Skip to content

Instantly share code, notes, and snippets.

@ctomc
Last active December 14, 2015 19:09
Show Gist options
  • Save ctomc/5135002 to your computer and use it in GitHub Desktop.
Save ctomc/5135002 to your computer and use it in GitHub Desktop.
idea of common ssl configuration
<subsystem xmlns="urn:jboss:domain:security:2.0">
<security-domains>
<security-domain name="other" cache-type="default" >
...
</security-domain>
</security-domains>
<keystores>
<store-definitions>
<store-defintion name="web-certs" type="jks" path="/path/to/some.jks"/>
<store-defintion name="kerberos-certs" type="keytab" path="/path/to/krb5.keytab"/>
</store-definitions>
<stores>
<keystore name="ssl" definition="web-certs" key-alias="www.example.com" password="password"/>
<truststore name="ssl" definition="web-certs" key-alias="trust" password="password"/>
</stores>
<ssl-context>
<context name="ssl" keystore="ssl" truststore="ssl">
<provider name="my-provider" module="org.some.module" provider-class="fqn.providerClass"/>
</context>
</ssl-context>
</keystores>
</subsystem>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment