2 Replies Latest reply on Oct 9, 2012 5:00 AM by ybxiang.china

    Why HornetQ client does NOT support System property javax.net.ssl.trustStore/trustStorePassword?

    ybxiang.china

      Dear jboss guys,

       

      I debugged HornetQ client and found that HornetQ client read its key store information from standalone.xml/<subsystem xmlns="urn:jboss:domain:messaging:1.3">.<hornetq-server>.<connectors>.

       

       

      **********************************************************************************************************************************************************

          <subsystem xmlns="urn:jboss:domain:messaging:1.3">
              <hornetq-server>
                  <persistence-enabled>true</persistence-enabled>
                  <journal-file-size>102400</journal-file-size>
                  <journal-min-files>2</journal-min-files>
                  <connectors>
                      <netty-connector name="netty-ssl-connector" socket-binding="messaging">
      <param key="ssl-enabled" value="true"/>
      <param key="key-store-path" value="server.keystore"/>
      <param key="key-store-password" value="ybxiang_keystore_password"/>
      </netty-connector>
                      <netty-connector name="netty-throughput" socket-binding="messaging-throughput">
                          <param key="batch-delay" value="50"/>
                      </netty-connector>
                      <in-vm-connector name="in-vm" server-id="0"/>
                  </connectors>
                  <acceptors>
                      <netty-acceptor name="netty-ssl-acceptor" socket-binding="messaging">
      <param key="ssl-enabled" value="true"/>
      <param key="key-store-path" value="server.keystore"/>
      <param key="key-store-password" value="ybxiang_keystore_password"/>
      <param key="trust-store-path" value="client.truststore"/>
      <param key="trust-store-password" value="ybxiang_truststore_password"/>
      </netty-acceptor>
                      <netty-acceptor name="netty-throughput" socket-binding="messaging-throughput">
                          <param key="batch-delay" value="50"/>
                          <param key="direct-deliver" value="false"/>
                      </netty-acceptor>
                      <in-vm-acceptor name="in-vm" server-id="0"/>
                  </acceptors>

       

      **********************************************************************************************************************************************************

       

       

       

      Why HornetQ client does NOT support System property javax.net.ssl.trustStore/trustStorePassword by default just like most Clients(for example EJB client) do?

       

       

      HornetQ client Must get its key store configuration from HornetQ server.

      It's a strange design.

      I can not accept this idea.