geronimo-scm mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From s..@geronimo.apache.org
Subject [Apache Geronimo Wiki] Updated: JettySSL
Date Fri, 08 Oct 2004 19:31:04 GMT
   Date: 2004-10-08T12:31:04
   Editor: TobyCabot <toby@caboteria.org>
   Wiki: Apache Geronimo Wiki
   Page: JettySSL
   URL: http://wiki.apache.org/geronimo/JettySSL

   no comment

Change Log:

------------------------------------------------------------------------------
@@ -5,17 +5,18 @@
 The first step is to set up a "keystore" that contains a digital certificate.  The server
uses this to authenticate itself to the clients.  There are some links in the Jetty SSL FAQ
below that talk about how to do this.  Geronimo expects the keystore to be in `~/.keystore`
by default (at least on unix systems).
 
 To enable SSL add this to your web app's `geronimo-jetty.xml` deployment descriptor (for
more info on `geronimo-jetty.xml` see ["Deployment"]:
-{{{
-    <gbean name="geronimo.server:type=WebConnector,container=Jetty,port=8443" class="org.apache.geronimo.jetty.connector.HTTPSConnector">
-        <attribute name="port" type="int">8443</attribute>
-        <reference name="JettyContainer">geronimo.server:type=WebContainer,container=Jetty</reference>
-    </gbean>
+ {{{
+<gbean name="geronimo.server:type=WebConnector,container=Jetty,port=8443" 
+       class="org.apache.geronimo.jetty.connector.HTTPSConnector">
+    <attribute name="port" type="int">8443</attribute>
+    <reference name="JettyContainer">geronimo.server:type=WebContainer,container=Jetty</reference>
+</gbean>
 }}}
 
 This is a cut-n-paste from `geronimo/modules/assembly/src/plan/j2ee-server-plan.xml` as suggested
by Jeremy in the link below.
 
 Geronimo will ask you for a password when it starts, and you'll see log messages like:
-{{{
+ {{{
 14:24:29,796 INFO  main [SunJsseListener] jetty.ssl.keystore=/eng/home/tcabot/.keystore
 jetty.ssl.password : password
 14:24:33,940 INFO  main [SunJsseListener] jetty.ssl.password=***********
@@ -32,6 +33,16 @@
 === Status ===
 
 At the moment the server starts, and is listening on port 8443, but it doesn't appear as
if things are all good.  For one thing, traffic over the link doesn't appear to be encrypted
since I can read it in ethereal.
+
+=== Wishlist ===
+
+It would be nice to be able to specify the keystore location and passwords in the deployment
descriptor.  At the moment it looks as if `org.apache.geronimo.jetty.connector.JettyConnector`
isn't set up to allow this:
+ {{{
+        GBeanInfoFactory infoFactory = new GBeanInfoFactory("Jetty HTTP Connector", JettyConnector.class);
+        infoFactory.addAttribute("port", int.class, true);
+        infoFactory.addReference("JettyContainer", JettyContainer.class);
+        GBEAN_INFO = infoFactory.getBeanInfo();
+}}}
 
 == References ==
 

Mime
View raw message