[NMS-9084] Standalone HTTPS with Jetty doesn't work with certificate alias - The OpenNMS Issue Tracker

XML

Word

Printable

Details

Type: Bug
Status: Resolved (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 18.0.3
Fix Version/s: 19.1.0, Meridian-2016.1.5
Component/s: Example configuration files
Security Level: Default (Default Security Scheme)
Labels:
None

Description

According to opennms.properties and wiki page https://wiki.opennms.org/wiki/Standalone_HTTPS_with_Jetty, all you need to do if you want to use a specific cert alias in the keystore with jetty is set the system property org.opennms.netmgt.jetty.https-cert-alias.

Unfortunately, this doesn't work since the default jetty.xml does not set the certAlias for the SslContextFactory.

Adding this to the <New class="...SslContextFactory"> in jetty.xml fixes it.

<Set name="certAlias"><SystemProperty name="org.opennms.netmgt.jetty.https-cert-alias" /></Set>

Attachments

Activity

People

Assignee:: Ron Roskens

Reporter:: Ron Roskens

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 06/Feb/17 3:46 PM

Updated:: 01/Mar/17 2:28 PM

Resolved:: 01/Mar/17 9:29 AM