我正在使用Jboss应用服务器,我想保护管理界面,所以我做了以下
使用keytool创建密钥库:
keytool -genkeypair -alias serverkey -keyalg RSA -keysize 2048 -validity 7360 -keystore server.keystore -keypass mypassword -storepass mypassword -dname "cn=Server Administrator,o=Acme,c=GB"
独立
<security-realm name="ManagementRealm">
....
<server-identities>
<ssl>
<keystore path="server.keystore" relative-to="jboss.server.config.dir" keystore-password="mypassword" alias="serverkey"/>
</ssl>
</server-identities>
</security-realm>
另外:
<management-interfaces>
<http-interface security-realm="ManagementRealm" http-upgrade-enabled="true">
<socket-binding https="management-https"/>
</http-interface>
</management-interfaces>
并且:
<socket-binding name="management-https" interface="management" port="${jboss.management.https.port:9993}"/>
现在我必须输入https://ip@:9993才能访问管理界面,这样我怎样才能自动从http重定向到https(不将https添加到ip @)
谢谢!