Setting up SSL in JBoss AS 7

Mark Sholund picture Mark Sholund · Nov 10, 2011 · Viewed 20k times · Source

I am attempting to get SSL set up in JBoss Application Server 7. I want http and https so I added:

<connector name="https" scheme="https" protocol="HTTP/1.1" secure ="true" socket-   binding="https"/>

I created a jsse element as directed by https://docs.jboss.org/author/display/AS7/Security+subsystem+configuration

Where do I put this jsse element in standalone.xml and how do I tie it to the https connector?

Answer

Mark Sholund picture Mark Sholund · Nov 10, 2011

Okay, I figured it out after searching for "Jboss 7" and https together. http://community.jboss.org/message/625454

and

http://docs.jboss.org/jbossweb/7.0.x/config/ssl.html

were helpful resources.

A jsse element is not necessary in this case, all I needed to do was add

<ssl key-alias="<alias>" password="<password>" certificate-key-file="<path>" verify-client="true" ca-certificate-file="<path>"/>

Although there is a bug, https://issues.jboss.org/browse/AS7-1680, in which the value of ca-certificate-file is ignored. I order to get client authentication the truststore has to be passed a different way, either through standalone.conf or

<system-properties>
     <property name="javax.net.ssl.trustStore" value="<path to truststore file>"/>
</system-properties>