...
- Edit the
FEDORA_HOME/server/config/spring/web/web.properties
file. There are three relevant properties that will affect ssl behaviour, which will look like this example:
whereWiki Markup Code Block {CODE} security.ssl.api.access=ANY_CHANNEL security.ssl.api.management=REQUIRES_SECURE_CHANNEL security.ssl.api.default=ANY_CHANNEL {CODE}
security.ssl.api.access
controls ssl for api-a,security.ssl.api.management
controls ssl for api-m, andsecurity.ssl.api.default
controls ssl for other resourses (unused at present). Acceptable values areANY_CHANNEL
to allow non-ssl connections, andREQUIRES_SECURE_CHANNEL
for forced ssl. - (Optional)
FEDORA_HOME/server/config/spring/web/security.xml
if it is necessary to enable or disable ssl for individual resources one by one. Typically, this would only be necessary if exceptions to the general api-a or api-m rules are needed. SSL configuration within this file uses the spring security namespace, and property substitution (e.g. look for placeholders such as${security.ssl.api.management
}). For more information, see the spring 3.0.x channel security documentation. - Restart the Fedora web application.