469863 fixed setNeedClientAuth/setWantClientAuth

2015-06-11 10:58:24 +10:00 · 2015-06-11 10:58:24 +10:00 · 9e2c578a85
parent 165cbc2943
commit 9e2c578a85
2 changed files with 9 additions and 11 deletions
--- a/examples/embedded/src/main/java/org/eclipse/jetty/embedded/ManyConnectors.java
+++ b/examples/embedded/src/main/java/org/eclipse/jetty/embedded/ManyConnectors.java
@ -43,7 +43,7 @@ public class ManyConnectors
        // to get access to a keystore that we use in many unit tests and should
        // probably be a direct path to your own keystore.

-        String jettyDistKeystore = "../../jetty-distribution/target/distribution/etc/keystore";
+        String jettyDistKeystore = "../../jetty-distribution/target/distribution/demo-base/etc/keystore";
        String keystorePath = System.getProperty(
                "example.keystore", jettyDistKeystore);
        File keystoreFile = new File(keystorePath);
--- a/jetty-util/src/main/java/org/eclipse/jetty/util/ssl/SslContextFactory.java
+++ b/jetty-util/src/main/java/org/eclipse/jetty/util/ssl/SslContextFactory.java
@ -1552,7 +1552,7 @@ public class SslContextFactory extends AbstractLifeCycle
    {
        if (LOG.isDebugEnabled())
            LOG.debug("Customize {}",sslEngine);
-
+        
        SSLParameters sslParams = sslEngine.getSSLParameters();
        sslParams.setEndpointIdentificationAlgorithm(_endpointIdentificationAlgorithm);
        sslParams.setUseCipherSuitesOrder(_useCipherSuitesOrder);
@ -1562,17 +1562,15 @@ public class SslContextFactory extends AbstractLifeCycle
                LOG.debug("Enable SNI matching {}",sslEngine);
            sslParams.setSNIMatchers(Collections.singletonList((SNIMatcher)new AliasSNIMatcher()));
        }
-
-        if (getWantClientAuth())
-            sslEngine.setWantClientAuth(getWantClientAuth());
-        if (getNeedClientAuth())
-            sslEngine.setNeedClientAuth(getNeedClientAuth());
-
        sslParams.setCipherSuites(_selectedCipherSuites);
-        sslEngine.setEnabledCipherSuites(_selectedCipherSuites);
-        sslEngine.setEnabledProtocols(_selectedProtocols);
+        sslParams.setProtocols(_selectedProtocols);
+        
+        if (getWantClientAuth())
+            sslParams.setWantClientAuth(true);
+        if (getNeedClientAuth())
+            sslParams.setNeedClientAuth(true);

-        sslEngine.setSSLParameters(sslParams);  
+        sslEngine.setSSLParameters(sslParams);          
    }

    public static X509Certificate[] getCertChain(SSLSession sslSession)