Steve Jones commented on FTPSERVER-93:

I think that since Mina uses the Java 5 javax.net.ssl.SSLEngine it will need 
the key manager to extend X509ExtendedKeyManager since this provides the 
chooseEngineServerAlias method used to select the alias.

Here's the Mina FAQ that outlines that they use 1.5 to build but can run on 1.4 
as long as you don't use the SSLFilter ...


> Support for alias when configuring SSL
> --------------------------------------
>                 Key: FTPSERVER-93
>                 URL: https://issues.apache.org/jira/browse/FTPSERVER-93
>             Project: FtpServer
>          Issue Type: Wish
>          Components: Core
>    Affects Versions: 1.0-M1
>            Reporter: Steve Jones
>            Assignee: Niklas Gustavsson
>             Fix For: 1.0-M2
>         Attachments: keyalias.patch
> Configuration for the the SSL listeners should support an "alias".
> This would allow a particular key to be selected from a keystore.
> For reference, here's the tomcat class that does this:
>   org.apache.tomcat.util.net.jsse.JSSEKeyManager.java
> The only tricky part that I am aware of is that for JKS keystores the alias 
> should be converted to all lower case.
> Also for reference, this is the extended X509 key manager that uses aliases:
> http://java.sun.com/j2se/1.5.0/docs/api/javax/net/ssl/X509ExtendedKeyManager.html

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

Reply via email to