You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Peter Kleczka <pk...@gmail.com> on 2012/02/07 00:09:41 UTC
Web app calls JMS over SSL - certificates
Hello
I have a web app on Tomcat 6.0.24. The app needs to call a JMS app on
another server over SSL. I installed the keystore/truststore files in
$CatalinaHome/conf/certs and set VM arguments so that the JVM knows where
to find the certs. The server administrator says that I should encapsulate
these certs within the WAR file and that we should not have to set the VM
arguments.
The documentation that I have read so far seems to only discuss how to set
up SSL on Tomcat.
Is there a way that Tomcat or my web app can automatically load the certs
without setting VM arguments?
Thanks kindly in advance.
RE: Web app calls JMS over SSL - certificates
Posted by "Caldarale, Charles R" <Ch...@unisys.com>.
> From: Peter Kleczka [mailto:pkleczka@gmail.com]
> Subject: Re: Web app calls JMS over SSL - certificates
> What I would like to do is tell my application where my keystore
> files are located rather than load them through the JVM.
So what stops you from doing that? There are numerous ways to communicate configuration information to a webapp; read the servlet spec and the Tomcat doc for the <Context> element.
> My Tomcat specific question then is, will the Tomcat container
> let me do that from the app level
Let you do what, exactly? You have too many potential antecedents of "that" to figure out what you're referring to.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Web app calls JMS over SSL - certificates
Posted by Peter Kleczka <pk...@gmail.com>.
Chuck
Thanks, but my question really does have to do with Tomcat. The ActiveMQ is
actually on another server and my application hosted on Tomcat needs to
pull messages off of ActiveMQ over SSL. What I would like to do is tell my
application where my keystore files are located rather than load them
through the JVM. Another list member asked me how the message broker loads
its keystore files, perhaps as a general hint to how I might load them from
my web app. My Tomcat specific question then is, will the Tomcat container
let me do that from the app level, and if not, can I configure it on the
Tomcat server other than setting the keystore properties in the JVM VM
startup parameters.
On Tue, Feb 7, 2012 at 9:10 AM, Caldarale, Charles R <
Chuck.Caldarale@unisys.com> wrote:
> > From: Peter Kleczka [mailto:pkleczka@gmail.com]
> > Subject: Re: Web app calls JMS over SSL - certificates
>
> > I am using ActiveMQ and its activemq.xml file has a section where the
> > keystore and truststore point to those files. So I assume that means that
> > there is a way to set these at runtime.
>
> That would be a topic for the ActiveMQ group; nothing to do with Tomcat.
>
> - Chuck
>
>
> THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
> MATERIAL and is thus for use only by the intended recipient. If you
> received this in error, please contact the sender and delete the e-mail and
> its attachments from all computers.
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
RE: Web app calls JMS over SSL - certificates
Posted by "Caldarale, Charles R" <Ch...@unisys.com>.
> From: Peter Kleczka [mailto:pkleczka@gmail.com]
> Subject: Re: Web app calls JMS over SSL - certificates
> I am using ActiveMQ and its activemq.xml file has a section where the
> keystore and truststore point to those files. So I assume that means that
> there is a way to set these at runtime.
That would be a topic for the ActiveMQ group; nothing to do with Tomcat.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: Web app calls JMS over SSL - certificates
Posted by Peter Kleczka <pk...@gmail.com>.
I am using ActiveMQ and its activemq.xml file has a section where the
keystore and truststore point to those files. So I assume that means that
there is a way to set these at runtime. Still leaves me with the question
of whether I can set these at runtime from my app on Tomcat.
On Mon, Feb 6, 2012 at 11:50 PM, Pid * <pi...@pidster.com> wrote:
> On 6 Feb 2012, at 23:10, Peter Kleczka <pk...@gmail.com> wrote:
>
> > Hello
> >
> > I have a web app on Tomcat 6.0.24. The app needs to call a JMS app on
> > another server over SSL. I installed the keystore/truststore files in
> > $CatalinaHome/conf/certs and set VM arguments so that the JVM knows where
> > to find the certs. The server administrator says that I should
> encapsulate
> > these certs within the WAR file and that we should not have to set the VM
> > arguments.
> >
> > The documentation that I have read so far seems to only discuss how to
> set
> > up SSL on Tomcat.
> >
> > Is there a way that Tomcat or my web app can automatically load the certs
> > without setting VM arguments?
>
> How are you configuring JMS now?
>
> Which JMS provider/lib are you using?
>
>
> p
>
>
>
> >
> > Thanks kindly in advance.
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
Re: Web app calls JMS over SSL - certificates
Posted by Pid * <pi...@pidster.com>.
On 6 Feb 2012, at 23:10, Peter Kleczka <pk...@gmail.com> wrote:
> Hello
>
> I have a web app on Tomcat 6.0.24. The app needs to call a JMS app on
> another server over SSL. I installed the keystore/truststore files in
> $CatalinaHome/conf/certs and set VM arguments so that the JVM knows where
> to find the certs. The server administrator says that I should encapsulate
> these certs within the WAR file and that we should not have to set the VM
> arguments.
>
> The documentation that I have read so far seems to only discuss how to set
> up SSL on Tomcat.
>
> Is there a way that Tomcat or my web app can automatically load the certs
> without setting VM arguments?
How are you configuring JMS now?
Which JMS provider/lib are you using?
p
>
> Thanks kindly in advance.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org