Jboss 7.1.0.Final - Issue https connection.
nenetta Aug 2, 2012 9:57 AMHello.
I'll try to have an https connection. We uses Jboss 7.1.0.Final . My webapp uses SOAPClient to call one external server.
The server have a self-caertificate.
If the connection is in http, all is going.
I just saw a lot of thread in thi fantastic forum but i have more question.
I configure my standalone.xml with :
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" enable-lookups="false" secure="true">
<ssl name="ssl" key-alias="keyalias" password="XXXX" certificate-key-file="C:/pippo/Cert/client.keystore" verify-client="want" ca-certificate-file="C:/pippo/Cert/client.keystore"/>
</connector>
I just do client.keystore and client.truststore were in client.truststore i put the certificate I download from a server. In a keystore I generate a key by my self.
I also try to put in standalone.xml a system properties, but the jboss server doesn't start and give me an error that doesn't understand system-properties.
That I try, after extension :
<system-properties>
<property name="javax.net.ssl.trustStore" value="C:/pippo/Cert/client.truststore"/>
<property name="javax.net.ssl.trustStorePassword" value="XXXX" />
<property name="javax.net.ssl.trustStoreType" value="jks" />
<property name="javax.net.ssl.keyStore" value="C:/pippo/Cert/client.keystore" />
<property name="javax.net.ssl.keyStorePassword" value="XXXX" />
<property name="javax.net.ssl.keyStoreType" value="jks" />
<property name="org.jboss.security.ignoreHttpsHost" value="TRUE" />
</systemProperties>
The only way to doesn't have error is to put domain:osgi, where there are other property.
I just know it doesn't will work....I tried in different way!!!!!
But how I must to do in standalone to corretly set my truststore ?
In other way I doesn't understand why connection don't work, because no log are usefull...
Can I set something to have more log about ?
I changed also
<socket-binding name="https" port="443"/>
that were at 8443. I saw the https address is 443. It's right ?
thank you all.