[
https://issues.jboss.org/browse/WFLY-9917?page=com.atlassian.jira.plugin....
]
Siddhartha De edited comment on WFLY-9917 at 2/28/18 3:36 AM:
--------------------------------------------------------------
I have two certificate under same keystore and switching between them does not become
effective till reload, I have executed like below under elytron subsystem.
~~~
[standalone@localhost:9993 /] /subsystem=elytron/key-store=newKS:load()
{
"outcome" => "success",
"result" => undefined,
"response-headers" => {"process-state" =>
"reload-required"}
}
[standalone@localhost:9993 /] /subsystem=elytron/key-store=newKS:read-aliases()
{
"outcome" => "success",
"result" => [
"jboss",
"newkey"
]
}
/subsystem=elytron/key-store=newKS:write-attribute(name=alias-filter,value=newkey)
{
"outcome" => "success",
"response-headers" => {
"operation-requires-reload" => true,
"process-state" => "reload-required"
}
}
~~~
A feature of reloading ssl-context may help here.
was (Author: sidde):
I have two certificate under same keystore and switching between them does not become
effective till reload, I have executed like below under elytron subsystem.
~~~
[standalone@localhost:9993 /] /subsystem=elytron/key-store=newKS:load()
{
"outcome" => "success",
"result" => undefined,
"response-headers" => {"process-state" =>
"reload-required"}
}
[standalone@localhost:9993 /] /subsystem=elytron/key-store=newKS:read-aliases()
{
"outcome" => "success",
"result" => [
"jboss",
"newkey"
]
}
/subsystem=elytron/key-store=newKS:write-attribute(name=alias-filter,value=newkey)
{
"outcome" => "success",
"response-headers" => {
"operation-requires-reload" => true,
"process-state" => "reload-required"
}
}
~~~
renewal of server certificate for Undertow without restarting server
--------------------------------------------------------------------
Key: WFLY-9917
URL:
https://issues.jboss.org/browse/WFLY-9917
Project: WildFly
Issue Type: Feature Request
Components: Web (Undertow)
Affects Versions: 11.0.0.Final
Reporter: Hisanobu Okuda
Assignee: Stuart Douglas
It is convenient that a server certificate for https interface can be renewed without
restarting a server.
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)