Created
May 13, 2020 10:17
-
-
Save splatch/b88643ae86f43017fad60473057ec32e to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?xml version="1.0"?> | |
<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "http://www.eclipse.org/jetty/configure_9_0.dtd"> | |
<!-- =============================================================== --> | |
<!-- Configure the Jetty Server --> | |
<!-- --> | |
<!-- Documentation of this file format can be found at: --> | |
<!-- http://wiki.eclipse.org/Jetty/Reference/jetty.xml_syntax --> | |
<!-- =============================================================== --> | |
<Configure id="Server" class="org.eclipse.jetty.server.Server"> | |
<!-- =========================================================== --> | |
<!-- Set handler Collection Structure --> | |
<!-- =========================================================== --> | |
<Get name="handler"> | |
<Call name="addHandler"> | |
<Arg> | |
<New id="Rewrite" class="org.eclipse.jetty.rewrite.handler.RewriteHandler"> | |
<!-- Add rule in order to take care of the X-Forwarded-Scheme header --> | |
<Call name="addRule"> | |
<Arg> | |
<New class="org.eclipse.jetty.rewrite.handler.ForwardedSchemeHeaderRule"> | |
<Set name="header">X-Forwarded-Proto</Set> | |
<Set name="headerValue">https</Set> <!-- if this is unset, any value will match against the rule --> | |
<Set name="scheme">https</Set> | |
</New> | |
</Arg> | |
</Call> | |
<Call name="addRule"> | |
<Arg> | |
<New class="org.eclipse.jetty.rewrite.handler.ForwardedSchemeHeaderRule"> | |
<Set name="header">X-Forwarded-Proto</Set> | |
<Set name="headerValue">http</Set> <!-- if this is unset, any value will match against the rule --> | |
<Set name="scheme">http</Set> | |
</New> | |
</Arg> | |
</Call> | |
</New> | |
</Arg> | |
</Call> | |
</Get> | |
<Get name="handler"> | |
<Call name="addHandler"> | |
<Arg> | |
<New class="org.eclipse.jetty.server.handler.ContextHandler"> | |
<Set name="contextPath">/static</Set> | |
<Set name="handler"> | |
<New class="org.eclipse.jetty.server.handler.ResourceHandler"> | |
<Set name="resourceBase"><SystemProperty name="openhab.conf" />/html</Set> | |
<Set name="directoriesListed">false</Set> | |
</New> | |
</Set> | |
</New> | |
</Arg> | |
</Call> | |
</Get> | |
<New id="httpConfig" class="org.eclipse.jetty.server.HttpConfiguration"> | |
<Set name="secureScheme">https</Set> | |
<Set name="securePort"> | |
<Property name="org.osgi.service.http.port.secure" default="8443" /> | |
</Set> | |
<Set name="outputBufferSize">32768</Set> | |
<Set name="requestHeaderSize">8192</Set> | |
<Set name="responseHeaderSize">8192</Set> | |
<Set name="sendServerVersion">true</Set> | |
<Set name="sendDateHeader">false</Set> | |
<Set name="headerCacheSize">512</Set> | |
<Call name="addCustomizer"> | |
<Arg> | |
<New class="org.eclipse.jetty.server.SecureRequestCustomizer" /> | |
</Arg> | |
</Call> | |
</New> | |
<!-- =========================================================== --> | |
<!-- extra options --> | |
<!-- =========================================================== --> | |
<Set name="stopAtShutdown">true</Set> | |
<Set name="stopTimeout">1000</Set> | |
<Set name="dumpAfterStart">true</Set> | |
<Set name="dumpBeforeStop">true</Set> | |
<New id="sslContextFactory" class="org.eclipse.jetty.util.ssl.SslContextFactory$Server"> | |
<Set name="KeyStorePath"><SystemProperty name="jetty.keystore.path" default="/etc/myKeystore" /></Set> | |
<Set name="KeyStorePassword"><SystemProperty name="jetty.ssl.password" default="OBF:1uh81uha1toc1wn31toi1ugg1ugi" /></Set> | |
<Set name="KeyManagerPassword"><SystemProperty name="jetty.ssl.keypassword" default="OBF:1uh81uha1toc1wn31toi1ugg1ugi" /></Set> | |
<Set name="TrustStorePath"><SystemProperty name="jetty.truststore.path" default="/etc/myKeystore" /></Set> | |
<Set name="TrustStorePassword"><SystemProperty name="jetty.ssl.password" default="OBF:1uh81uha1toc1wn31toi1ugg1ugi" /></Set> | |
<Set name="EndpointIdentificationAlgorithm"></Set> | |
<Set name="NeedClientAuth"><SystemProperty name="jetty.ssl.needClientAuth" default="false" /></Set> | |
<Set name="WantClientAuth"><SystemProperty name="jetty.ssl.wantClientAuth" default="false" /></Set> | |
</New> | |
<!-- =========================================================== --> | |
<!-- Add a HTTPS Connector. --> | |
<!-- Configure an o.e.j.server.ServerConnector with connection --> | |
<!-- factories for TLS (aka SSL) and HTTP to provide HTTPS. --> | |
<!-- All accepted TLS connections are wired to a HTTP connection. --> | |
<!-- --> | |
<!-- Consult the javadoc of o.e.j.server.ServerConnector, --> | |
<!-- o.e.j.server.SslConnectionFactory and --> | |
<!-- o.e.j.server.HttpConnectionFactory for all configuration --> | |
<!-- that may be set here. --> | |
<!-- =========================================================== --> | |
<!-- | |
<Call id="sslConnector" name="addConnector"> | |
<Arg> | |
<New class="org.eclipse.jetty.server.ServerConnector" id="sslConnectorId"> | |
<Arg name="server"> | |
<Ref refid="Server" /> | |
</Arg> | |
<Arg name="factories"> | |
<Array type="org.eclipse.jetty.server.ConnectionFactory"> | |
<Item> | |
<New class="org.eclipse.jetty.server.SslConnectionFactory"> | |
<Arg name="next">http/1.1</Arg> | |
<Arg name="sslContextFactory"> | |
<Ref refid="sslContextFactory" /> | |
</Arg> | |
</New> | |
</Item> | |
<Item> | |
<New class="org.eclipse.jetty.server.HttpConnectionFactory"> | |
<Arg name="config"> | |
<Ref refid="httpConfig" /> | |
</Arg> | |
</New> | |
</Item> | |
</Array> | |
</Arg> | |
<Set name="name"> | |
<SystemProperty name="jetty.host" default="0.0.0.0" />:<SystemProperty name="org.osgi.service.http.port.secure" default="8443" /> | |
</Set> | |
<Set name="host"> | |
<SystemProperty name="jetty.host" /> | |
</Set> | |
<Set name="port"> | |
<SystemProperty name="org.osgi.service.http.port.secure" default="8443" /> | |
</Set> | |
<Set name="idleTimeout"> | |
<SystemProperty name="https.timeout" default="30000" /> | |
</Set> | |
</New> | |
</Arg> | |
</Call> | |
--> | |
<Call name="setAttribute"> | |
<Arg>org.eclipse.jetty.server.Request.maxFormContentSize</Arg> | |
<Arg>300000</Arg> | |
</Call> | |
</Configure> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment