gpt4 book ai didi

java - Jboss eap 6.4 https 配置无法监听端口 8443

转载 作者:行者123 更新时间:2023-12-02 04:33:55 30 4
gpt4 key购买 nike

我正在使用 jboss-eap-6.4 来部署我的 Web 应用程序。我想让我的服务器支持 https 请求。所以我使用以下命令生成了 keystore :

 keytool -genkey -v -keystore foo.keystore -alias foo

我将上述 keystore 文件移至 D:\\jboss-eap-6.4\\standalone\\configuration\\ 下,并在 standalone.xml 中添加了以下连接器文件:

  <subsystem xmlns="urn:jboss:domain:web:2.2" default-virtual-server="default-host" native="false">
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http"/>
<connector name="https" socket-binding="https" scheme="https" protocol="HTTP/1.1" secure="true" enable-lookups="false">
<ssl name="foo-ssl" protocol="TLSv1" certificate-key-file="D:\\jboss-eap-6.4\\standalone\\configuration\\foo.keystore" key-alias="foo" password="secret"/>
</connector>
<virtual-server name="default-host" enable-welcome-root="true">
<alias name="localhost"/>
<alias name="example.com"/>
</virtual-server>
</subsystem>

https 端口配置为端口 8443:

<socket-binding-group name="standard-sockets" default-interface="public" port-offset="${jboss.socket.binding.port-offset:0}">
<socket-binding name="management-native" interface="management" port="${jboss.management.native.port:9999}"/>
<socket-binding name="management-http" interface="management" port="${jboss.management.http.port:9990}"/>
<socket-binding name="management-https" interface="management" port="${jboss.management.https.port:9443}"/>
<socket-binding name="ajp" port="8009"/>
<socket-binding name="http" port="8080"/>
<socket-binding name="https" port="8443"/>
<socket-binding name="remoting" port="4447"/>
<socket-binding name="txn-recovery-environment" port="4712"/>
<socket-binding name="txn-status-manager" port="4713"/>
<outbound-socket-binding name="mail-smtp">
<remote-destination host="localhost" port="25"/>
</outbound-socket-binding>
</socket-binding-group>

然后我尝试使用端口号 8443(通过 https)访问该 URL,但应用程序无法监听该端口。知道我在这里缺少什么吗?

错误详细信息:在 IE Edge 中:

Can’t connect securely to this page
This might be because the site uses outdated or unsafe TLS security settings. If this keeps happening, try contacting the website’s owner.

Your TLS security settings aren’t set to the defaults, which could also be causing this error.
Try this:
Go back to the last page

在火狐浏览器中:

Secure Connection Failed

An error occurred during a connection to hddt0719:8443. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP

The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the website owners to inform them of this problem.

Learn more…

Report errors like this to help Mozilla identify and block malicious sites

最佳答案

你应该改变方式, keystore 是生成的,使用命令

 keytool -genkey -keystore foo.keystore -alias foo -keyalg "RSA" -sigalg "SHA1withRSA" -keysize 2048 -validity 365

默认情况下keytool会生成DSA类型的 keystore ,您应该提供RSA类型的 keystore 。我检查了两种类型的 key ,我的 jBoss 使用以建议的方式生成的 RSA ssl keystore 。您的 jBoss 配置正确。

关于java - Jboss eap 6.4 https 配置无法监听端口 8443,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/56560161/

30 4 0
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com