我想将骆驼 cxf 网络服务公开为 https,我已经完成了以下配置并且部署成功,但我的连接被拒绝 https://localhost:8443
我的配置中是否缺少某些内容?
Iam 使用 Jboss 保险丝 6.3、Jboss Eap 6.4、骆驼 2.17 和 JDK 1.8
1.( 我使用以下命令创建了一个密钥库并将其放置在 C:\Temp\truststore 中:
keytool -genkey -keyalg RSA -sigalg SHA1withRSA -validity 730 -alias jbossfuse -keypass password -storepass password -keystore jbossfuse-dev.jks -dname cn=localhost
2.( 我已经在独立完整模式下启用了 https 连接器.xml如下所示:
<subsystem xmlns="urn:jboss:domain:web:2.2" default-virtual-server="default-host" native="false">
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl name="https" key-alias="trust" password="password" certificate-key-file="C:/Temp/truststore/jbossfuse-dev.jks"/>
</connector>
<virtual-server name="default-host" enable-welcome-root="true">
<alias name="localhost"/>
<alias name="example.com"/>
</virtual-server>
</subsystem>
套接字绑定 https :
<socket-binding name="https" port="8443"/>
4.( 端点配置:
<http:conduit name="*.http-conduit"
xmlns:sec="http://cxf.apache.org/configuration/security" xmlns="http://cxf.apache.org/transports/http/configuration">
<http:tlsClientParameters disableCNCheck="true">
<sec:trustManagers>
<sec:keyStore type="JKS" password="password"
file="C:\Temp\truststore\jbossfuse-dev.jks" />
</sec:trustManagers>
</http:tlsClientParameters>
</http:conduit>
<cxf:cxfEndpoint id="authentication" xmlns:nms="http://tempuri.org/"
address="/authenticationProxy"
endpointName="nms:BasicHttpBinding_ITestAuthenticationService"
serviceName="nms:TestAuthenticationService"
wsdlURL="wsdl/Authentication/Authentication.wsdl" loggingFeatureEnabled="true">
<cxf:properties>
<entry key="dataFormat" value="PAYLOAD" />
</cxf:properties>
</cxf:cxfEndpoint>
5.( 骆驼路线 xml:
<route id="AuthInproxy">
<from id="Authentication" uri="cxf:bean:authentication"/>
<doTry id="_doTry1">
<to uri="direct:AuthInProvider"/>
<doCatch id="_doCatch1">
<exception>java.lang.Exception</exception>
<handled>
<constant>true</constant>
</handled>
</doCatch>
</doTry>
</route>
网站.xml :
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns="http://java.sun.com/xml/ns/javaee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/javaee
http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
version="2.5">
<display-name>ssl-cxf</display-name>
<context-param>
<param-name>contextConfigLocation</param-name>
<param-value>classpath:META-INF/spring/*.xml</param-value>
</context-param>
<listener>
<listener-class>org.springframework.web.context.ContextLoaderListener</listener-class>
</listener>
<servlet>
<servlet-name>CXFServlet</servlet-name>
<servlet-class>org.apache.cxf.transport.servlet.CXFServlet</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>CXFServlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
</web-app>
看起来您在 HTTPS 连接器 SSL 配置(信任(上指定的密钥别名与您创建密钥库 (jbossfuse( 时使用的别名不匹配。
尝试:
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl name="https" key-alias="jbossfuse" password="password" certificate-key-file="C:/Temp/truststore/jbossfuse-dev.jks"/>
</connector>