How to configure WildFly HTTPS with security-domain

yashendrac Jan 11, 2017 6:35 PM

Hi,

It was possible configure security domain with JBoss 5 https connector in sever.xml

As follows:

<Connector port="8443" address="${jboss.bind.address}" SSLEnabled="true"

scheme="https" secure="true" clientAuth="false".............

securityDomain="java:/jaas/random-password"/>

But in WildFly 10 I cannot configure security-domain with the ssl, I need to hardcode keystore information like this:

<security-realm name="ApplicationRealm">

<server-identities>

<ssl>

</ssl>

</server-identities>

</security-realm>

1. Re: How to configure WildFly HTTPS with security-domain

abhinav.gupta01 Jan 14, 2017 12:04 AM (in response to yashendrac)

Hello,
If you concern is about having passwords in standalone-full.xml , then you can mask it using Vaults and then it will show up as "
                      <ssl>
                        <keystore path="ins.keystore" relative-to="jboss.server.config.dir" keystore-password="${VAULT::ssl::password::1}" alias="jboss" key-password="${VAULT::ssl::password::1}"/>
                    </ssl>

Read on vaults if you need to implement that.
I am not sure if we can have same behaviour you are expecting in wildfly.
Actions