3 Replies Latest reply on Sep 16, 2002 6:51 PM by Sudhi

    Configuring JBOSS-3.0.0 /Jetty to listen to HTTPS

    umesh bellur Newbie

      How do I configure JBOSS/Jetty to listen to https? I am using 3.0.0.

        • 1. Re: Configuring JBOSS-3.0.0 /Jetty to listen to HTTPS
          Fusayuki Minamoto Apprentice

          JBoss 3.0 Quick Start Guide has a section to configure SSL.

          Miki

          • 2. Re: Configuring JBOSS-3.0.0 /Jetty to listen to HTTPS
            Sudhi Newbie

            How do I configure HTTP to listen on port 80 ?
            Ans: Follow the steps below.
            Open the file jboss-service.xml located @ %JBOSS_DIST%/server/foo/deploy/ jbossweb.sar/META-INF.
            Modify the port for HTTP as 80 from 8080. @appendix 2.

            How do I configure HTTPs to listen on port 443?
            Ans: To configure SSL. You need to have serverkey store. Use jdk keytool to generate keys. As shown in following steps.
            Create keystore and generate new publik/private key pair
            %JAVA_HOME%/bin/keytool -genkey -alias tomcat -keyalg RSA -storepass 123456 –keystore
            %JAVA_HOME%/server/foo/conf/server.keystore -keypass 123456 -dname “CN=ecorp.sudhendras.epeople.com, OU=”Software”, O=teamwork,L=Mountain view, S=CA, C=US”
            You may optionally import "Thawte Test CA Root certificate". You cut and paste from appendix 3
            %JAVA_HOME%/bin/keytool -import -alias thawte -storepass 123456 -keystore %JAVA_HOME%/server/foo/conf/server.keystore -keypass 123456 -file servertest.txt
            Open the file jboss-service.xml located @ %JBOSS_DIST%/server/foo/deploy/ jbossweb.sar/META-INF.
            Modify the port for HTTPs as 443 from 8443.

            • 3. Re: Configuring JBOSS-3.0.0 /Jetty to listen to HTTPS
              Sudhi Newbie

              How do I configure HTTP to listen on port 80 ?
              Ans: Follow the steps below.
              Open the file jboss-service.xml located @ %JBOSS_DIST%/server/foo/deploy/ jbossweb.sar/META-INF.
              Modify the port for HTTP as 80 from 8080. @appendix 2.

              How do I configure HTTPs to listen on port 443?
              Ans: To configure SSL. You need to have serverkey store. Use jdk keytool to generate keys. As shown in following steps.
              Create keystore and generate new publik/private key pair
              %JAVA_HOME%/bin/keytool -genkey -alias tomcat -keyalg RSA -storepass 123456 –keystore
              %JAVA_HOME%/server/foo/conf/server.keystore -keypass 123456 -dname “CN=ecorp.sudhendras.epeople.com, OU=”Software”, O=teamwork,L=Mountain view, S=CA, C=US”
              You may optionally import "Thawte Test CA Root certificate". You cut and paste from appendix 3
              %JAVA_HOME%/bin/keytool -import -alias thawte -storepass 123456 -keystore %JAVA_HOME%/server/foo/conf/server.keystore -keypass 123456 -file servertest.txt
              Open the file jboss-service.xml located @ %JBOSS_DIST%/server/foo/deploy/ jbossweb.sar/META-INF.
              Modify the port for HTTPs as 443 from 8443.

              Appendix 3 (SSL Certificate Keys Example) This can be used for development purposes only.
              -----BEGIN CERTIFICATE-----
              MIICmTCCAgKgAwIBAgIBADANBgkqhkiG9w0BAQQFADCBhzELMAkGA1UEBhMCWkEx
              IjAgBgNVBAgTGUZPUiBURVNUSU5HIFBVUlBPU0VTIE9OTFkxHTAbBgNVBAoTFFRo
              YXd0ZSBDZXJ0aWZpY2F0aW9uMRcwFQYDVQQLEw5URVNUIFRFU1QgVEVTVDEcMBoG
              A1UEAxMTVGhhd3RlIFRlc3QgQ0EgUm9vdDAeFw05NjA4MDEwMDAwMDBaFw0yMDEy
              MzEyMTU5NTlaMIGHMQswCQYDVQQGEwJaQTEiMCAGA1UECBMZRk9SIFRFU1RJTkcg
              UFVSUE9TRVMgT05MWTEdMBsGA1UEChMUVGhhd3RlIENlcnRpZmljYXRpb24xFzAV
              BgNVBAsTDlRFU1QgVEVTVCBURVNUMRwwGgYDVQQDExNUaGF3dGUgVGVzdCBDQSBS
              b290MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1fZBvjrOsfwzoZvrSlEH8
              1TFhoRPebBZhLZDDE19mYuJ+ougb86EXieZ487dSxXKruBFJPSYttHoCin5qkc5k
              BSz+/tZ4knXyRFBO3CmONEKCPfdu9D06y4yXmjHApfgGJfpA/kS+QbbiilNz7q2H
              LArK3umk74zHKqUyThnkjwIDAQABoxMwETAPBgNVHRMBAf8EBTADAQH/MA0GCSqG
              SIb3DQEBBAUAA4GBAIKM4+wZA/TvLItldL/hGf7exH8/ywvMupg+yAVM4h8uf+d8
              phgBi7coVx71/lCBOlFmx66NyKlZK5mObgvd2dlnsAP+nnStyhVHFIpKy3nsDO4J
              qrIgEhCsdpikSpbtdo18jUubV6z1kQ71CrRQtbi/WtdqxQEEtgZCJO2lPoIW
              -----END CERTIFICATE-----