Silvio, I'm sorry, but we are going to need more info that that. Can you describe precisely the setup you have with regards to what certs are in your keystore and what sort of cert they are (eg wild cards etc.). Then give us an example of exactly what you mean by random cert?
Typically jetty tries to defer as much as possible to the default implementations, so if we can't select a cert by SNI, we are probably letting the JRE libs do the selection... but perhaps we are doing something wrong... so do tell us more. cheers On Mon, 8 Jul 2019 at 18:56, Silvio Bierman <[email protected]> wrote: > Hello all, > > I am using Jetty as my HTTPS front-end and have a keystore containing > multiple certificates which are selected via Jetty SNI support. But when > a request without proper SNI info arrives Jetty presents a sort-of > random certificate. Is there a way to prevent this and just have the > request fail instead? > > Thanks in advance, > > Silvio > _______________________________________________ > jetty-users mailing list > [email protected] > To change your delivery options, retrieve your password, or unsubscribe > from this list, visit > https://www.eclipse.org/mailman/listinfo/jetty-users > -- Greg Wilkins <[email protected]> CTO http://webtide.com
_______________________________________________ jetty-users mailing list [email protected] To change your delivery options, retrieve your password, or unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/jetty-users
