...
If you're using the one Tomcat with multiple instance option, it's $CATALINA_BASE instead that will need to be redefined above.
The Fediz examples use the following TCP ports Tomcat port values for the IDP/STS:. We use ports different from the Tomcat defaults so as not to conflict with the Tomcat instance running the RP applications.
- HTTP port: 9080 (used for Maven deployment, mvn tomcat:redeploy)
- HTTPS port: 9443 (where IDP and STS are accessed)
- Server port (for shutdown and other commands): 9005
The above Tomcat HTTP(s) configuration is done in conf/server.xml.
This is a sample snippet for an HTTPS configuration:
in conf/server.xml. Here is a sample snippet for showing the configuration of the above three values:
Code Block | ||||
---|---|---|---|---|
| ||||
<Server port="8005" shutdown="SHUTDOWN">
<!-- http configuration -->
<Connector port="9080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="9443" />
...
<!-- https configuration --> | ||||
Code Block | ||||
xml | xml |
<Connector port="9443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="tomcat-idp.jks"
keystorePass="tompass" sslProtocol="TLS" />
...
</Server>
|
The keystoreFile is relative to $CATALINA_HOME. See here for the Tomcat 7 configuration reference. This page also describes how to create certificates. Sample Tomcat keystores (not for production use, but useful for demoing Fediz and running the sample applications) are provided in the examples/samplekeys folder of the Fediz distribution.
...