Luis Morales Alcala
2018-05-16 10:47:23 UTC
Hi Joakim
I have read a lot about this and on version 9.x the hostname verification is enabled by default in the server.
I need to disable this verification in the server but the method setEndpointIdentificationAlgorithm is not working well.
SslContextFactory.setEndpointIdentificationAlgorithm(null);
________________________________
De: jetty-users-***@eclipse.org <jetty-users-***@eclipse.org> en nombre de Joakim Erdfelt <***@webtide.com>
Enviado: miércoles, 16 de mayo de 2018 12:44
Para: Jetty @ Eclipse developer discussion list
Cc: jetty-***@eclipse.org
Asunto: Re: [jetty-users] [jetty-dev] How to disable hostname validation on jetty embedded server 9.x version
Server doesn't do that, the client does.
Joakim Erdfelt / ***@webtide.com<mailto:***@webtide.com>
On Wed, May 16, 2018 at 5:43 AM, Luis Morales Alcala <***@vectoritcgroup.com<mailto:***@vectoritcgroup.com>> wrote:
Dear All,
Can someone help me with this problem?
________________________________
De: Luis Morales Alcala
Enviado: miércoles, 9 de mayo de 2018 16:38
Para: jetty-***@eclipse.org<mailto:jetty-***@eclipse.org>; jetty-***@eclipse.org<mailto:jetty-***@eclipse.org>
Asunto: How to disable hostname validation on jetty embedded server 9.x version
Dear all
Currently I have a Verison 9.3.x Embedded Jetty server working perfectly offering websockets communications through port 8080 and through 8443 for secure communications.
I need to disable the validation of the hostname as well as the certificates but I can not disable it.
I am using the method setTrustAll and setEndpointIdentificationAlgorithm(null) but the hostname verification is still activated.
sslContextFactory.setTrustAll(true);
sslContextFactory.setEndpointIdentificationAlgorithm(null);
How can avoid it?
Best regards
I have read a lot about this and on version 9.x the hostname verification is enabled by default in the server.
I need to disable this verification in the server but the method setEndpointIdentificationAlgorithm is not working well.
SslContextFactory.setEndpointIdentificationAlgorithm(null);
________________________________
De: jetty-users-***@eclipse.org <jetty-users-***@eclipse.org> en nombre de Joakim Erdfelt <***@webtide.com>
Enviado: miércoles, 16 de mayo de 2018 12:44
Para: Jetty @ Eclipse developer discussion list
Cc: jetty-***@eclipse.org
Asunto: Re: [jetty-users] [jetty-dev] How to disable hostname validation on jetty embedded server 9.x version
Server doesn't do that, the client does.
Joakim Erdfelt / ***@webtide.com<mailto:***@webtide.com>
On Wed, May 16, 2018 at 5:43 AM, Luis Morales Alcala <***@vectoritcgroup.com<mailto:***@vectoritcgroup.com>> wrote:
Dear All,
Can someone help me with this problem?
________________________________
De: Luis Morales Alcala
Enviado: miércoles, 9 de mayo de 2018 16:38
Para: jetty-***@eclipse.org<mailto:jetty-***@eclipse.org>; jetty-***@eclipse.org<mailto:jetty-***@eclipse.org>
Asunto: How to disable hostname validation on jetty embedded server 9.x version
Dear all
Currently I have a Verison 9.3.x Embedded Jetty server working perfectly offering websockets communications through port 8080 and through 8443 for secure communications.
I need to disable the validation of the hostname as well as the certificates but I can not disable it.
I am using the method setTrustAll and setEndpointIdentificationAlgorithm(null) but the hostname verification is still activated.
sslContextFactory.setTrustAll(true);
sslContextFactory.setEndpointIdentificationAlgorithm(null);
How can avoid it?
Best regards