The Jetty documentation contains a section on "Configuring the Jetty SslContextFactory".
Three of the bullet points in the documentation (https://www.eclipse.org/jetty/documentation/9.4.x/configuring-ssl.html#configuring-sslcontextfactory) say that the SslContextFactory is responsible for * Certificate Revocation Lists<https://en.wikipedia.org/wiki/Revocation_list> and Distribution Points (CRLDP) * OCSP<https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol> Support * Client Authentication Support I have the Client Authentication Support working. But how do I configure the support for Certificate Revocation Lists and OCSP ? I need to have this configured to check if the client certificates have been revoked. There is nothing mention in the documentation, as far as I can see. The javadoc (https://www.eclipse.org/jetty/javadoc/9.4.7.v20170914/org/eclipse/jetty/util/ssl/SslContextFactory.html#) mentions a couple of CRL and OCSP methods. But where can I read more on how this should be configured ? Or if somebody could describe a working configuration ?
_______________________________________________ jetty-users mailing list [email protected] To change your delivery options, retrieve your password, or unsubscribe from this list, visit https://dev.eclipse.org/mailman/listinfo/jetty-users
