You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2019/05/17 15:38:00 UTC

[jira] [Commented] (FEDIZ-241) Outdated documentation

    [ https://issues.apache.org/jira/browse/FEDIZ-241?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16842259#comment-16842259 ] 

Colm O hEigeartaigh commented on FEDIZ-241:
-------------------------------------------

Thanks [~amarkevich] - I've made all those changes apart from the last one "extend HTTPS configuration for Tomcat 9". It's not clear to me what's missing here, could you expand a bit?

> Outdated documentation
> ----------------------
>
>                 Key: FEDIZ-241
>                 URL: https://issues.apache.org/jira/browse/FEDIZ-241
>             Project: CXF-Fediz
>          Issue Type: Documentation
>    Affects Versions: 1.5.0
>            Reporter: Alexey Markevich
>            Priority: Major
>
> 1. http://cxf.apache.org/fediz-idp-11.html
> - {code}webapps/fediz-idp-sts/WEB-INF/passwords.xml{code}
> {code}webapps/fediz-idp-sts/WEB-INF/userClaims.xml{code}
> to
> {code}webapps/fediz-idp-sts/WEB-INF/data/passwords.xml{code}
> {code}webapps/fediz-idp-sts/WEB-INF/data/userClaims.xml{code}
> - {code}keystoreFile="idp-ssl-server.jks"{code}
> to
> {code}keystoreFile="idp-ssl-key.jks"{code}
> - HTTPS configuration should be extended with
> {code}clientAuth="want"  truststoreFile="idp-ssl-trust.jks" truststorePass="ispass"{code}
> 2. http://cxf.apache.org/fediz-tomcat.html
> - {code}<Valve className="org.apache.cxf.fediz.tomcat8.FederationAuthenticator"{code}
> to
> {code}<Valve className="org.apache.cxf.fediz.tomcat.FederationAuthenticator"{code}
> - extend HTTPS configuration for Tomcat 9:
> {code}
> <Connector
>            protocol="org.apache.coyote.http11.Http11NioProtocol"
>            port="8443" maxThreads="200"
>            scheme="https" secure="true" SSLEnabled="true"
>            keystoreFile="rp-ssl-key.jks" keystorePass="tompass"
>            clientAuth="false" sslProtocol="TLS"/>
> {code}
> Values comes from https://tomcat.apache.org/tomcat-9.0-doc/ssl-howto.html#Edit_the_Tomcat_Configuration_File



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)