I'll check my config later and give you an answer asap. At a client's place now.
Also... you should have started a new thread. This one is one I started a few YEARS ago when the Jetty team was implementing SNI. -- Lobos Studios | Phone: 877.919.4WEB | LobosStudios.com | Facebook.com/LobosStudios | @LobosStudios Web Development - Mobile Development - Helpdesk/Tech Support - Computer Sales & Service Acer Authorized Reseller - Computers, Windows and Android Tablets, Accessories
Steve Sobol - CEO, Senior Developer and Server Jockey steve@xxxxxxxxxxxxxxxxGood day!
I have two certificates installed in the keystore my Jetty (v. 9.3.2) is using. How to ensure that SNI is enabled? In my case what I see in the browser that the web page with the first certificate is displayed as a secure connection and the second page says that the connection is insecure. But looking at the source code of the SslContextFactory the _certHosts Map should accumulate the 2 aliases I have in my keystore and thus the condition whether that map is not empty should be true.
I mean is there a specific setting in the jetty-ssl-context.xml I should provide to make sure that two urls (hostnames) shall map the the two aliases in the keystore to use a specific certificate.
View this message in context: Re: Jetty SNI - Where's ExtendedSslContextFactory?
Sent from the Jetty User mailing list archive at Nabble.com.
|