CMS diff: EJB over SSL

Thu, 08 Nov 2012 06:48:12 -0800 

Clone URL (Committers only):
https://cms.apache.org/redirect?new=anonymous;action=diff;uri=http://openejb.apache.org/ejb-over-ssl.mdtext



Index: trunk/content/ejb-over-ssl.mdtext
===================================================================
--- trunk/content/ejb-over-ssl.mdtext   (revision 1406871)
+++ trunk/content/ejb-over-ssl.mdtext   (working copy)
@@ -19,7 +19,7 @@
 
     Properties p = new Properties();
     p.put("java.naming.factory.initial", 
"org.apache.openejb.client.RemoteInitialContextFactory");
-    p.put("java.naming.provider.url", "http://127.0.0.1:8080/tomee/ejb";);
+    p.put("java.naming.provider.url", "https://127.0.0.1:8443/tomee/ejb";);
     // user and pass optional
     p.put("java.naming.security.principal", "myuser");
     p.put("java.naming.security.credentials", "mypass");
@@ -28,7 +28,15 @@
 
     MyBean myBean = (MyBean) ctx.lookup("MyBeanRemote");
 
+If you setup Tomcat (TomEE) to use the APR (Apache Portable Runitme) 
implementation of SSL on the server side, and you have connection issues like 
connection reset, you'll have to set 'https.protocols' system property.
+'https.protocols' property must be set according to the SSLProtocol parameter 
of the HTTPS connector configuration :
 
+[http://tomcat.apache.org/tomcat-7.0-doc/config/http.html][1]
+
+You can also have a look a this : 
+
+[http://docs.oracle.com/javase/1.4.2/docs/guide/plugin/developer_guide/faq/troubleshooting.html][2]
+
 # ejbds
 
 The SSL version of the `ejbd` protocol is called `ejbds` and is enabled and 
setup in OpenEJB Standalone by default.
@@ -81,4 +89,8 @@
 
     
-Dopenejb.client.enabledCipherSuites=TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_AES_128_CBC_SHA
 
-The final piece is to make sure your server has available a private 
certificate that the the client can trust. This can be certificate from an 
authority or a self signed certificate. The javax.net.ssl.trustStore and 
javax.net.ssl.keyStore JVM properties [are used to set this 
up.](http://fusesource.com/docs/broker/5.3/security/SSL-SysProps.html)
\ No newline at end of file
+The final piece is to make sure your server has available a private 
certificate that the the client can trust. This can be certificate from an 
authority or a self signed certificate. The javax.net.ssl.trustStore and 
javax.net.ssl.keyStore JVM properties [are used to set this 
up.](http://fusesource.com/docs/broker/5.3/security/SSL-SysProps.html)
+
+
+  [1]: http://tomcat.apache.org/tomcat-7.0-doc/config/http.html
+  [2]: 
http://docs.oracle.com/javase/1.4.2/docs/guide/plugin/developer_guide/faq/troubleshooting.html
\ No newline at end of file

Reply via email to