Hi,
we've integrated Grizzly 1.9.18-M2 to Glassfish V3, with following
updates:
1) Unified configuration element/attribute names.
thanks CLI guys for suggestions and Justin for implementing this.
2) Lazy SSL initialization
Initialization of security environment for HTTPS listener (port 8181)
happens on first HTTPS request on this port.
Now we will be able to reconsider if we want to have HTTPS listener
enabled/disabled by default.
By default lazy initialization mode is enabled. It's possible to
disable it explicitly, by setting corresponding attribute on <ssl>
element:
<ssl allow-lazy-init="false" .../>
3) HTTP <-> HTTPS redirect, using port unification.
Using port unification it's possible to setup HTTP <-> HTTPS
redirection (same feature was enabled by default in GFv2). Following
example enables HTTPS -> HTTP redirection for port 8080.
<protocol name="http-listener-1">
<port-unification>
<protocol-finder protocol="http-1"
classname="com.sun.grizzly.config.HttpProtocolFinder" name="http-
finder" />
<protocol-finder protocol="https-redirect"
classname="com.sun.grizzly.config.HttpProtocolFinder" name="https-
redirect" />
</port-unification>
</protocol>
<protocol name="http-1">
<http max-connections="250" default-virtual-
server="server" server-name="">
<file-cache enabled="false" />
</http>
</protocol>
<protocol name="https-redirect" security-enabled="true">
<protocol-chain-instance-handler>
<protocol-chain>
<protocol-filter
classname="com.sun.grizzly.config.HttpRedirectFilter" name="redirect-
filter" />
</protocol-chain>
</protocol-chain-instance-handler>
<ssl ssl3-enabled="false" cert-nickname="s1as" />
</protocol>
Note, HTTPS redirector also supports lazy SSL initialization.
Thanks.
WBR,
Alexey.