jetty-server/src/main/config/modules/ssl.mod - jetty/org.eclipse.jetty.project - Git at Google

 #
 # SSL Keystore module
 #

 [name]
 ssl

 [depend]
 server

 [xml]
 etc/jetty-ssl.xml
 etc/jetty-ssl-context.xml

 [files]
 http://git.eclipse.org/c/jetty/org.eclipse.jetty.project.git/plain/jetty-server/src/test/config/etc/keystore?id=${jetty.tag.version}|etc/keystore

 [ini-template]
 ### TLS(SSL) Connector Configuration

 ## Connector host/address to bind to
 # jetty.ssl.host=0.0.0.0

 ## Connector port to listen on
 # jetty.ssl.port=8443

 ## Connector idle timeout in milliseconds
 # jetty.ssl.idleTimeout=30000

 ## Connector socket linger time in seconds (-1 to disable)
 # jetty.ssl.soLingerTime=-1

 ## Number of acceptors (-1 picks default based on number of cores)
 # jetty.ssl.acceptors=-1

 ## Number of selectors (-1 picks default based on number of cores)
 # jetty.ssl.selectors=-1

 ## ServerSocketChannel backlog (0 picks platform default)
 # jetty.ssl.acceptorQueueSize=0

 ## Thread priority delta to give to acceptor threads
 # jetty.ssl.acceptorPriorityDelta=0

 ## Whether request host names are checked to match any SNI names
 # jetty.ssl.sniHostCheck=true

 ## max age in seconds for a Strict-Transport-Security response header (default -1)
 # jetty.ssl.stsMaxAgeSeconds=31536000

 ## include subdomain property in any Strict-Transport-Security header (default false)
 # jetty.ssl.stsIncludeSubdomains=true

 ### SslContextFactory Configuration
 ## Note that OBF passwords are not secure, just protected from casual observation
 ## See http://www.eclipse.org/jetty/documentation/current/configuring-security-secure-passwords.html

 ## Keystore file path (relative to $jetty.base)
 # jetty.sslContext.keyStorePath=etc/keystore

 ## Truststore file path (relative to $jetty.base)
 # jetty.sslContext.trustStorePath=etc/keystore

 ## Keystore password
 # jetty.sslContext.keyStorePassword=OBF:1vny1zlo1x8e1vnw1vn61x8g1zlu1vn4

 ## Keystore type and provider
 # jetty.sslContext.keyStoreType=JKS
 # jetty.sslContext.keyStoreProvider=

 ## KeyManager password
 # jetty.sslContext.keyManagerPassword=OBF:1u2u1wml1z7s1z7a1wnl1u2g

 ## Truststore password
 # jetty.sslContext.trustStorePassword=OBF:1vny1zlo1x8e1vnw1vn61x8g1zlu1vn4

 ## Truststore type and provider
 # jetty.sslContext.trustStoreType=JKS
 # jetty.sslContext.trustStoreProvider=

 ## whether client certificate authentication is required
 # jetty.sslContext.needClientAuth=false

 ## Whether client certificate authentication is desired
 # jetty.sslContext.wantClientAuth=false

 ## Whether cipher order is significant (since java 8 only)
 # jetty.sslContext.useCipherSuitesOrder=true

 ## To configure Includes / Excludes for Cipher Suites or Protocols see tweak-ssl.xml example at
 ## https://www.eclipse.org/jetty/documentation/current/configuring-ssl.html#configuring-sslcontextfactory-cipherSuites
	#
	# SSL Keystore module
	#

	[name]
	ssl

	[depend]
	server

	[xml]
	etc/jetty-ssl.xml
	etc/jetty-ssl-context.xml

	[files]
	http://git.eclipse.org/c/jetty/org.eclipse.jetty.project.git/plain/jetty-server/src/test/config/etc/keystore?id=${jetty.tag.version}\|etc/keystore

	[ini-template]
	### TLS(SSL) Connector Configuration

	## Connector host/address to bind to
	# jetty.ssl.host=0.0.0.0

	## Connector port to listen on
	# jetty.ssl.port=8443

	## Connector idle timeout in milliseconds
	# jetty.ssl.idleTimeout=30000

	## Connector socket linger time in seconds (-1 to disable)
	# jetty.ssl.soLingerTime=-1

	## Number of acceptors (-1 picks default based on number of cores)
	# jetty.ssl.acceptors=-1

	## Number of selectors (-1 picks default based on number of cores)
	# jetty.ssl.selectors=-1

	## ServerSocketChannel backlog (0 picks platform default)
	# jetty.ssl.acceptorQueueSize=0

	## Thread priority delta to give to acceptor threads
	# jetty.ssl.acceptorPriorityDelta=0

	## Whether request host names are checked to match any SNI names
	# jetty.ssl.sniHostCheck=true

	## max age in seconds for a Strict-Transport-Security response header (default -1)
	# jetty.ssl.stsMaxAgeSeconds=31536000

	## include subdomain property in any Strict-Transport-Security header (default false)
	# jetty.ssl.stsIncludeSubdomains=true

	### SslContextFactory Configuration
	## Note that OBF passwords are not secure, just protected from casual observation
	## See http://www.eclipse.org/jetty/documentation/current/configuring-security-secure-passwords.html

	## Keystore file path (relative to $jetty.base)
	# jetty.sslContext.keyStorePath=etc/keystore

	## Truststore file path (relative to $jetty.base)
	# jetty.sslContext.trustStorePath=etc/keystore

	## Keystore password
	# jetty.sslContext.keyStorePassword=OBF:1vny1zlo1x8e1vnw1vn61x8g1zlu1vn4

	## Keystore type and provider
	# jetty.sslContext.keyStoreType=JKS
	# jetty.sslContext.keyStoreProvider=

	## KeyManager password
	# jetty.sslContext.keyManagerPassword=OBF:1u2u1wml1z7s1z7a1wnl1u2g

	## Truststore password
	# jetty.sslContext.trustStorePassword=OBF:1vny1zlo1x8e1vnw1vn61x8g1zlu1vn4

	## Truststore type and provider
	# jetty.sslContext.trustStoreType=JKS
	# jetty.sslContext.trustStoreProvider=

	## whether client certificate authentication is required
	# jetty.sslContext.needClientAuth=false

	## Whether client certificate authentication is desired
	# jetty.sslContext.wantClientAuth=false

	## Whether cipher order is significant (since java 8 only)
	# jetty.sslContext.useCipherSuitesOrder=true

	## To configure Includes / Excludes for Cipher Suites or Protocols see tweak-ssl.xml example at
	## https://www.eclipse.org/jetty/documentation/current/configuring-ssl.html#configuring-sslcontextfactory-cipherSuites