I got it to work. I put different engine-factories on each port with
DIFFERENT engine-factory id's and the same "cxf" bus name. It seems that
this "id" should really be on the engine instead of the factory - no?
anyway, it does seem to work - if you want just "http", simply do NOT
declare an engine-factory for it. here is the code for http, https, https:
{code}
<http:destination name="pdqSupplierEndpoint">
</http:destination>
<cxf:cxfEndpoint id="pdqSupplierEndpoint"
address="http://${nextgate.ms.hl7v3.pdq.listenaddr}:${nextgate.ms.hl7v3.pdq.listenport}/services/PDQSupplier";
serviceClass="ihe.iti.pdqv3._2007.PDQSupplierPortType">
<cxf:binding>
<soap:soapBinding mtomEnabled="true" version="1.2" />
</cxf:binding>
</cxf:cxfEndpoint>
<httpj:engine-factory id="efpixManager" bus="cxf">
<httpj:engine port="${nextgate.ms.hl7v3.pix.listenport}">
<httpj:tlsServerParameters>
<sec:keyManagers
keyPassword="${nextgate.ms.sec.privatekey.password}">
<sec:keyStore type="JKS"
password="${nextgate.ms.sec.keystore.password}"
file="${nextgate.ms.sec.keystore.file}" />
</sec:keyManagers>
<sec:trustManagers>
<sec:keyStore type="JKS"
password="${nextgate.ms.sec.truststore.password}"
file="${nextgate.ms.sec.truststore.file}" />
</sec:trustManagers>
<sec:cipherSuitesFilter>
<sec:include>.*_EXPORT_.*</sec:include>
<sec:include>.*_EXPORT1024_.*</sec:include>
<sec:include>.*_WITH_DES_.*</sec:include>
<sec:include>.*_WITH_NULL_.*</sec:include>
<sec:exclude>.*_DH_anon_.*</sec:exclude>
</sec:cipherSuitesFilter>
<sec:clientAuthentication want="false"
required="false" />
</httpj:tlsServerParameters>
<httpj:sessionSupport>true</httpj:sessionSupport>
</httpj:engine>
</httpj:engine-factory>
<cxf:cxfEndpoint id="pixManagerEndpoint"
address="https://${nextgate.ms.hl7v3.pix.listenaddr}:${nextgate.ms.hl7v3.pix.listenport}/services/PIXManager";
serviceClass="ihe.iti.pixv3._2007.PIXManagerPortType">
<cxf:binding>
<soap:soapBinding mtomEnabled="true" version="1.2" />
</cxf:binding>
</cxf:cxfEndpoint>
<httpj:engine-factory id="efxcpdManager" bus="cxf">
<httpj:engine port="${nextgate.ms.hl7v3.xcpd.listenport}">
<httpj:tlsServerParameters>
<sec:keyManagers
keyPassword="${nextgate.ms.sec.privatekey.password}">
<sec:keyStore type="JKS"
password="${nextgate.ms.sec.keystore.password}"
file="${nextgate.ms.sec.keystore.file}" />
</sec:keyManagers>
<sec:trustManagers>
<sec:keyStore type="JKS"
password="${nextgate.ms.sec.truststore.password}"
file="${nextgate.ms.sec.truststore.file}" />
</sec:trustManagers>
<sec:cipherSuitesFilter>
<sec:include>.*_EXPORT_.*</sec:include>
<sec:include>.*_EXPORT1024_.*</sec:include>
<sec:include>.*_WITH_DES_.*</sec:include>
<sec:include>.*_WITH_NULL_.*</sec:include>
<sec:exclude>.*_DH_anon_.*</sec:exclude>
</sec:cipherSuitesFilter>
<sec:clientAuthentication want="false"
required="false" />
</httpj:tlsServerParameters>
<httpj:sessionSupport>true</httpj:sessionSupport>
</httpj:engine>
</httpj:engine-factory>
<cxf:cxfEndpoint id="xcpdRespondingGatewayEndpoint"
address="https://${nextgate.ms.hl7v3.xcpd.listenaddr}:${nextgate.ms.hl7v3.xcpd.listenport}/services/RespondingGateway";
serviceClass="ihe.iti.xcpd._2009.RespondingGatewayPortType">
<cxf:binding>
<soap:soapBinding mtomEnabled="true" version="1.2" />
</cxf:binding>
<cxf:inInterceptors>
<ref bean="loggingInInterceptor" />
<ref bean="mustUnderstandSAMLHeadersInterceptor" />
</cxf:inInterceptors>
<cxf:outInterceptors>
<ref bean="samlAssertionInterceptor" />
<ref bean="loggingOutInterceptor" />
</cxf:outInterceptors>
</cxf:cxfEndpoint>
{code}
--
View this message in context:
http://camel.465427.n5.nabble.com/Mixed-HTTP-and-HTTPS-Listeners-Using-CXF-tp5722606p5722612.html
Sent from the Camel - Users mailing list archive at Nabble.com.
