Hello,
I'm using a standalone server to expose some WSS endpoints.
Looking at the archives, I found following explanation and
successfully crafted suggested hack in order to enable WSS in the
standalone server:
https://java.net/projects/tyrus/lists/users/archive/2014-02/message/1
That done, I though about configuring SSL properties by passing an
SslContextConfigurator to the server just as if it was a client:
https://tyrus.java.net/documentation/1.8.3/user-guide.html#d0e1128
However, reviewing
org.glassfish.tyrus.container.grizzly.server.GrizzlyServerContainer
source code I've been unable to find the place where it may read such
SslContextConfigurator. Am I looking at the right place?
Although it may be ignoring given SslContextConfigurator, by
configuring System Properties with desired keystore and its password,
the server is able to successfully stablish a wss session with
correctly configured org.glassfish.tyrus.client.ClientManager.
However SSL handshake fails when trying to stablish a session using
websocket implementations of common browsers. It reports
javax.net.ssl.SSLHandshakeException: no cipher suites in common
Looking at log output, one can identify that ClientManager uses TLSv1,
while browsers native websocket implementation issue ClientHello
messages specifying TLSv1.2 or TLSv1.1 (depending on the browser).
Is it possible to configure the server to use these versions?
Many thanks,
Isart