You are not logged in.
Does anyone know to install an SSL certificate in apache Karaf, so my clients can communicate to my Webservices usinh HTTPS?
I will get a certificate from a trsuted CA.
Regards and thanks for your replies.
- keystores are in etc/keystores folder, create a new keystore with your keypair and the signed imported certificate
- edit etc/org.ops4j.pax.web.cfg to add:
org.osgi.service.http.port.secure=8443 org.osgi.service.http.secure.enabled=true org.ops4j.pax.web.ssl.keystore=etc/keystores/test.jks org.ops4j.pax.web.ssl.password=password org.ops4j.pax.web.ssl.keypassword=password
and it should be running.
I have same problem. I set my trust store how you indicated, but I get an exception:
Caused by: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
My https client is a tRest component.
Any idea how to solve this?
settings in the etc/org.ops4j.pax.web.cfg file are configuring the Karaf container as server side SSL endpoint, so how it will behave against HTTP(S) clients. I don't thing it has anything to do with tREST component, what is used as HTTP client. I will have a look at the component when having some time, but no promises
in theory - you could build a mediation proxy route (or a pure Camel route) with sslContextParametersRef defined ( http://camel.apache.org/http4.html ) to separate the authentication concern.
Last edited by gusto2 (2012-09-28 13:36:55)
Hi Gabriel. Thanks for the response. Yes I realize that. Finally we discover that karaf use a different handshake sequence from Jboss 7. So we added this parameter to karaf line command in trun script:
Now it works.