1 Reply Latest reply on Jan 14, 2017 12:04 AM by Abhinav Gupta

    How to configure WildFly HTTPS with security-domain

    yashendra chandrakar Newbie

      Hi,

       

      It was possible configure security domain with JBoss 5 https connector in sever.xml

      As follows:

      <Connector port="8443" address="${jboss.bind.address}" SSLEnabled="true"           

                  scheme="https" secure="true" clientAuth="false".............

               securityDomain="java:/jaas/random-password"/>

       

      But in WildFly 10 I cannot configure security-domain with the ssl, I need to hardcode keystore information like this:

      <security-realm name="ApplicationRealm">

        <server-identities>

                          <ssl>

                              <keystore provider="JKS" path="mykestore.jks" relative-to="jboss.server.config.dir" keystore-password="password" key-password="password"/>

                          </ssl>

        </server-identities>

      </security-realm>

        • 1. Re: How to configure WildFly HTTPS with security-domain
          Abhinav Gupta Newbie

          Hello,

          If you concern is about having passwords in standalone-full.xml , then you can mask it using Vaults and then it will show up as "

                                <ssl>

                                  <keystore path="ins.keystore" relative-to="jboss.server.config.dir" keystore-password="${VAULT::ssl::password::1}" alias="jboss" key-password="${VAULT::ssl::password::1}"/>

                              </ssl>

           

          Read on vaults if you need to implement that.

          I am not sure if we can have same behaviour you are expecting in wildfly.