mTLS
107 views
Skip to first unread message
James Loveday
Jun 16, 2021, 6:50:08 AM6/16/21
to jPOS Users
Hey guys, I have a question about mTLS with jpos.
How to do mTLS with jpos.
Does anybody have any advice on how to do this.
Many thanks for any advice given.
Alejandro Revilla
Jul 1, 2021, 2:47:34 PM7/1/21
to jPOS Users
jPOS can handle client certificate validation since early SSL days, before the fancy mTLS name :)
You just need to enable the client-auth property in your server definition, i.e.:
<?xml version="1.0" ?><server class="org.jpos.q2.iso.QServer" logger="Q2" name="jswitch-server"><attr name="port" type="java.lang.Integer">${server.port}</attr><attr name="socketFactory">org.jpos.iso.SunJSSESocketFactory</attr><channel class="org.jpos.iso.channel.CSChannel"logger="Q2" packager="org.jpos.iso.packager.GenericPackager"><property name="timeout" value="300000" /><property name="packager-config" value="jar:packager/iso87binary.xml" /></channel><property name="keystore" value="lib/jswitch.ks" /><property name="clientauth" value="true" /><property name="servername" value="jswitch" /><property name="storepassword" value="${hsm:storepassword}" /><property name="keypassword" value="${hsm:keypassword}" /><request-listener class="org.jpos.jswitch.RequestHandler" logger="Q2"><property name="timeout" value="60000" /><property name="queue" value="jSwitch.TxnMgr" /></request-listener></server>
--
--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage. Please support jPOS, contact: sa...@jpos.org
---
You received this message because you are subscribed to the Google Groups "jPOS Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jpos-users+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jpos-users/ef135fd8-95d8-40da-8954-d07f287b4f14n%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages