You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@karaf.apache.org by "Paul Spencer (Jira)" <ji...@apache.org> on 2023/01/06 15:32:00 UTC

[jira] [Created] (KARAF-7633) HTTPS SSL configuration needs updating

Paul Spencer created KARAF-7633:
-----------------------------------

             Summary: HTTPS SSL configuration needs updating
                 Key: KARAF-7633
                 URL: https://issues.apache.org/jira/browse/KARAF-7633
             Project: Karaf
          Issue Type: Documentation
          Components: karaf
    Affects Versions: 4.4.2
         Environment: Karaf 4.2.2
            Reporter: Paul Spencer


The documentation to enable an HTTP connector, [https://karaf.apache.org/manual/latest/#_webcontainer_jsp_servlet], needs to be updated.  Specifically the etc/org.ops4j.pax.web.cfg configuration has the following inaccuracies
- "org.osgi.service.http.secure.enabled = true" is required to enable https
- org.ops4j.pax.web.ssl.keystore.password is required
- org.ops4j.pax.web.ssl.keypassword is not used
- "org.ops4j.pax.web.ssl.keystore.type = JKS" is optional but adds clarity.

***
* Steps I took to add a enable https 
***
- Generate the self signing key files "keystore" in JKS format using the following command
keytool -genkey -keyalg RSA -alias selfsigned -keystore keystore -storepass karaf1234 -validity 360 -keysize 2048

- Copied the generated file, keystore, to ${karaf.etc}

- Add the following to etc/org.ops4j.pax.web.cfg configuration
org.osgi.service.http.secure.enabled = true
org.osgi.service.http.port.secure = 8443
org.ops4j.pax.web.ssl.keystore = ${karaf.etc}/keystore
org.ops4j.pax.web.ssl.keystore.password = karaf1234
org.ops4j.pax.web.ssl.keystore.type = JKS



--
This message was sent by Atlassian Jira
(v8.20.10#820010)