public interface SecureJettyConfiguration extends JettyConfiguration
SecureJettyMixin
.
Only the three keystore related properties are mandatory, all the other ones have sensible defaults.Identity.IdentityMixin
contextPath, gracefullShutdownTimeout, hostName, lowResourceMaxIdleTime, maxFormContentSize, maxIdleTime, port, requestHeaderSize, resourcePath, responseBufferSize, responseHeaderSize, sendDateHeader, sendServerVersion, statistics, virtualHosts, welcomeFiles
Property<String> keystoreType()
SecureJettyService
certificate.Property<String> keystorePath()
SecureJettyService
certificate.@UseDefaults Property<String> keystorePassword()
SecureJettyService
certificate.@Optional Property<String> certAlias()
SecureJettyService
certificate.
If not set, the first certificate found in the keystore is used.SecureJettyService
certificate.@Optional Property<String> truststoreType()
SecureJettyService
.@Optional Property<String> truststorePath()
SecureJettyService
.@UseDefaults Property<String> truststorePassword()
SecureJettyService
.@UseDefaults Property<Boolean> wantClientAuth()
SecureJettyService
wants client authentication.
Defaults to false. If set to true, the SecureJettyService
will expose the fact that it can handle client
certificate based authentication.SecureJettyService
wants client authentication.@UseDefaults Property<Boolean> needClientAuth()
SecureJettyService
needs client authentication.
Defaults to false. If set to true, only mutually authentified connections will be accepted.SecureJettyService
needs client authentication.@Optional Property<String> secureRandomAlgorithm()
SecureRandom
for SSL operations.
Default JVM algorithm is used if omitted.SecureRandom
for SSL operations.@Optional Property<String> includeCipherSuites()
@Optional Property<String> excludeCipherSuites()
@Optional Property<Boolean> cacheSslSessions()
@UseDefaults Property<Boolean> allowRenegotiation()
@Optional Property<Integer> maxCertPathLength()
@UseDefaults Property<Boolean> validateServerCert()
SecureJettyService
certificate MUST be PKIX validated.
IMPORTANT:
Defaults to false.
SecureJettyService
certificate MUST be PKIX validated.@UseDefaults Property<Boolean> validatePeerCerts()
IMPORTANT:
Defaults to false.
@Optional Property<String> crlFilePath()
@UseDefaults Property<Boolean> enableCRLDP()
@UseDefaults Property<Boolean> enableOCSP()