61 lines
3.9 KiB
XML
61 lines
3.9 KiB
XML
<?xml version="1.0"?><!DOCTYPE Configure PUBLIC "-//Jetty//Configure//EN" "http://www.eclipse.org/jetty/configure_9_3.dtd">
|
|
|
|
<!-- ============================================================= --><!-- Base SSL configuration --><!-- This configuration needs to be used together with 1 or more --><!-- of jetty-https.xml or jetty-http2.xml --><!-- ============================================================= -->
|
|
<Configure id="Server" class="org.eclipse.jetty.server.Server">
|
|
|
|
<!-- =========================================================== -->
|
|
<!-- Add an SSL Connector with no protocol factories -->
|
|
<!-- =========================================================== -->
|
|
<Call name="addConnector">
|
|
<Arg>
|
|
<New id="sslConnector" class="org.eclipse.jetty.server.ServerConnector">
|
|
<Arg name="server"><Ref refid="Server" /></Arg>
|
|
<Arg name="acceptors" type="int"><Property name="jetty.ssl.acceptors" deprecated="ssl.acceptors" default="-1"/></Arg>
|
|
<Arg name="selectors" type="int"><Property name="jetty.ssl.selectors" deprecated="ssl.selectors" default="-1"/></Arg>
|
|
<Arg name="factories">
|
|
<Array type="org.eclipse.jetty.server.ConnectionFactory">
|
|
<!-- uncomment to support proxy protocol
|
|
<Item>
|
|
<New class="org.eclipse.jetty.server.ProxyConnectionFactory"/>
|
|
</Item>-->
|
|
</Array>
|
|
</Arg>
|
|
|
|
<Set name="host"><Property name="jetty.ssl.host" deprecated="jetty.host" default="@ADEMPIERE_APPS_SERVER@"/></Set>
|
|
<Set name="port"><Property name="jetty.ssl.port" deprecated="ssl.port" default="@ADEMPIERE_SSL_PORT@" /></Set>
|
|
<Set name="idleTimeout"><Property name="jetty.ssl.idleTimeout" deprecated="ssl.timeout" default="30000"/></Set>
|
|
<Set name="acceptorPriorityDelta"><Property name="jetty.ssl.acceptorPriorityDelta" deprecated="ssl.acceptorPriorityDelta" default="0"/></Set>
|
|
<Set name="acceptQueueSize"><Property name="jetty.ssl.acceptQueueSize" deprecated="ssl.acceptQueueSize" default="0"/></Set>
|
|
<Set name="reuseAddress"><Property name="jetty.ssl.reuseAddress" default="true"/></Set>
|
|
<Set name="acceptedTcpNoDelay"><Property name="jetty.ssl.acceptedTcpNoDelay" default="true"/></Set>
|
|
<Set name="acceptedReceiveBufferSize"><Property name="jetty.ssl.acceptedReceiveBufferSize" default="-1"/></Set>
|
|
<Set name="acceptedSendBufferSize"><Property name="jetty.ssl.acceptedSendBufferSize" default="-1"/></Set>
|
|
<Get name="SelectorManager">
|
|
<Set name="connectTimeout"><Property name="jetty.ssl.connectTimeout" default="15000"/></Set>
|
|
</Get>
|
|
</New>
|
|
</Arg>
|
|
</Call>
|
|
|
|
<!-- =========================================================== -->
|
|
<!-- Create a TLS specific HttpConfiguration based on the -->
|
|
<!-- common HttpConfiguration defined in jetty.xml -->
|
|
<!-- Add a SecureRequestCustomizer to extract certificate and -->
|
|
<!-- session information -->
|
|
<!-- =========================================================== -->
|
|
<New id="sslHttpConfig" class="org.eclipse.jetty.server.HttpConfiguration">
|
|
<Arg><Ref refid="httpConfig"/></Arg>
|
|
<Call name="addCustomizer">
|
|
<Arg>
|
|
<New class="org.eclipse.jetty.server.SecureRequestCustomizer">
|
|
<Arg name="sniRequired" type="boolean"><Property name="jetty.ssl.sniRequired" default="false"/></Arg>
|
|
<Arg name="sniHostCheck" type="boolean"><Property name="jetty.ssl.sniHostCheck" default="true"/></Arg>
|
|
<Arg name="stsMaxAgeSeconds" type="int"><Property name="jetty.ssl.stsMaxAgeSeconds" default="-1"/></Arg>
|
|
<Arg name="stsIncludeSubdomains" type="boolean"><Property name="jetty.ssl.stsIncludeSubdomains" default="false"/></Arg>
|
|
</New>
|
|
</Arg>
|
|
</Call>
|
|
</New>
|
|
|
|
</Configure>
|