SSL select channel connector
SSL select channel connector.
Extension of the select channel connector that adds SSL support to the connection. Use this connector if you want to use HTTPS for the communication. Note that this requires a (valid) SSL certificate.
This connector uses efficient buffers with a non blocking threading model. Direct buffers are used and threads are only allocated to connections with requests. Synchronization is used to simulate blocking for the servlet API, and any unflushed content at the end of request handling is written asynchronously.
Host
The hostname representing the interface to which this connector will bind, or empty for all interfaces.
Port
The port to listen of for connections or 0
if any available port may be used.
The standard port for the HTTPS protocol is 443
.
Required
Key store path
Path to the Java key store containing the SSL certificate for this connector.
Required
Key store
Select the Java key store containing the SSL certificate for this connector.
Required
Key store password
Password of the Java key store containing the SSL certificate for this connector.
Required
Certificate alias
Alias of the SSL certificate for this connector.
If the key store contains multiple certificates, you can use this property to specify which certificate should be used for this connector.
Optional
Key manager password
The password for the specific key within the key store.
Usually keys use the same password (or none) as the key store and you don't need this property, but when a key has a different password you can specify it here.
Optional
Trust store path
Path to the Java trust store for this connector.
Optional
Trust store
Select the Java trust store for this connector.
Optional
Trust store password
Password of the Java trust store for this connector.
Optional
Need client auth
Set to true
if SSL needs client authentication.
Default is false
.
Want client auth
Set to true
if SSL wants client authentication.
Default is false
.
Validate certs
Set to true
if SSL certificates have to be validated, for example checking the expiration date. Invalid certificates will cause this connector to fail during startup.
Default is false
.
Validate peer certs
Set to true
if SSL certificates of the peer have to be validated, for example checking the expiration date. Invalid peer certificates will cause the connection to be rejected.
Default is false
.
Protocol
The SSL protocol to use.
Default is TLS.