private SslSocketConnector getSslSocketConnector(final int sslPortNumber) { final SslSocketConnector secureConnector = new SslSocketConnector(); secureConnector.setPort(sslPortNumber); secureConnector.setKeystore(this.props.getString("jetty.keystore")); secureConnector.setPassword(this.props.getString("jetty.password")); secureConnector.setKeyPassword(this.props.getString("jetty.keypassword")); secureConnector.setTruststore(this.props.getString("jetty.truststore")); secureConnector.setTrustPassword(this.props.getString("jetty.trustpassword")); secureConnector.setHeaderBufferSize(MAX_HEADER_BUFFER_SIZE); // set up vulnerable cipher suites to exclude final List<String> cipherSuitesToExclude = this.props .getStringList("jetty.excludeCipherSuites"); logger.info("Excluded Cipher Suites: " + String.valueOf(cipherSuitesToExclude)); if (cipherSuitesToExclude != null && !cipherSuitesToExclude.isEmpty()) { secureConnector.setExcludeCipherSuites(cipherSuitesToExclude.toArray(new String[0])); } return secureConnector; } }
private void configureSSL(SslSocketConnector connector, SecurityContext securityContext) { connector.setProtocol("TLS"); if (securityContext != null) { keyStoreType = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStoreType", KeyStore.getDefaultType()); keyStore = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStore"); keyStorePassword = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStorePassword"); trustStoreType = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStoreType", KeyStore.getDefaultType()); trustStore = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStore"); trustStorePassword = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStorePassword"); } connector.setKeystore(keyStore); connector.setKeyPassword(keyStorePassword); connector.setKeystoreType(keyStoreType); connector.setTruststore(trustStore); connector.setTrustPassword(trustStorePassword); connector.setTruststoreType(trustStoreType); connector.setPassword(keyStorePassword); if (trustStore != null) { connector.setNeedClientAuth(true); } }
private void configureSSL(SslSocketConnector connector, SecurityContext securityContext) { connector.setProtocol("TLS"); if (securityContext != null) { keyStoreType = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStoreType", KeyStore.getDefaultType()); keyStore = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStore"); keyStorePassword = securityContext.getSSLProperties().getProperty("javax.net.ssl.keyStorePassword"); trustStoreType = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStoreType", KeyStore.getDefaultType()); trustStore = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStore"); trustStorePassword = securityContext.getSSLProperties().getProperty("javax.net.ssl.trustStorePassword"); } connector.setKeystore(keyStore); connector.setKeyPassword(keyStorePassword); connector.setKeystoreType(keyStoreType); connector.setTruststore(trustStore); connector.setTrustPassword(trustStorePassword); connector.setTruststoreType(trustStoreType); connector.setPassword(keyStorePassword); if (trustStore != null) { connector.setNeedClientAuth(true); } }
c.setTruststore(trustStore); c.setTruststoreType(trustStoreType); c.setTrustPassword(trustStorePassword);
c.setTruststore(trustStore); c.setTruststoreType(trustStoreType); c.setTrustPassword(trustStorePassword);
if(trustStore != null){ sslConnector.setTruststore(trustStore); sslConnector.setTrustPassword(conf.get(TRUST_PASSWORD)); sslConnector.setTruststoreType(conf.get(TRUSTSTORE_TYPE, DEFAULT_STORE_TYPE)); sslConnector.setNeedClientAuth(false);
public EmbeddedWebServer(String host, int port) { server = new Server(); handler = new ContextHandlerCollection(); root = new Context(handler, "/", new SessionHandler(), null, null, null); if (EMPTY.equals(Monitor.getSystemConfiguration().get(Property.MONITOR_SSL_KEYSTORE)) || EMPTY.equals(Monitor.getSystemConfiguration().get(Property.MONITOR_SSL_KEYSTOREPASS)) || EMPTY.equals(Monitor.getSystemConfiguration().get(Property.MONITOR_SSL_TRUSTSTORE)) || EMPTY.equals(Monitor.getSystemConfiguration().get(Property.MONITOR_SSL_TRUSTSTOREPASS))) { sock = new SocketConnector(); usingSsl = false; } else { SslSocketConnector sslSock = new SslSocketConnector(); AccumuloConfiguration conf = Monitor.getSystemConfiguration(); // Restrict the protocols on the server socket final String includeProtocols = conf.get(Property.MONITOR_SSL_INCLUDE_PROTOCOLS); if (null != includeProtocols && !includeProtocols.isEmpty()) { String[] protocols = StringUtils.split(includeProtocols, ','); sslSock = new TLSSocketConnector(protocols); } sslSock.setKeystore(conf.get(Property.MONITOR_SSL_KEYSTORE)); sslSock.setKeyPassword(conf.get(Property.MONITOR_SSL_KEYSTOREPASS)); sslSock.setTruststore(conf.get(Property.MONITOR_SSL_TRUSTSTORE)); sslSock.setTrustPassword(conf.get(Property.MONITOR_SSL_TRUSTSTOREPASS)); usingSsl = true; sock = sslSock; } sock.setHost(host); sock.setPort(port); }
private Connector getSSLConnector() { SslSocketConnector sslConnector = new SslSocketConnector(); sslConnector.setPort(getPort()); sslConnector.setKeyPassword(getHttpsHost().getKeyStorePassword()); sslConnector.setKeystore(getHttpsHost().getKeyStorePath()); sslConnector.setTruststore(getHttpsHost().getTrustStorePath()); sslConnector.setTrustPassword(getHttpsHost().getTrustStorePassword()); return sslConnector; }
conn.setTruststore(keyStore); conn.setKeyPassword(keyStorePassword); conn.setTrustPassword(keyStorePassword); return conn;
secureConnector.setKeyPassword(azkabanSettings.getString("jetty.keypassword")); secureConnector.setTruststore(azkabanSettings.getString("jetty.truststore")); secureConnector.setTrustPassword(azkabanSettings.getString("jetty.trustpassword")); secureConnector.setHeaderBufferSize(MAX_HEADER_BUFFER_SIZE);
ssl_b_connector.setKeyPassword("OBF:1u2u1wml1z7s1z7a1wnl1u2g"); ssl_b_connector.setTruststore(jetty_home+"/etc/keystore"); ssl_b_connector.setTrustPassword("OBF:1vny1zlo1x8e1vnw1vn61x8g1zlu1vn4"); server.addConnector(ssl_b_connector);
bioResult .setSslTrustManagerFactoryAlgorithm(getCertAlgorithm()); bioResult.setTrustPassword(getKeystorePassword()); } else { bioResult = new SslSocketConnector() {