[
https://issues.apache.org/jira/browse/FEDIZ-241?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16842259#comment-16842259
]
Colm O hEigeartaigh commented on FEDIZ-241:
-------------------------------------------
Thanks [~amarkevich] - I've made all those changes apart from the last one
"extend HTTPS configuration for Tomcat 9". It's not clear to me what's missing
here, could you expand a bit?
> Outdated documentation
> ----------------------
>
> Key: FEDIZ-241
> URL: https://issues.apache.org/jira/browse/FEDIZ-241
> Project: CXF-Fediz
> Issue Type: Documentation
> Affects Versions: 1.5.0
> Reporter: Alexey Markevich
> Priority: Major
>
> 1. http://cxf.apache.org/fediz-idp-11.html
> - {code}webapps/fediz-idp-sts/WEB-INF/passwords.xml{code}
> {code}webapps/fediz-idp-sts/WEB-INF/userClaims.xml{code}
> to
> {code}webapps/fediz-idp-sts/WEB-INF/data/passwords.xml{code}
> {code}webapps/fediz-idp-sts/WEB-INF/data/userClaims.xml{code}
> - {code}keystoreFile="idp-ssl-server.jks"{code}
> to
> {code}keystoreFile="idp-ssl-key.jks"{code}
> - HTTPS configuration should be extended with
> {code}clientAuth="want" truststoreFile="idp-ssl-trust.jks"
> truststorePass="ispass"{code}
> 2. http://cxf.apache.org/fediz-tomcat.html
> - {code}<Valve
> className="org.apache.cxf.fediz.tomcat8.FederationAuthenticator"{code}
> to
> {code}<Valve
> className="org.apache.cxf.fediz.tomcat.FederationAuthenticator"{code}
> - extend HTTPS configuration for Tomcat 9:
> {code}
> <Connector
> protocol="org.apache.coyote.http11.Http11NioProtocol"
> port="8443" maxThreads="200"
> scheme="https" secure="true" SSLEnabled="true"
> keystoreFile="rp-ssl-key.jks" keystorePass="tompass"
> clientAuth="false" sslProtocol="TLS"/>
> {code}
> Values comes from
> https://tomcat.apache.org/tomcat-9.0-doc/ssl-howto.html#Edit_the_Tomcat_Configuration_File
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
