Bamboo 2.2 : Running Bamboo over HTTPS
This page last changed on Apr 23, 2008 by bmccoy.
This document is a guide to configuring Bamboo Standalone with basic HTTPS authentication. For further reference please visit the Jetty page on configuring SSL with Jetty. 1. Generating a certificate with the JDK keytoolThe simplest way to generate keys and certificates is to use the keytool application that comes with the JDK, as it generates keys and certificates directly into the keystore. The following command will generate a key pair and certificate directly into a keystore: keytool -keystore keystore -alias jetty -genkey -keyalg RSA This command will prompt for information about the certificate and for passwords to protect both the keystore and the keys within it. The only mandatory response is to provide the fully qualified host name of the server at the "first and last name" prompt. Now, we need to configure configure an SSL listener. 2. Configuring JettyUsing the Sun JVM, add the SunJsseListener as a HttpListeners, In the ../<Bamboo_Application_Directory>/webapp/WEB-INF/classes/jetty.xml file add the following lines. If you are using Bamboo 1.2.4 (or earlier)<Call name="addListener"> <Arg> <New class="org.mortbay.http.SunJsseListener"> <Set name="Port">8443</Set> <Set name="Keystore"><SystemProperty name="jetty.home" default="."/>/keystore</Set> <Set name="Password">password</Set> <Set name="KeyPassword">password</Set> </New> </Arg> </Call> If you are using Bamboo 2.0<Call name="addConnector"> <Arg> <New class="org.mortbay.jetty.security.SslSocketConnector"> <Set name="Port">8443</Set> <Set name="Keystore"><SystemProperty name="jetty.home" default="."/>/keystore</Set> <Set name="Password">password</Set> <Set name="KeyPassword">password</Set> </New> </Arg> </Call> The keystore file in this example is given relative to the Bamboo Application Directory. Please ensure that jcert.jar, jnet.jar and jsse.jar are on your classpath. 3. Getting Bamboo to use the jetty.xml fileFollow this Knowledge Base article, to instruct Bamboo to use the jetty.xml file configured in step 2. |
![]() |
Document generated by Confluence on Mar 09, 2009 17:07 |