Note: Jetty 9.x is now at End of Community Support. https://github.com/eclipse/jetty.project/issues/7958
This effort, and really anything based on ALPN and TLS, is best handled in Jetty 10+. Joakim Erdfelt / joa...@webtide.com On Wed, Nov 23, 2022 at 3:13 AM Info <i...@betzel.net> wrote: > Dear community, > > > I am looking into the Lets Encrypt TLS-ALPN-01 challenge and want to > create a ALPN TLS extension for Jetty 9. > Does anybody already have any experience with this or even already created > an open source connection factory? > > I am looking into the HTTP2 configurations I can find online for > inspiration, can I stack the ALPN challange ontop of the default SSL/TLS > connection? > My config so far: > > <Call id="wanhttpsConnector" name="addConnector"> > <Arg> > <New class="org.eclipse.jetty.server.ServerConnector"> > <Arg name="server"> > <Ref refid="Server" /> > </Arg> > <Arg name="acceptors" type="int"> > <Property name="ssl.acceptors" default="-1"/> > </Arg> > <Arg name="selectors" type="int"> > <Property name="ssl.selectors" default="-1"/> > </Arg> > <Arg name="factories"> > <Array > type="org.eclipse.jetty.server.ConnectionFactory"> > <Item> > <New > class="org.eclipse.jetty.server.SslConnectionFactory"> > <Arg name="next">alpn</Arg> > <Arg name="sslContextFactory"> > <Ref refid="wansslContextFactory"/> > </Arg> > </New> > </Item> > <Item> > <New id="alpn" > class="org.eclipse.jetty.alpn.server.ALPNServerConnectionFactory"> > <Arg type="String"> > <Property name="jetty.alpn.protocols" > deprecated="alpn.protocols" default="" /> > </Arg> > <Set name="defaultProtocol"> > <Property name="jetty.alpn.defaultProtocol" > deprecated="alpn.defaultProtocol" /> > </Set> > </New> > </Item> > <Item> > <New > class="org.eclipse.jetty.server.SslConnectionFactory"> > <Arg name="next">http/1.1</Arg> > <Arg name="sslContextFactory"> > <Ref refid="wansslContextFactory"/> > </Arg> > </New> > </Item> > <Item> > <New > class="org.eclipse.jetty.server.HttpConnectionFactory"> > <Arg name="config"> > <Ref refid="httpConfig"/> > </Arg> > </New> > </Item> > </Array> > </Arg> > <Set name="name">0.0.0.0:443</Set> > <Set name="host"> > <Property name="jetty.host" default="0.0.0.0"/> > </Set> > <Set name="port"> > <Property name="https.port" default="443"/> > </Set> > <Set name="idleTimeout"> > <Property name="https.timeout" default="30000"/> > </Set> > <Set name="acceptorPriorityDelta"> > <Property name="ssl.acceptorPriorityDelta" > default="0"/> > </Set> > <Set name="acceptQueueSize"> > <Property name="https.acceptQueueSize" default="0"/> > </Set> > </New> > </Arg> > </Call> > > > > Met vriendelijke groet / Mit freundlichen Grüßen / Kind regards, > > Maurice Betzel > Principal Software Engineer > _______________________________________________ > jetty-users mailing list > jetty-users@eclipse.org > To unsubscribe from this list, visit > https://www.eclipse.org/mailman/listinfo/jetty-users >
_______________________________________________ jetty-users mailing list jetty-users@eclipse.org To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users
