Tomcat8配置多个ssl连接器

vd2z7a6w  于 2021-10-10  发布在  Java
关注(0)|答案(1)|浏览(359)

我有一个tomcat server示例,它有两个服务,每个服务运行在不同的端口上:

  1. <Service name="service-1">
  2. <Connector port="8080" protocol="HTTP/1.1"
  3. connectionTimeout="20000"
  4. redirectPort="8443" maxThreads="300" />
  5. <Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
  6. <Engine name="service-1" defaultHost="localhost" >
  7. <Realm className="org.apache.catalina.realm.UserDatabaseRealm"
  8. resourceName="UserDatabase"/>
  9. <Host name="localhost" appBase="service-1"
  10. unpackWARs="true" autoDeploy="true"
  11. xmlValidation="false" xmlNamespaceAware="false">
  12. </Host>
  13. </Engine>
  14. </Service>
  15. <Service name="service-2">
  16. <Connector port="8181" protocol="HTTP/1.1"
  17. connectionTimeout="20000"
  18. redirectPort="8443" maxThreads="300" />
  19. <Connector port="8099" protocol="AJP/1.3" redirectPort="8443" />
  20. <Engine name="service-2" defaultHost="localhost">
  21. <Realm className="org.apache.catalina.realm.UserDatabaseRealm"
  22. resourceName="UserDatabase"/>
  23. <Host name="localhost" appBase="service-2"
  24. unpackWARs="true" autoDeploy="true"
  25. xmlValidation="false" xmlNamespaceAware="false">
  26. </Host>
  27. </Engine>
  28. </Service>

这两个服务分别在{public ip}:8080/service-1和{public ip}:8181/service-2上工作。现在,我想在此服务器上安装一个ssl证书来保护与两个端点的连接,我该如何做?我找到的所有相关答案都使用端口8443上的单个连接器:

  1. <Connector connectionTimeout="20000"
  2. acceptCount="100" scheme="https" secure="true"
  3. port="443" clientAuth="false" sslProtocol="TLS"
  4. keystoreFile="PATH_TO_KEY_STORE"
  5. keystorePass="KEY_STORE_PASS"
  6. keyAlias="KEY_STORE_ALIAS"/>

但是我需要使用多个连接器。

6pp0gazn

6pp0gazn1#

我刚刚更改了这两种服务的连接器,如下所示:

  1. <Connector port="8080" maxHttpHeaderSize="8192" maxThreads="100"
  2. minSpareThreads="25" maxSpareThreads="75"
  3. enableLookups="false" disableUploadTimeout="true"
  4. acceptCount="100" scheme="https" secure="true"
  5. SSLEnabled="true" clientAuth="false"
  6. sslProtocol="TLS" keyAlias="server"
  7. keystoreFile="cert.jks"
  8. keystorePass="password" />

  1. <Connector port="8181" maxHttpHeaderSize="8192" maxThreads="100"
  2. minSpareThreads="25" maxSpareThreads="75"
  3. enableLookups="false" disableUploadTimeout="true"
  4. acceptCount="100" scheme="https" secure="true"
  5. SSLEnabled="true" clientAuth="false"
  6. sslProtocol="TLS" keyAlias="server"
  7. keystoreFile="cert.jks"
  8. keystorePass="password" />

现在我的端点使用https。

展开查看全部

相关问题