Hi Scott, you can take a look on this blog post:
http://blog.nanthrax.net/?p=316 It's a step by step HTTPs configuration (with mutual auth optionally). Regards JB On 25/10/2018 17:59, Leschke, Scott wrote: > I’m attempting to get https working by following the instructions at: > https://karaf.apache.org/manual/latest/webcontainer > > I’m confused by the setting for *org.ops4j.pax.web.ssl.password* > > What is that intended to be. How is it defined? > > > > Also, what’s the difference between these: > > *org.osgi.service.http.secure.enabled=true* > > and > > *org.osgi.service.https.enabled=true* ? > > > > Anyway, I’m getting the following: > > Caused by: java.security.UnrecoverableKeyException: failed to decrypt > safe contents entry: javax.crypto.BadPaddingException: Given final block > not properly padded. Such issues can arise if a bad key is used during > decryption. > > > > My org.ops4j.pax.web.cfg (slightly obfuscated) is shown below. > > > > Scott > > > > > > org.osgi.service.http.enabled=false > > org.osgi.service.http.port=8181 > > > > org.osgi.service.http.port.secure=8443 > > org.osgi.service.http.secure.enabled=true > > org.osgi.service.https.enabled=true > > > > org.ops4j.pax.web.config.file=${karaf.etc}/jetty.xml > > org.apache.karaf.features.configKey=org.ops4j.pax.web > > > > org.ops4j.pax.web.ssl.keystore=c:/KeyStorePath > > org.ops4j.pax.web.ssl.password=?? Not sure what this is exactly > > org.ops4j.pax.web.ssl.keypassword=MyKeystorePWD > > > > javax.servlet.context.tempdir=${karaf.data}/pax-web-jsp >
