[英]Client PKI certificate authentication with Wildfly 8 sends 404
我正在嘗試通過與Wildfly 8一起使用的智能卡來獲得客戶端證書身份驗證。以前曾與JBoss AS一起使用,但是Wildfly進行了更改。 我已將適當的證書導入到我的密鑰庫中。
這是我的standalone.xml:
<security-realm name="SSLRealm">
<server-identities>
<ssl protocol="TLSv1">
<keystore path="server.keystore" keystore-password="password" alias="server"/>
</ssl>
</server-identities>
<authentication>
<truststore path="server.keystore" keystore-password="server.keystore"/>
</authentication>
</security-realm>
....
<subsystem xmlns="urn:jboss:domain:undertow:1.2">
<buffer-cache name="default"/>
<server name="default-server">
<http-listener name="default" socket-binding="http"/>
<https-listener name="https" socket-binding="https" security-realm="SSLRealm" verify-client="REQUESTED"/>
<host name="default-host" alias="localhost">
<filter-ref name="gzipFilter" predicate="not min-content-size[500]"/>
</host>
</server>
<servlet-container name="default">
<jsp-config development="true" target-vm="1.8" x-powered-by="false"/>
<websockets/>
</servlet-container>
<filters>
<gzip name="gzipFilter"/>
</filters>
</subsystem>
...
<security-domain name="cert-login" cache-type="default">
<jsse keystore-password="password" keystore-url="server.keystore" truststore-password="password" truststore-url="server.keystore" client-auth="true"/>
<authentication>
<login-module code="Certificate" flag="required">
<module-option name="securityDomain" value="cert-login"/>
<module-option name="password-stacking" value="useFirstPass"/>
</login-module>
<login-module code="Identity" flag="required">
<module-option name="roles" value="certuser"/>
</login-module>
</authentication>
</security-domain>
...
<logger category="org.wildfly.extension.undertow">
<level name="DEBUG"/>
</logger>
<logger category="org.jboss.as.security">
<level name="TRACE"/>
</logger>
<logger category="org.jboss.security">
<level name="TRACE"/>
</logger>
jboss-web.xml:
<jboss-web>
<context-root>/</context-root>
<security-domain>cert-login</security-domain>
</jboss-web>
...和我的web.xml
<security-constraint>
<web-resource-collection>
<web-resource-name>Cert Login Page</web-resource-name>
<url-pattern>/cert/detect</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>certuser</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>CLIENT-CERT</auth-method>
</login-config>
<security-role>
<role-name>certuser</role-name>
</security-role>
當我去/ cert / detect時會發生什么,我得到404。不是錯誤或任何東西。 數天來,我一直在轉動輪子,試圖找出問題所在。
問題最終與Wildfly配置無關,我只需要向server.keystore添加一個附加證書即可。 404是紅鯡魚。
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.