You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@tomee.apache.org by "Matthew Broadhead (JIRA)" <ji...@apache.org> on 2016/11/23 14:08:58 UTC

[jira] [Updated] (TOMEE-1910) SNI fails for cxf and tomcat7-maven-plugin

     [ https://issues.apache.org/jira/browse/TOMEE-1910?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Matthew Broadhead updated TOMEE-1910:
-------------------------------------
    Attachment: SSLSocketFactoryFacade.txt
                ExampleUsage.txt

here are some example files showing how i got it to work using CXF webclient  

> SNI fails for cxf and tomcat7-maven-plugin
> ------------------------------------------
>
>                 Key: TOMEE-1910
>                 URL: https://issues.apache.org/jira/browse/TOMEE-1910
>             Project: TomEE
>          Issue Type: Bug
>          Components: TomEE Core Server
>    Affects Versions: 1.7.4
>            Reporter: Matthew Broadhead
>         Attachments: ExampleUsage.txt, SSLSocketFactoryFacade.txt
>
>
> Hi,
> I tried asking this question on the tomcat users mailing list but there was no response.
> Basically I have TomEE running behind Httpd httpd-2.4.6-40.el7.centos.4.x86_64.  My java version is:
> openjdk version "1.8.0_101"
> OpenJDK Runtime Environment (build 1.8.0_101-b13)
> OpenJDK 64-Bit Server VM (build 25.101-b13, mixed mode)
> SNI works fine on Httpd and I can add certificates to any of the virtual hosts and it works fine in the browser.  but when i added an extra https virtual host suddenly my main host was not primary and all the CXF WebClient REST stuff fails.  Also tomcat7-maven-plugin failed to deploy to the server saying the certificate was wrong and showed the primary host certificate instead of the one specified
> [ERROR] Failed to execute goal org.apache.tomcat.maven:tomcat7-maven-plugin:2.3-SNAPSHOT:redeploy (default-cli) on project domain2: Cannot invoke Tomcat manager: hostname in certificate didn't match: <www.domain2.com> != <domain1.com> OR <domain1.com> OR <www.domain1.com> -> [Help 1]
> is my java lacking SNI support?  is the only way around the problem to use a single multi domain SSL certificate?



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)