[jboss-jira] [JBoss JIRA] Commented: (AS7-1680) HTTP connector using JSSE ignores custom truststore file
Fabrizio Benedetti (JIRA)
jira-events at lists.jboss.org
Tue Aug 30 10:04:26 EDT 2011
[ https://issues.jboss.org/browse/AS7-1680?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12625115#comment-12625115 ]
Fabrizio Benedetti commented on AS7-1680:
-----------------------------------------
Ok, but the ssl system properties are considered from java also for http client side connection. Keeping the two configurations distincts (client side and server side) can be usefull in many scenarios. Jboss 6.x connector gives priority to "truststoreFile" (in server.xml) and then to javax.net.ssl.trustStore.
> HTTP connector using JSSE ignores custom truststore file
> --------------------------------------------------------
>
> Key: AS7-1680
> URL: https://issues.jboss.org/browse/AS7-1680
> Project: Application Server 7
> Issue Type: Bug
> Components: Web
> Affects Versions: 7.0.1.Final
> Reporter: Fabrizio Benedetti
> Assignee: Remy Maucherat
> Fix For: 7.0.2.Final
>
> Original Estimate: 30 minutes
> Remaining Estimate: 30 minutes
>
> HTTP connector with JSSE configuration and client authentication set to "true" or "want" ignores the attribute "ca-certificate-file" and loads the CAs only from standard JAVA truststore ($JAVA_HOME/jre/lib/security/cacerts).
> Class org.jboss.as.web.WebConnectorService in the section JSSE configuration (row 185) does not set the correct attribute "truststoreFile" in the connector protocol handler.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list