SSLEngineConfigurator sslConf = new SSLEngineConfigurator(sslContext).setClientMode(false); sslProperties.getClientAuth().filter(auth-> auth.toLowerCase().equals("want")) .ifPresent(auth->sslConf.setWantClientAuth(true));
httpsListener.setSSLEngineConfig( new SSLEngineConfigurator(sslConfig) .setClientMode(false) .setNeedClientAuth(false) );
/** * Start SSL-secured HTTP test server. * * @throws IOException in case there is an error while reading server key store or trust store. * @return an instance of the started SSL-secured HTTP test server. */ public static Server start() throws IOException { // Grizzly ssl configuration SSLContextConfigurator sslContext = new SSLContextConfigurator(); // set up security context sslContext.setKeyStoreFile(KEYSTORE_SERVER_FILE); // contains server keypair sslContext.setKeyStorePass(KEYSTORE_SERVER_PWD); sslContext.setTrustStoreFile(TRUSTORE_SERVER_FILE); // contains client certificate sslContext.setTrustStorePass(TRUSTORE_SERVER_PWD); ResourceConfig rc = new ResourceConfig(); rc.registerClasses(RootResource.class, SecurityFilter.class, AuthenticationExceptionMapper.class); final HttpServer grizzlyServer = GrizzlyHttpServerFactory.createHttpServer( getBaseURI(), rc, true, new SSLEngineConfigurator(sslContext).setClientMode(false).setNeedClientAuth(true) ); // start Grizzly embedded server // LOGGER.info("Jersey app started. Try out " + BASE_URI + "\nHit CTRL + C to stop it..."); grizzlyServer.start(); return new Server(grizzlyServer); }
public void startServer() throws TelegramApiRequestException { ResourceConfig rc = new ResourceConfig(); rc.register(restApi); rc.register(JacksonFeature.class); final HttpServer grizzlyServer; if (keystoreServerFile != null && keystoreServerPwd != null) { SSLContextConfigurator sslContext = new SSLContextConfigurator(); // set up security context sslContext.setKeyStoreFile(keystoreServerFile); // contains server keypair sslContext.setKeyStorePass(keystoreServerPwd); grizzlyServer = GrizzlyHttpServerFactory.createHttpServer(getBaseURI(), rc, true, new SSLEngineConfigurator(sslContext).setClientMode(false).setNeedClientAuth(false)); } else { grizzlyServer = GrizzlyHttpServerFactory.createHttpServer(getBaseURI(), rc); } try { grizzlyServer.start(); } catch (IOException e) { throw new TelegramApiRequestException("Error starting webhook server", e); } }
sslConf.setClientMode(false); sslConf.setNeedClientAuth(false); return sslConf;
true, new SSLEngineConfigurator(sslCon).setClientMode(false).setNeedClientAuth(false));
new ResourceConfig(), true, new SSLEngineConfigurator(sslContext).setClientMode(false).setNeedClientAuth(true), false );
new ResourceConfig(), true, new SSLEngineConfigurator(sslContext).setClientMode(false).setNeedClientAuth(true), false );
SSLEngineConfigurator sslConf = new SSLEngineConfigurator(sslContext).setClientMode(false); sslProperties.getClientAuth().filter(auth-> auth.toLowerCase().equals("want")) .ifPresent(auth->sslConf.setWantClientAuth(true));
SSLEngineConfigurator sslConf = new SSLEngineConfigurator(sslContext).setClientMode(false); sslProperties.getClientAuth().filter(auth-> auth.toLowerCase().equals("want")) .ifPresent(auth->sslConf.setWantClientAuth(true));
SSLEngineConfigurator sslConf = new SSLEngineConfigurator(sslContext).setClientMode(false);
final SSLEngineConfigurator clientConfig = serverConfig.copy().setClientMode(true);
final SSLEngineConfigurator clientConfig = serverConfig.copy().setClientMode(true);
sslEngineConfigurator.setWantClientAuth(true); sslEngineConfigurator.setEnabledCipherSuites(new String[]{"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256", "TLS_RSA_WITH_AES_128_CBC_SHA256", "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA", "TLS_RSA_WITH_AES_128_CBC_SHA"}); sslEngineConfigurator.setClientMode(false); NetworkListener listener = new NetworkListener("grizzly_ssl", uri.getHost(), 8443); listener.setSecure(true);
private SSLFilter createSslFilter(final TlsContextFactory tlsContextFactory) { try { boolean clientAuth = tlsContextFactory.isTrustStoreConfigured(); final SSLEngineConfigurator serverConfig = new SSLEngineConfigurator(tlsContextFactory.createSslContext(), false, clientAuth, false); final String[] enabledProtocols = tlsContextFactory.getEnabledProtocols(); if (enabledProtocols != null) { serverConfig.setEnabledProtocols(enabledProtocols); } final String[] enabledCipherSuites = tlsContextFactory.getEnabledCipherSuites(); if (enabledCipherSuites != null) { serverConfig.setEnabledCipherSuites(enabledCipherSuites); } final SSLEngineConfigurator clientConfig = serverConfig.copy().setClientMode(true); return new MuleSslFilter(serverConfig, clientConfig); } catch (Exception e) { throw new MuleRuntimeException(e); } }
SSLEngineConfigurator sslConf = new SSLEngineConfigurator(sslContext).setClientMode(false);
private SSLFilter createSslFilter(final TlsContextFactory tlsContextFactory) { try { boolean clientAuth = tlsContextFactory.isTrustStoreConfigured(); final SSLEngineConfigurator serverConfig = new SSLEngineConfigurator(tlsContextFactory.createSslContext(), false, clientAuth, false); final String[] enabledProtocols = tlsContextFactory.getEnabledProtocols(); if (enabledProtocols != null) { serverConfig.setEnabledProtocols(enabledProtocols); } final String[] enabledCipherSuites = tlsContextFactory.getEnabledCipherSuites(); if (enabledCipherSuites != null) { serverConfig.setEnabledCipherSuites(enabledCipherSuites); } final SSLEngineConfigurator clientConfig = serverConfig.copy().setClientMode(true); return new MuleSslFilter(serverConfig, clientConfig); } catch (Exception e) { throw new MuleRuntimeException(e); } }
public void startServer() throws TelegramApiRequestException { ResourceConfig rc = new ResourceConfig(); rc.register(restApi); rc.register(JacksonFeature.class); final HttpServer grizzlyServer; if (keystoreServerFile != null && keystoreServerPwd != null) { SSLContextConfigurator sslContext = new SSLContextConfigurator(); // set up security context sslContext.setKeyStoreFile(keystoreServerFile); // contains server keypair sslContext.setKeyStorePass(keystoreServerPwd); grizzlyServer = GrizzlyHttpServerFactory.createHttpServer(getBaseURI(), rc, true, new SSLEngineConfigurator(sslContext).setClientMode(false).setNeedClientAuth(false)); } else { grizzlyServer = GrizzlyHttpServerFactory.createHttpServer(getBaseURI(), rc); } try { grizzlyServer.start(); } catch (IOException e) { throw new TelegramApiRequestException("Error starting webhook server", e); } }