JBoss.org Community Documentation
The UIL2 service support the use of SSL through custom socket factories that integrate JSSE using the security domain associated with the IL service. An example UIL2 service descriptor fragment that illustrates the use of the custom JBoss SSL socket factories is shown in Example 7.10, “An example UIL2 config fragment for using SSL”.
<mbean code="org.jboss.mq.il.uil2.UILServerILService"
name="jboss.mq:service=InvocationLayer,type=HTTPSUIL2">
<depends optional-attribute-name="Invoker">jboss.mq:service=Invoker</depends>
<attribute name="ConnectionFactoryJNDIRef">SSLConnectionFactory</attribute>
<attribute name="XAConnectionFactoryJNDIRef">SSLXAConnectionFactory</attribute>
<!-- ... -->
<!-- SSL Socket Factories -->
<attribute name="ClientSocketFactory">
org.jboss.security.ssl.ClientSocketFactory
</attribute>
<attribute name="ServerSocketFactory">
org.jboss.security.ssl.DomainServerSocketFactory
</attribute>
<!-- Security domain - see below -->
<attribute name="SecurityDomain">java:/jaas/SSL</attribute>
</mbean>
<!-- Configures the keystore on the "SSL" security domain
This mbean is better placed in conf/jboss-service.xml where it
can be used by other services, but it will work from anywhere.
Use keytool from the sdk to create the keystore. -->
<mbean code="org.jboss.security.plugins.JaasSecurityDomain"
name="jboss.security:service=JaasSecurityDomain,domain=SSL">
<!-- This must correlate with the java:/jaas/SSL above -->
<constructor>
<arg type="java.lang.String" value="SSL"/>
</constructor>
<!-- The location of the keystore resource: loads from the
classpath and the server conf dir is a good default -->
<attribute name="KeyStoreURL">resource:uil2.keystore</attribute>
<attribute name="KeyStorePass">changeme</attribute>
</mbean>
Example 7.10. An example UIL2 config fragment for using SSL