After doing some digging, it would appear that both of these properties need to be set to the keystore password. org.ops4j.pax.web.ssl.password org.ops4j.pax.web.ssl.keypassword I’m still curious about the difference between: org.osgi.service.http.secure.enabled=true and org.osgi.service.https.enabled=true Scott
From: Leschke, Scott [mailto:slesc...@medline.com] Sent: Thursday, October 25, 2018 11:21 AM To: user@karaf.apache.org Subject: RE: Enabling HTTPS Actually, I saw most of that information at: https://ops4j1.jira.com/wiki/spaces/paxweb/pages/12059277/SSL+Configuration It says, Password used for keystore integrity check. Where does that pwd come from? The example in the Karaf doc doesn’t show (it’s foo). From: Achim Nierbeck <bcanh...@googlemail.com> Sent: Thursday, October 25, 2018 11:09 AM To: user@karaf.apache.org Subject: Re: Enabling HTTPS Hi, I'm sure you'll find some of your questions answered here: http://ops4j.github.io/pax/web/SNAPSHOT/User-Guide.html#ssl-configuration regards, Achim Am Do., 25. Okt. 2018 um 17:59 Uhr schrieb Leschke, Scott <slesc...@medline.com<mailto:slesc...@medline.com>>: I’m attempting to get https working by following the instructions at: https://karaf.apache.org/manual/latest/webcontainer I’m confused by the setting for org.ops4j.pax.web.ssl.password What is that intended to be. How is it defined? Also, what’s the difference between these: org.osgi.service.http.secure.enabled=true and org.osgi.service.https.enabled=true ? Anyway, I’m getting the following: Caused by: java.security.UnrecoverableKeyException: failed to decrypt safe contents entry: javax.crypto.BadPaddingException: Given final block not properly padded. Such issues can arise if a bad key is used during decryption. My org.ops4j.pax.web.cfg (slightly obfuscated) is shown below. Scott org.osgi.service.http.enabled=false org.osgi.service.http.port=8181 org.osgi.service.http.port.secure=8443 org.osgi.service.http.secure.enabled=true org.osgi.service.https.enabled=true org.ops4j.pax.web.config.file=${karaf.etc}/jetty.xml org.apache.karaf.features.configKey=org.ops4j.pax.web org.ops4j.pax.web.ssl.keystore=c:/KeyStorePath org.ops4j.pax.web.ssl.password=?? Not sure what this is exactly org.ops4j.pax.web.ssl.keypassword=MyKeystorePWD javax.servlet.context.tempdir=${karaf.data}/pax-web-jsp -- Apache Member Apache Karaf <http://karaf.apache.org/> Committer & PMC OPS4J Pax Web <http://wiki.ops4j.org/display/paxweb/Pax+Web/> Committer & Project Lead blog <http://notizblog.nierbeck.de/> Co-Author of Apache Karaf Cookbook <http://bit.ly/1ps9rkS> Software Architect / Project Manager / Scrum Master