[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
[
List Home]
[jetty-users] TLS ALPN ACME Lets Encrypt challange
|
Dear community,
I am looking into the Lets Encrypt TLS-ALPN-01
challenge and want to create a ALPN TLS extension for Jetty 9.
Does anybody already have any experience with
this or even already created an open source connection factory?
I am looking into the HTTP2 configurations I
can find online for inspiration, can I stack the ALPN challange
ontop of the default SSL/TLS connection?
My config so far:
<Call id="wanhttpsConnector" name="addConnector">
<Arg>
<New
class="org.eclipse.jetty.server.ServerConnector">
<Arg name="server">
<Ref refid="Server" />
</Arg>
<Arg name="acceptors" type="int">
<Property name="ssl.acceptors"
default="-1"/>
</Arg>
<Arg name="selectors" type="int">
<Property name="ssl.selectors"
default="-1"/>
</Arg>
<Arg name="factories">
<Array
type="org.eclipse.jetty.server.ConnectionFactory">
<Item>
<New
class="org.eclipse.jetty.server.SslConnectionFactory">
<Arg
name="next">alpn</Arg>
<Arg name="sslContextFactory">
<Ref
refid="wansslContextFactory"/>
</Arg>
</New>
</Item>
<Item>
<New id="alpn"
class="org.eclipse.jetty.alpn.server.ALPNServerConnectionFactory">
<Arg type="String">
<Property
name="jetty.alpn.protocols" deprecated="alpn.protocols" default=""
/>
</Arg>
<Set name="defaultProtocol">
<Property
name="jetty.alpn.defaultProtocol" deprecated="alpn.defaultProtocol"
/>
</Set>
</New>
</Item>
<Item>
<New
class="org.eclipse.jetty.server.SslConnectionFactory">
<Arg
name="next">http/1.1</Arg>
<Arg name="sslContextFactory">
<Ref
refid="wansslContextFactory"/>
</Arg>
</New>
</Item>
<Item>
<New
class="org.eclipse.jetty.server.HttpConnectionFactory">
<Arg name="config">
<Ref refid="httpConfig"/>
</Arg>
</New>
</Item>
</Array>
</Arg>
<Set name="name">0.0.0.0:443</Set>
<Set name="host">
<Property name="jetty.host"
default="0.0.0.0"/>
</Set>
<Set name="port">
<Property name="https.port"
default="443"/>
</Set>
<Set name="idleTimeout">
<Property name="https.timeout"
default="30000"/>
</Set>
<Set name="acceptorPriorityDelta">
<Property name="ssl.acceptorPriorityDelta"
default="0"/>
</Set>
<Set name="acceptQueueSize">
<Property name="https.acceptQueueSize"
default="0"/>
</Set>
</New>
</Arg>
</Call>
Met
vriendelijke groet / Mit freundlichen Grüßen / Kind regards,
Maurice
Betzel
Principal Software Engineer