It's for the server side, so yes password is the keystore password and keypassword is the key password.
Regards JB On 26/10/2018 16:02, Leschke, Scott wrote: > After doing some digging, it would appear that both of these properties > need to be set to the keystore password. > > org.ops4j.pax.web.ssl.password > > org.ops4j.pax.web.ssl.keypassword > > I’m still curious about the difference between: > > *org.osgi.service.http.secure.enabled=true* > > and > > *org.osgi.service.https.enabled=true* > > Scott > > > > *From:*Leschke, Scott [mailto:[email protected]] > *Sent:* Thursday, October 25, 2018 11:21 AM > *To:* [email protected] > *Subject:* RE: Enabling HTTPS > > > > Actually, > > > > I saw most of that information at: > https://ops4j1.jira.com/wiki/spaces/paxweb/pages/12059277/SSL+Configuration > > > > It says, Password used for keystore integrity check. > > > > Where does that pwd come from? The example in the Karaf doc doesn’t > show (it’s foo). > > > > *From:*Achim Nierbeck <[email protected]> > *Sent:* Thursday, October 25, 2018 11:09 AM > *To:* [email protected] > *Subject:* Re: Enabling HTTPS > > > > Hi, > > > > I'm sure you'll find some of your questions answered here: > http://ops4j.github.io/pax/web/SNAPSHOT/User-Guide.html#ssl-configuration > > > > regards, Achim > > > > Am Do., 25. Okt. 2018 um 17:59 Uhr schrieb Leschke, Scott > <[email protected] <mailto:[email protected]>>: > > I’m attempting to get https working by following the instructions > at: https://karaf.apache.org/manual/latest/webcontainer > > I’m confused by the setting for *org.ops4j.pax.web.ssl.password* > > What is that intended to be. How is it defined? > > > > Also, what’s the difference between these: > > *org.osgi.service.http.secure.enabled=true* > > and > > *org.osgi.service.https.enabled=true* ? > > > > Anyway, I’m getting the following: > > Caused by: java.security.UnrecoverableKeyException: failed to > decrypt safe contents entry: javax.crypto.BadPaddingException: Given > final block not properly padded. Such issues can arise if a bad key > is used during decryption. > > > > My org.ops4j.pax.web.cfg (slightly obfuscated) is shown below. > > > > Scott > > > > > > org.osgi.service.http.enabled=false > > org.osgi.service.http.port=8181 > > > > org.osgi.service.http.port.secure=8443 > > org.osgi.service.http.secure.enabled=true > > org.osgi.service.https.enabled=true > > > > org.ops4j.pax.web.config.file=${karaf.etc}/jetty.xml > > org.apache.karaf.features.configKey=org.ops4j.pax.web > > > > org.ops4j.pax.web.ssl.keystore=c:/KeyStorePath > > org.ops4j.pax.web.ssl.password=?? Not sure what this is exactly > > org.ops4j.pax.web.ssl.keypassword=MyKeystorePWD > > > > javax.servlet.context.tempdir=${karaf.data}/pax-web-jsp > > > > -- > > > Apache Member > > Apache Karaf <http://karaf.apache.org/> Committer & PMC > OPS4J Pax Web <http://wiki.ops4j.org/display/paxweb/Pax+Web/> Committer > & Project Lead > blog <http://notizblog.nierbeck.de/> > > Co-Author of Apache Karaf Cookbook <http://bit.ly/1ps9rkS> > > > > Software Architect / Project Manager / Scrum Master > > >
