[jboss-jira] [JBoss JIRA] (AS7-1680) HTTP connector using JSSE ignores custom truststore file
Tomaz Cerar (Updated) (JIRA)
jira-events at lists.jboss.org
Tue Nov 8 06:04:45 EST 2011
[ https://issues.jboss.org/browse/AS7-1680?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Tomaz Cerar updated AS7-1680:
-----------------------------
Git Pull Request: https://github.com/jbossas/jboss-as/pull/591
My fix enables configuring custom truststore, seperate password for truststore and provides option for defining key/trust store type that can be pksc12 or jks
example of configuration:
{noformat}
<ssl password="changeit" key-alias="tomcat"
certificate-key-file="/path/to/keystore.p12"
verify-client="true"
ca-certificate-file="/path/to/truststore.jks"
ca-certificate-password="changeit"
keystore-type="PKCS12" truststore-type="JKS" />
{noformat}
> HTTP connector using JSSE ignores custom truststore file
> --------------------------------------------------------
>
> Key: AS7-1680
> URL: https://issues.jboss.org/browse/AS7-1680
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Web
> Affects Versions: 7.0.1.Final
> Reporter: Fabrizio Benedetti
> Assignee: Tomaz Cerar
> Priority: Minor
> Original Estimate: 30 minutes
> Remaining Estimate: 30 minutes
>
> HTTP connector with JSSE configuration and client authentication set to "true" or "want" ignores the attribute "ca-certificate-file" and loads the CAs only from standard JAVA truststore ($JAVA_HOME/jre/lib/security/cacerts).
> Class org.jboss.as.web.WebConnectorService in the section JSSE configuration (row 185) does not set the correct attribute "truststoreFile" in the connector protocol handler.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list