Details
-
Bug
-
Resolution: Obsolete
-
Major
-
None
-
None
-
None
Description
Description of problem:
- Configure JBoss to only allow IIOP connections over SSL
- It is possible to do this, but the configuration is confusing (possibly a bug)
Details of the setup/issue:
- When enabling SSL for jacorb, it normally listens on both the non-ssl port and the ssl port
- Setting server-requires="ServerAuth" causes the server to stop listening on non-ssl port
- However, the IOR tells client to connect to non-ssl port ...even though its not listening on it
String lookup = "corbaname:iiop:" + host + ":" + port +"#" + ejbLookupPath;
// lookup the IIOP EJB
Object iiopObj = ctx.lookup(lookup);
// the call to the EJB will fail due to the port being wrong non-ssl vs ssl
- The workaround is to use the following ior-setting to correct the port settings in the IOR
/subsystem=jacorb/ior-settings=default/setting=transport-config:add(confidentiality=required)
- Shouldn't setting "server-requires=ServerAuth" change the port info in the IOR?
Attachments
Issue Links
- is duplicated by
-
WFLY-5273 [GSS] (6.4.z) EJB IOR contains wrong port (non-SSL port) information when SSL is required
- Closed