Hi, Can anyone help me with the following: I have browser request HTTPS going to Apache, and from Apache to Jetty, we have a HTTP proxy configured. Now I would like to do a further proxy from Jetty to another server.
Is it possible? If so, can anyone help me with some ideas/samples/documentations? Thanks Kuga -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of [email protected] Sent: Tuesday, September 20, 2011 9:00 AM To: [email protected] Subject: jetty-users Digest, Vol 28, Issue 21 Send jetty-users mailing list submissions to [email protected] To subscribe or unsubscribe via the World Wide Web, visit https://dev.eclipse.org/mailman/listinfo/jetty-users or, via email, send a message with subject or body 'help' to [email protected] You can reach the person managing the list at [email protected] When replying, please edit your Subject line so it is more specific than "Re: Contents of jetty-users digest..." Today's Topics: 1. Re: SSL error: fatal error: 40: no cipher suites in common (Martin Hewitt) 2. Re: SSL error: fatal error: 40: no cipher suites in common (Jesse McConnell) 3. porting to Jetty 7 (sasanka pusapati) ---------------------------------------------------------------------- Message: 1 Date: Mon, 19 Sep 2011 18:57:03 +0100 From: Martin Hewitt <[email protected]> To: JETTY user mailing list <[email protected]> Subject: Re: [jetty-users] SSL error: fatal error: 40: no cipher suites in common Message-ID: <CAHoU1+NG7cDpJ9nJxQDHmGdCajFjOE=-skwymmjetcecybb...@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1 Turns out my keystore wasn't quite set up correctly. Despite appearing to load the right certificate, it wasn't, so I had to follow the instructions here: http://wiki.eclipse.org/Jetty/Howto/Configure_SSL#Loading_Keys_and_Certificates_via_PKCS12 To convert my .crt and .key files into a .p12 file, and then import that into the keystore using keytool. Just if anyone comes across this thread... Martin On 19 September 2011 16:46, Martin Hewitt <[email protected]> wrote: > Sorry, forgot to mention. I'm using Jetty-7.3.1v20110307. > > Martin > > On 19 September 2011 16:18, Martin Hewitt <[email protected]> wrote: >> Hi, >> >> I've been trying to get SSL working with an embedded Jetty install and >> I keep bumping up against the above error. >> >> I've stripped out the ancillary code to simply leave a test server >> which adds an SslChannelConnector and starts. >> >> The logging (-Djavax.net.debug=all) appears to find the certificate >> without trouble, but whenever I try and connect I get the "cipher >> suites" error. >> >> My embedded code is (assume 's' is a map of configuration values, and >> assume server is: Server server = new Server() ): >> >> >> ? ? ? ?SslContextFactory scf = new SslContextFactory(); >> ? ? ? ?scf.setKeyStore(s.get("keystore")); >> ? ? ? ?scf.setKeyStorePassword(s.get("keystorePassword")); >> >> ? ? ? ?scf.setTrustStore( s.get("keystore") ); >> ? ? ? ?scf.setTrustStorePassword(s.get("keystorePassword")); >> >> ? ? ? ?scf.setKeyManagerPassword(s.get("keystorePassword")); >> >> ? ? ? ?SslSelectChannelConnector connector = new >> SslSelectChannelConnector(scf); >> ? ? ? ?connector.setPort( port ); >> >> ? ? ? ?server.addConnector(connector); >> >> Prior to updating the embedded code, I used keytool to import the >> certificate as detailed here: >> http://wiki.eclipse.org/Jetty/Reference/SSL_Connectors >> >> I've tried using SslContextFactory#setIncludeCipherSuites to no avail. >> >> Any help or pointers would be greatly appreciated. >> >> Thanks, >> >> Martin >> > ------------------------------ Message: 2 Date: Mon, 19 Sep 2011 14:59:41 -0500 From: Jesse McConnell <[email protected]> To: JETTY user mailing list <[email protected]> Subject: Re: [jetty-users] SSL error: fatal error: 40: no cipher suites in common Message-ID: <caphpusjdp6n3thq+jkc4-mhcx3paj-g+j9cvft1bqz0fziq...@mail.gmail.com> Content-Type: text/plain; charset=UTF-8 Oh good, you got it ironed out. Those certs can be a royal pain at times. cheers, jesse -- jesse mcconnell [email protected] http://webtide.com / http://intalio.com (the folks behind jetty and cometd) On Mon, Sep 19, 2011 at 12:57, Martin Hewitt <[email protected]> wrote: > Turns out my keystore wasn't quite set up correctly. Despite appearing > to load the right certificate, it wasn't, so I had to follow the > instructions here: > > http://wiki.eclipse.org/Jetty/Howto/Configure_SSL#Loading_Keys_and_Certificates_via_PKCS12 > > To convert my .crt and .key files into a .p12 file, and then import > that into the keystore using keytool. > > Just if anyone comes across this thread... > > Martin > > On 19 September 2011 16:46, Martin Hewitt <[email protected]> wrote: >> Sorry, forgot to mention. I'm using Jetty-7.3.1v20110307. >> >> Martin >> >> On 19 September 2011 16:18, Martin Hewitt <[email protected]> wrote: >>> Hi, >>> >>> I've been trying to get SSL working with an embedded Jetty install and >>> I keep bumping up against the above error. >>> >>> I've stripped out the ancillary code to simply leave a test server >>> which adds an SslChannelConnector and starts. >>> >>> The logging (-Djavax.net.debug=all) appears to find the certificate >>> without trouble, but whenever I try and connect I get the "cipher >>> suites" error. >>> >>> My embedded code is (assume 's' is a map of configuration values, and >>> assume server is: Server server = new Server() ): >>> >>> >>> ? ? ? ?SslContextFactory scf = new SslContextFactory(); >>> ? ? ? ?scf.setKeyStore(s.get("keystore")); >>> ? ? ? ?scf.setKeyStorePassword(s.get("keystorePassword")); >>> >>> ? ? ? ?scf.setTrustStore( s.get("keystore") ); >>> ? ? ? ?scf.setTrustStorePassword(s.get("keystorePassword")); >>> >>> ? ? ? ?scf.setKeyManagerPassword(s.get("keystorePassword")); >>> >>> ? ? ? ?SslSelectChannelConnector connector = new >>> SslSelectChannelConnector(scf); >>> ? ? ? ?connector.setPort( port ); >>> >>> ? ? ? ?server.addConnector(connector); >>> >>> Prior to updating the embedded code, I used keytool to import the >>> certificate as detailed here: >>> http://wiki.eclipse.org/Jetty/Reference/SSL_Connectors >>> >>> I've tried using SslContextFactory#setIncludeCipherSuites to no avail. >>> >>> Any help or pointers would be greatly appreciated. >>> >>> Thanks, >>> >>> Martin >>> >> > _______________________________________________ > jetty-users mailing list > [email protected] > https://dev.eclipse.org/mailman/listinfo/jetty-users > ------------------------------ Message: 3 Date: Tue, 20 Sep 2011 09:49:59 +0530 From: sasanka pusapati <[email protected]> To: [email protected] Subject: [jetty-users] porting to Jetty 7 Message-ID: <CA+M963dYssO8XkQ6N2Ne8ZSQ9Ffez3oCrzVzr09G=bjwqoj...@mail.gmail.com> Content-Type: text/plain; charset="utf-8" Hi Everyone , I am working on porting my application from jetty 6 to 7. When I went through the docs of Jetty 7 I understood that the login and authentication mechanism has completely changed in Jetty 7 i.e UserRealm has been now split into loginservice and useridentity and SSORealm has been completely removed. Like we have substitute for Userrelam , do we have any built in substitute or implementation of SSORealm ? Thanks, Sas. -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dev.eclipse.org/mailman/private/jetty-users/attachments/20110920/f8534313/attachment.htm> ------------------------------ _______________________________________________ jetty-users mailing list [email protected] https://dev.eclipse.org/mailman/listinfo/jetty-users End of jetty-users Digest, Vol 28, Issue 21 ******************************************* _______________________________________________ jetty-users mailing list [email protected] https://dev.eclipse.org/mailman/listinfo/jetty-users
