[jboss-user] [Installation, Configuration & DEPLOYMENT] - SSL issue on JBoss 5
venuwin
do-not-reply at jboss.com
Mon Dec 29 00:36:23 EST 2008
Hi,
I have been using Jboss 4.0.5 for about 2 years.
Now we would like to give it a try with JBoss 5.
The same configuration in server.xml of JBoss 4.0.5 fails to work with Jboss 5.
This is the error when i try to load a HTTPS URL :
In the browser's address bar i can see :
https://192.168.157.18:8443/shops/myapp/secure?cmd=loginOption&cat=__createAcc
Access Denied (connect_method_denied)
Your request attempted a CONNECT to a port "8443" that is not permitted by default.
This is typically caused by an HTTPS URL that uses a port other then the default of 443.
For assistance, contact your network support team.
My JBoss 4.0.5 server.xml snippets :
<!-- A HTTP/1.1 Connector on port 8080 -->
| <Connector port="80" address="${jboss.bind.address}"
| maxThreads="250" strategy="ms" maxHttpHeaderSize="8192"
| emptySessionPath="true"
| enableLookups="false" redirectPort="443" acceptCount="100"
| connectionTimeout="20000" disableUploadTimeout="true"/>
|
| <!-- Add this option to the connector to avoid problems with
| .NET clients that don't implement HTTP/1.1 correctly
| restrictedUserAgents="^.*MS Web Services Client Protocol 1.1.4322.*$"
| -->
|
| <!-- A AJP 1.3 Connector on port 8009 -->
| <Connector port="8009" address="${jboss.bind.address}"
| emptySessionPath="true" enableLookups="false" redirectPort="8443"
| protocol="AJP/1.3"/>
|
| <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
| <Connector port="443" address="${jboss.bind.address}"
| maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
| emptySessionPath="true"
| scheme="https" secure="true" clientAuth="false"
| keystoreFile="E:/serverkey.jks"
| keystorePass="changeit" sslProtocol = "TLS" />
|
Server.xml snippet from Jboss 5 :
<!-- A HTTP/1.1 Connector on port 8080 -->
| <!-- A HTTP/1.1 Connector on port 8080 -->
| <Connector port="80" address="${jboss.bind.address}"
| maxThreads="250" strategy="ms" maxHttpHeaderSize="8192"
| emptySessionPath="true"
| enableLookups="false" redirectPort="443" acceptCount="100"
| connectionTimeout="20000" disableUploadTimeout="true"/>
|
| <!-- Add this option to the connector to avoid problems with
| .NET clients that don't implement HTTP/1.1 correctly
| restrictedUserAgents="^.*MS Web Services Client Protocol 1.1.4322.*$"
| -->
|
| <!-- A AJP 1.3 Connector on port 8009 -->
| <Connector port="8009" address="${jboss.bind.address}"
| emptySessionPath="true" enableLookups="false" redirectPort="8443"
| protocol="AJP/1.3"/>
|
| <!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
| <Connector port="443" address="${jboss.bind.address}"
| maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
| emptySessionPath="true"
| scheme="https" secure="true" clientAuth="false"
| keystoreFile="E:/serverkey.jks"
| keystorePass="changeit" sslProtocol = "TLS" />
|
Any help would be appreciated. Is there any difference between version 4.0.5 and 5 with respect to configuration ?
And one more thing: When i remove the port number 8443 from the URL, it lands in the correct page. This fails only if i come from a non HTTPS URL.
Thanks
Venu
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4198679#4198679
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4198679
More information about the jboss-user
mailing list