[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
Re: [jetty-users] jetty-users Digest, Vol 28, Issue 21
|
Hi,
Can anyone help me with the following:
I have browser request HTTPS going to Apache, and from Apache to Jetty, we have a HTTP proxy configured. Now I would like to do a further proxy from Jetty to another server.
Is it possible? If so, can anyone help me with some ideas/samples/documentations?
Thanks
Kuga
-----Original Message-----
From: jetty-users-bounces@xxxxxxxxxxx [mailto:jetty-users-bounces@xxxxxxxxxxx] On Behalf Of jetty-users-request@xxxxxxxxxxx
Sent: Tuesday, September 20, 2011 9:00 AM
To: jetty-users@xxxxxxxxxxx
Subject: jetty-users Digest, Vol 28, Issue 21
Send jetty-users mailing list submissions to
jetty-users@xxxxxxxxxxx
To subscribe or unsubscribe via the World Wide Web, visit
https://dev.eclipse.org/mailman/listinfo/jetty-users
or, via email, send a message with subject or body 'help' to
jetty-users-request@xxxxxxxxxxx
You can reach the person managing the list at
jetty-users-owner@xxxxxxxxxxx
When replying, please edit your Subject line so it is more specific
than "Re: Contents of jetty-users digest..."
Today's Topics:
1. Re: SSL error: fatal error: 40: no cipher suites in common
(Martin Hewitt)
2. Re: SSL error: fatal error: 40: no cipher suites in common
(Jesse McConnell)
3. porting to Jetty 7 (sasanka pusapati)
----------------------------------------------------------------------
Message: 1
Date: Mon, 19 Sep 2011 18:57:03 +0100
From: Martin Hewitt <martin.hewitt@xxxxxxxxx>
To: JETTY user mailing list <jetty-users@xxxxxxxxxxx>
Subject: Re: [jetty-users] SSL error: fatal error: 40: no cipher
suites in common
Message-ID:
<CAHoU1+NG7cDpJ9nJxQDHmGdCajFjOE=-skWYMmJetcECYBbe2g@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset=ISO-8859-1
Turns out my keystore wasn't quite set up correctly. Despite appearing
to load the right certificate, it wasn't, so I had to follow the
instructions here:
http://wiki.eclipse.org/Jetty/Howto/Configure_SSL#Loading_Keys_and_Certificates_via_PKCS12
To convert my .crt and .key files into a .p12 file, and then import
that into the keystore using keytool.
Just if anyone comes across this thread...
Martin
On 19 September 2011 16:46, Martin Hewitt <martin.hewitt@xxxxxxxxx> wrote:
> Sorry, forgot to mention. I'm using Jetty-7.3.1v20110307.
>
> Martin
>
> On 19 September 2011 16:18, Martin Hewitt <martin.hewitt@xxxxxxxxx> wrote:
>> Hi,
>>
>> I've been trying to get SSL working with an embedded Jetty install and
>> I keep bumping up against the above error.
>>
>> I've stripped out the ancillary code to simply leave a test server
>> which adds an SslChannelConnector and starts.
>>
>> The logging (-Djavax.net.debug=all) appears to find the certificate
>> without trouble, but whenever I try and connect I get the "cipher
>> suites" error.
>>
>> My embedded code is (assume 's' is a map of configuration values, and
>> assume server is: Server server = new Server() ):
>>
>>
>> ? ? ? ?SslContextFactory scf = new SslContextFactory();
>> ? ? ? ?scf.setKeyStore(s.get("keystore"));
>> ? ? ? ?scf.setKeyStorePassword(s.get("keystorePassword"));
>>
>> ? ? ? ?scf.setTrustStore( s.get("keystore") );
>> ? ? ? ?scf.setTrustStorePassword(s.get("keystorePassword"));
>>
>> ? ? ? ?scf.setKeyManagerPassword(s.get("keystorePassword"));
>>
>> ? ? ? ?SslSelectChannelConnector connector = new SslSelectChannelConnector(scf);
>> ? ? ? ?connector.setPort( port );
>>
>> ? ? ? ?server.addConnector(connector);
>>
>> Prior to updating the embedded code, I used keytool to import the
>> certificate as detailed here:
>> http://wiki.eclipse.org/Jetty/Reference/SSL_Connectors
>>
>> I've tried using SslContextFactory#setIncludeCipherSuites to no avail.
>>
>> Any help or pointers would be greatly appreciated.
>>
>> Thanks,
>>
>> Martin
>>
>
------------------------------
Message: 2
Date: Mon, 19 Sep 2011 14:59:41 -0500
From: Jesse McConnell <jesse@xxxxxxxxxxx>
To: JETTY user mailing list <jetty-users@xxxxxxxxxxx>
Subject: Re: [jetty-users] SSL error: fatal error: 40: no cipher
suites in common
Message-ID:
<CAPHPUsJdp6N3tHQ+jKc4-mhcX3PaJ-g+j9cVfT1bQz0fziqZKQ@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset=UTF-8
Oh good, you got it ironed out. Those certs can be a royal pain at times.
cheers,
jesse
--
jesse mcconnell
jesse@xxxxxxxxxxx
http://webtide.com / http://intalio.com
(the folks behind jetty and cometd)
On Mon, Sep 19, 2011 at 12:57, Martin Hewitt <martin.hewitt@xxxxxxxxx> wrote:
> Turns out my keystore wasn't quite set up correctly. Despite appearing
> to load the right certificate, it wasn't, so I had to follow the
> instructions here:
>
> http://wiki.eclipse.org/Jetty/Howto/Configure_SSL#Loading_Keys_and_Certificates_via_PKCS12
>
> To convert my .crt and .key files into a .p12 file, and then import
> that into the keystore using keytool.
>
> Just if anyone comes across this thread...
>
> Martin
>
> On 19 September 2011 16:46, Martin Hewitt <martin.hewitt@xxxxxxxxx> wrote:
>> Sorry, forgot to mention. I'm using Jetty-7.3.1v20110307.
>>
>> Martin
>>
>> On 19 September 2011 16:18, Martin Hewitt <martin.hewitt@xxxxxxxxx> wrote:
>>> Hi,
>>>
>>> I've been trying to get SSL working with an embedded Jetty install and
>>> I keep bumping up against the above error.
>>>
>>> I've stripped out the ancillary code to simply leave a test server
>>> which adds an SslChannelConnector and starts.
>>>
>>> The logging (-Djavax.net.debug=all) appears to find the certificate
>>> without trouble, but whenever I try and connect I get the "cipher
>>> suites" error.
>>>
>>> My embedded code is (assume 's' is a map of configuration values, and
>>> assume server is: Server server = new Server() ):
>>>
>>>
>>> ? ? ? ?SslContextFactory scf = new SslContextFactory();
>>> ? ? ? ?scf.setKeyStore(s.get("keystore"));
>>> ? ? ? ?scf.setKeyStorePassword(s.get("keystorePassword"));
>>>
>>> ? ? ? ?scf.setTrustStore( s.get("keystore") );
>>> ? ? ? ?scf.setTrustStorePassword(s.get("keystorePassword"));
>>>
>>> ? ? ? ?scf.setKeyManagerPassword(s.get("keystorePassword"));
>>>
>>> ? ? ? ?SslSelectChannelConnector connector = new SslSelectChannelConnector(scf);
>>> ? ? ? ?connector.setPort( port );
>>>
>>> ? ? ? ?server.addConnector(connector);
>>>
>>> Prior to updating the embedded code, I used keytool to import the
>>> certificate as detailed here:
>>> http://wiki.eclipse.org/Jetty/Reference/SSL_Connectors
>>>
>>> I've tried using SslContextFactory#setIncludeCipherSuites to no avail.
>>>
>>> Any help or pointers would be greatly appreciated.
>>>
>>> Thanks,
>>>
>>> Martin
>>>
>>
> _______________________________________________
> jetty-users mailing list
> jetty-users@xxxxxxxxxxx
> https://dev.eclipse.org/mailman/listinfo/jetty-users
>
------------------------------
Message: 3
Date: Tue, 20 Sep 2011 09:49:59 +0530
From: sasanka pusapati <spusapatinlr@xxxxxxxxx>
To: jetty-users@xxxxxxxxxxx
Subject: [jetty-users] porting to Jetty 7
Message-ID:
<CA+M963dYssO8XkQ6N2Ne8ZSQ9Ffez3oCrzVzr09G=bjWqoJmhA@xxxxxxxxxxxxxx>
Content-Type: text/plain; charset="utf-8"
Hi Everyone ,
I am working on porting my application from jetty
6 to 7. When I went through the docs of Jetty 7 I understood that the login
and authentication mechanism has completely changed in Jetty 7 i.e UserRealm
has been now split into loginservice and useridentity and SSORealm has been
completely removed. Like we have substitute for Userrelam , do we have any
built in substitute or implementation of SSORealm ?
Thanks,
Sas.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://dev.eclipse.org/mailman/private/jetty-users/attachments/20110920/f8534313/attachment.htm>
------------------------------
_______________________________________________
jetty-users mailing list
jetty-users@xxxxxxxxxxx
https://dev.eclipse.org/mailman/listinfo/jetty-users
End of jetty-users Digest, Vol 28, Issue 21
*******************************************