Revision 37540211
Added by Eric Helms over 10 years ago
templates/etc/tomcat6/server.xml.erb | ||
---|---|---|
clientAuth="want" SSLProtocol="TLS"
|
||
keystoreFile="conf/keystore"
|
||
truststoreFile="conf/keystore"
|
||
keystorePass="<%= scope.lookupvar("candlepin::params::keystore_password") %>"
|
||
keystorePass="<%= scope.lookupvar("candlepin::keystore_password") %>"
|
||
keystoreType="PKCS12"
|
||
ciphers="SSL_RSA_WITH_3DES_EDE_CBC_SHA,
|
||
TLS_RSA_WITH_AES_256_CBC_SHA,
|
||
... | ... | |
TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA,
|
||
TLS_ECDH_anon_WITH_AES_128_CBC_SHA,
|
||
TLS_ECDH_anon_WITH_AES_256_CBC_SHA"
|
||
truststorePass="<%= scope.lookupvar("candlepin::params::keystore_password") %>" />
|
||
truststorePass="<%= scope.lookupvar("candlepin::keystore_password") %>" />
|
||
|
||
<!-- Define an AJP 1.3 Connector on port 8009 -->
|
||
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
|
Also available in: Unified diff
Updates to become a parameterized class and reduce the dependencies
this module has to only the certs module.
Previously, this module for deploying Candlepin was tightly coupled
to a few different modules including the Katello module. This work
attempts to invert the relationship by parameterizing the Candlepin
class. This will allow a module like the Katello module to set certain
parameters that it would like Candlepin to use during configuration.
The only module left as a dependence is the certs module that creates
and sets up a keystore for tomcat via https.