diff options
| author | server <brownptcdash@gmail.com> | 2019-12-10 18:12:37 -0500 |
|---|---|---|
| committer | server <brownptcdash@gmail.com> | 2019-12-10 18:12:37 -0500 |
| commit | 7478e610d99d1f2fb383ecbfa0b70d72eae27f81 (patch) | |
| tree | 59486701838067351f00580315c05690f36a39ce /solr-8.3.1/server/etc/jetty-ssl.xml | |
| parent | 096718ee546afbd7568bf8ec9e23dca0556d814d (diff) | |
solr changes
Diffstat (limited to 'solr-8.3.1/server/etc/jetty-ssl.xml')
| -rw-r--r-- | solr-8.3.1/server/etc/jetty-ssl.xml | 37 |
1 files changed, 37 insertions, 0 deletions
diff --git a/solr-8.3.1/server/etc/jetty-ssl.xml b/solr-8.3.1/server/etc/jetty-ssl.xml new file mode 100644 index 000000000..367064131 --- /dev/null +++ b/solr-8.3.1/server/etc/jetty-ssl.xml @@ -0,0 +1,37 @@ +<?xml version="1.0"?> +<!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "http://www.eclipse.org/jetty/configure_9_0.dtd"> + +<!-- ============================================================= --> +<!-- Configure a TLS (SSL) Context Factory --> +<!-- This configuration must be used in conjunction with jetty.xml --> +<!-- and either jetty-https.xml or jetty-spdy.xml (but not both) --> +<!-- ============================================================= --> +<Configure id="sslContextFactory" class="org.eclipse.jetty.util.ssl.SslContextFactory"> + <Call class="org.apache.solr.util.configuration.SSLConfigurationsFactory" name="current"> + <Get name="keyStorePassword" id="keyStorePassword"/> + <Get name="trustStorePassword" id="trustStorePassword"/> + </Call> + <Set name="KeyStorePath"><Property name="solr.jetty.keystore" default="./etc/solr-ssl.keystore.jks"/></Set> + <Set name="KeyStorePassword"><Ref refid="keyStorePassword"/></Set> + <Set name="TrustStorePath"><Property name="solr.jetty.truststore" default="./etc/solr-ssl.keystore.jks"/></Set> + <Set name="TrustStorePassword"><Ref refid="trustStorePassword"/></Set> + <Set name="NeedClientAuth"><Property name="solr.jetty.ssl.needClientAuth" default="false"/></Set> + <Set name="WantClientAuth"><Property name="solr.jetty.ssl.wantClientAuth" default="false"/></Set> + <Set name="EndpointIdentificationAlgorithm"><Property name="solr.jetty.ssl.verifyClientHostName"/></Set> + <Set name="KeyStoreType"><Property name="solr.jetty.keystore.type" default="JKS"/></Set> + <Set name="TrustStoreType"><Property name="solr.jetty.truststore.type" default="JKS"/></Set> + + <!-- =========================================================== --> + <!-- Create a TLS specific HttpConfiguration based on the --> + <!-- common HttpConfiguration defined in jetty.xml --> + <!-- Add a SecureRequestCustomizer to extract certificate and --> + <!-- session information --> + <!-- =========================================================== --> + <New id="sslHttpConfig" class="org.eclipse.jetty.server.HttpConfiguration"> + <Arg><Ref refid="httpConfig"/></Arg> + <Call name="addCustomizer"> + <Arg><New class="org.eclipse.jetty.server.SecureRequestCustomizer"/></Arg> + </Call> + </New> + +</Configure> |