-
1. Re: Help needed in getting support for https in JBOSS
tefron Jun 7, 2006 9:49 AM (in response to cool_bhanu)edit:
\jboss-4.0.4.GA\server\default\deploy\jbossweb-tomcat55.sar\server.xml
uncomment the following:
<!-- SSL/TLS Connector configuration using the admin devl guide keystore -->
and then access through https://localhost:8443
good luck. -
2. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 8, 2006 8:05 AM (in response to cool_bhanu)Hi,
yes i did edit the
server.xml in tomcat.sar
and uncommented the said lines for SSL TLS connector
but even after that i dont get the page i look for
i gave https://localhost:8443 but in vain
please can you me details or steps to bring support
for https
iam struggling for long time
Please please somebody help me out
Regards
Bhanu -
3. Re: Help needed in getting support for https in JBOSS
tefron Jun 8, 2006 11:09 AM (in response to cool_bhanu)Does http://localhost:8080 works for you?
-
4. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 9, 2006 1:02 AM (in response to cool_bhanu)yes http works for me but not the https
and as mentioned earlier i have uncommented the lines but in vain.
Can you please tell any body else whom i can approach
as this issues has become like thorn in flesh for me...
please anybody
Regards
Bhanu -
5. Re: Help needed in getting support for https in JBOSS
tefron Jun 9, 2006 9:42 AM (in response to cool_bhanu)do you have the keystore file all setup correctlly?
-
6. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 9, 2006 10:14 AM (in response to cool_bhanu)Hi Tefron
Could you please let me know about this keystore stuff and anything which i need to work with this.
as i am totally unaware of this.
Thanks and Regards
Bhanu -
7. Re: Help needed in getting support for https in JBOSS
tefron Jun 9, 2006 10:26 AM (in response to cool_bhanu)See chapter 8.7 in the jboss admin manuel:
8.7 Using SSL with JBoss using JSSE
JBoss uses JSEE, the Java Secure Socket Extension (JSSE), for SSL. JSSE is bundled with JDK 1.4. To get started
Security on JBoss
JBoss Release 4 311
with JSSE you need a public key/private key pair in the form of an X509 certificate for use by the SSL server sockets.
For the purpose of this example we have created a self-signed certificate using the JDK keytool and included
the resulting keystore file in the chap8 source directory as chap8.keystore. It was created using the following
command and input:
keytool -genkey -keystore chap8.keystore -storepass rmi+ssl -keypass rmi+ssl -keyalg RSA -alias chapter
......
Make sure that your generated keystore file in the location that you specify in the server.xml and that you have the correct password that was used to generate the file.
good luck. -
8. Re: Help needed in getting support for https in JBOSS
msatyaprasanth Jun 9, 2006 4:40 PM (in response to cool_bhanu)I have a similar problem. I have set up all the certification stores properly. Because when i hit run.bat, my application runs fine.
After setting up Jboss Eclipse IDE, i started using the shortcut button with the same Jboss instance as target and somehow it is unable to find the certificate store that is sitting right there in the default configuration folder !
I wonder what went wrong ! -
9. Re: Help needed in getting support for https in JBOSS
msatyaprasanth Jun 9, 2006 5:49 PM (in response to cool_bhanu)Ok ... i got it !
The JBoss plugin is not pointing to the JDK directly. It is using JRE. So, when i placed my certificate store inside Jdk1.5/Jre1.5/lib/security folder, the plugin was unable to find it in the Jre1.5/lib/security folder !
When i placed it in the second place tooo , it worked !
basically when i installed java, it created two folders C:\Java\Jdk1.5.02 and C:\Java\Jre1.5.02, and also there was a JRE inside the JDK folder !
Bottom line, whereever in your system you find a JRE folder put your security certificate store in its security folder ;) -
10. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 11, 2006 3:36 AM (in response to cool_bhanu)Hi Satyaprasant
Could you please tell me the steps how you did
this iam totally new to this and though i was able to generate the keystore and the path was clearly metioned in server.xml but still the http://localhost:8443 doesnt work
Please can you help me
Thanks
Bhanu -
11. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 11, 2006 5:25 AM (in response to cool_bhanu)Eureka!
I finally got what i wanted
Thanks all for your help particularly
Tefron
Regards
Bhanu -
12. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 14, 2006 1:21 AM (in response to cool_bhanu)Hi all
Could anybody please tell me how to get http only for the first page and https for all other pages
for example for login page it should be only http
and once i login all the other pages should be accesible only through https
Thanks
Bhanu -
13. Re: Help needed in getting support for https in JBOSS
j2ee_junkie Jun 14, 2006 8:30 AM (in response to cool_bhanu)Bhanu,
That is what the user-data-constraint/transport-garentee elements of the web.xml are for. Set your first page to require CONFIDENTIAL user-data-constraint, and all others NONE. Then (not 100% on this) make sure not to request https:// in a link. I think once you request a secured transport, you have to explicitly request non-secured to get out. See if that helps, and let us know.
cgriffith -
14. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 16, 2006 5:32 AM (in response to cool_bhanu)HI J2ee_junkie
i followed your instruction
i made a simple struts applicatioon for login
i edited the web.xml file to include user-data-constraint and transport-guarantee but when i start the browser with http://localhost:8080/Struts4
the login page does get opened but when i submit then it goes into
https but i get this error
HTTP Status 403 - Configuration error: Cannot perform access control
without an authenticated principal
--------------------------------------------------------------------------------
type Status report
message Configuration error: Cannot perform access control without an authenticated principal
description Access to the specified resource (Configuration error: Cannot perform access control without an authenticated principal) has been forbidden.
Could you please tell me how to proceed
Thanks
Bhanu