0 Replies Latest reply on Aug 2, 2012 9:57 AM by Annamaria Pastore

    Jboss 7.1.0.Final  - Issue https connection.

    Annamaria Pastore Newbie

      Hello.

       

      I'll try to have an https connection. We uses Jboss 7.1.0.Final . My webapp uses SOAPClient to call one external server.

      The server have a self-caertificate.

       

      If the connection is in http, all is going.

      I just saw a lot of thread in thi fantastic forum but i have more question.

       

      I configure my standalone.xml with :

       

      <connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" enable-lookups="false" secure="true">

                      <ssl name="ssl" key-alias="keyalias" password="XXXX" certificate-key-file="C:/pippo/Cert/client.keystore" verify-client="want" ca-certificate-file="C:/pippo/Cert/client.keystore"/>

      </connector>

       

      I just do client.keystore and client.truststore were in client.truststore i put the certificate I download from a server. In a keystore I generate a key by my self.

       

      I also try to put in standalone.xml a system properties, but the jboss server doesn't start and give me an error that doesn't understand system-properties.

       

      That I try, after extension :

       

      <system-properties>

      <property name="javax.net.ssl.trustStore" value="C:/pippo/Cert/client.truststore"/>

                      <property name="javax.net.ssl.trustStorePassword" value="XXXX" />

                      <property name="javax.net.ssl.trustStoreType" value="jks" />

                      <property name="javax.net.ssl.keyStore" value="C:/pippo/Cert/client.keystore" />

                      <property name="javax.net.ssl.keyStorePassword" value="XXXX" />

                      <property name="javax.net.ssl.keyStoreType" value="jks" />

                      <property name="org.jboss.security.ignoreHttpsHost" value="TRUE" />

      </systemProperties>

       

       

      The only way to doesn't have error is to put domain:osgi, where there are other property.

      I just know it doesn't will work....I tried in different way!!!!!

       

      But how I must to do in standalone to corretly set my truststore ?

       

      In other way I doesn't understand why connection don't work, because no log are usefull...

      Can I set something to have more log about ?

       

      I changed also

       

      <socket-binding name="https" port="443"/>

       

      that were at 8443. I saw the https address is 443. It's right ?

       

       

      thank you all.