warp: support SSL for CommandService using untrusted communication
> ------------------------------------------------------------------
>
> Key: ARQ-1370
> URL: https://issues.jboss.org/browse/ARQ-1370
> Project: Arquillian
> Issue Type: Enhancement
> Security Level: Public(Everyone can see)
> Components: Extension - Warp
> Affects Versions: warp_1.0.0.Alpha3
> Reporter: Lukáš Fryč
>
> We can make use of HTTP client which will automatically trust SSL endpoint.
> http://stackoverflow.com/questions/2703161/how-to-ignore-ssl-certificate-errors-in-apache-httpclient-4-0
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the arquillian-issues
mailing list