-
15. Re: Help needed in getting support for https in JBOSS
j2ee_junkie Jun 16, 2006 8:02 AM (in response to cool_bhanu)Bhanu,
First verify if you have SSL setup and running. That is what this thread was for.
The troubles you are most recently describing deal with configuring container managed authentication. In that case, review the server guide at http://docs.jboss.org/jbossas/jboss4guide/r4/html/, JBosssx wiki at http://wiki.jboss.org/wiki/Wiki.jsp?page=JBossSX, and this forum for detials on how to configure CMA. If you still have problems, post a new thread.
Just want to see one problem fixed at a time. Thanks, and good luck, cgriffith -
16. Re: Help needed in getting support for https in JBOSS
cool_bhanu Jun 17, 2006 6:56 AM (in response to cool_bhanu)HI j2ee_junkie
I have created sample struts application
with login page and display page when i submit
To switch from http to https
that is i should be able to access the login page
with http but when i give submit it should go into secure mode and the next page should be displayd
As per your instructions i made changes in web.xml file
to include
security-constraint>
<web-resource-collection>
<web-resource-name>Sample Application</web-resource-name>
Require users to authenticate
<url-pattern>*.do</url-pattern>
<http-method>POST</http-method>
<http-method>GET</http-method>
</web-resource-collection>
<auth-constraint>
Only allow Authenticated_users role
<role-name>TEST_ROLE_NAME</role-name>
</auth-constraint>
<user-data-constraint>
Encryption is not required for the application in general.
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
<security-role>
<role-name>TEST_ROLE_NAME</role-name>
</security-role>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>TEST_REALM_NAME</realm-name>
</login-config>
i created users.properties and roles.properties in conf directory to include appropriate parameters
now when i try to go to http://localhost:8080/Struts4
i do get the login page but when i go for submit
i get authenctication dialog asking for username and password for TEST_REALM_NAME
and when i give the correct parameters authentication happens properly
and i again go to the first page i.e the login page only differnce now is it the same login page but with https://
but the what the real requirementa of mine are
1. when i first open the login page in http://
and i submit the login credential( jsp page) and give the submit button
i should go into secure mode and should go to the next page ie it should have https in the url
2. I should not get any authentication dialog(TEST_REAL_NAME) asking for username and password ,
directly i should go to the next page when i give
the submit button .i.e there should not come any authenticaion dialog while switching from http to https
J2ee_junkie can u give me any idea regarding this
appreciate your response in this regard
Thanks
BHanu -
17. Re: Help needed in getting support for https in JBOSS
j2ee_junkie Jun 17, 2006 5:24 PM (in response to cool_bhanu)Bhanu,
As I mentioned above. Please lets just stick to the topic of this thread. That topic is getting SSL working. Have you got SSL configured and working?
Submit the other problems you have encounterd in a new thread.
I just want to make sure each problem gets fixed before we move on to others. Thanks cgriffith -
18. Re: Help needed in getting support for https in JBOSS
farooqrashed Nov 20, 2006 11:17 AM (in response to cool_bhanu)following are the step
1) create keystore
keytool -genkey -alias jboss -keyalg RSA -keystore CF.keystore
2) generate CSR request
keytool -certreq -alias jboss -keyalg RSA -file CF.csr -keystore CF.keystore
3) Get the IntermediateCA certificate pro from verisign and register as
keytool -import -alias rootca -keystore CF.keystore -trustcacerts -file intermediateCA.cer
4) then register the trial certificate CF.cer
keytool -import -alias jboss -keystore CF.keystore -trustcacerts -file CF.cer
after the execution of this command its throw following Exception
keytool error: java.lang.Exception: Failed to establish chain from reply
any one who know the solution
plz!
as soon as possible
Thanks