[
https://issues.jboss.org/browse/AS7-1680?page=com.atlassian.jira.plugin.s...
]
Tomaz Cerar updated AS7-1680:
-----------------------------
Git Pull Request:
https://github.com/jbossas/jboss-as/pull/591
My fix enables configuring custom truststore, seperate password for truststore and
provides option for defining key/trust store type that can be pksc12 or jks
example of configuration:
{noformat}
<ssl password="changeit" key-alias="tomcat"
certificate-key-file="/path/to/keystore.p12"
verify-client="true"
ca-certificate-file="/path/to/truststore.jks"
ca-certificate-password="changeit"
keystore-type="PKCS12" truststore-type="JKS"
/>
{noformat}
HTTP connector using JSSE ignores custom truststore file
--------------------------------------------------------
Key: AS7-1680
URL:
https://issues.jboss.org/browse/AS7-1680
Project: Application Server 7
Issue Type: Feature Request
Components: Web
Affects Versions: 7.0.1.Final
Reporter: Fabrizio Benedetti
Assignee: Tomaz Cerar
Priority: Minor
Original Estimate: 30 minutes
Remaining Estimate: 30 minutes
HTTP connector with JSSE configuration and client authentication set to "true"
or "want" ignores the attribute "ca-certificate-file" and loads the
CAs only from standard JAVA truststore ($JAVA_HOME/jre/lib/security/cacerts).
Class org.jboss.as.web.WebConnectorService in the section JSSE configuration (row 185)
does not set the correct attribute "truststoreFile" in the connector protocol
handler.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see:
http://www.atlassian.com/software/jira