Configuring jetty for SSL

To turn off having pax-web to directly create the connector, change the etc/org.ops4j.pax.web.cfg file as follows:

#org.osgi.service.http.port.secure=9001
#org.osgi.service.http.secure.enabled=true
....
org.ops4j.pax.web.config.file=${karaf.base}/etc/jetty.xml

In etc/jetty.xml, replace the commented out section <Call name="addConnector"> with the following one:

<Call name="addConnector">
    <Arg>
        <New class="org.eclipse.jetty.server.ssl.SslSelectChannelConnector">
            <Set name="port">9001</Set>
            <Set name="maxIdleTime">30000</Set>
            <Set name="keystore">./etc/keystores/keystore.jks</Set>
            <Set name="password">password</Set>
            <Set name="keyPassword">password</Set>
        </New>
    </Arg>
</Call>

Those settings puts the connector on port 9001 to use the SslSelectChannelConnector which provides working continuation support.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!

Leave your feedback here