Documentation regarding configuring SSL uses wrong attribute in example config

XMLWordPrintable

    • 5
    • Severity 3 - Minor
    • 0

      Problem

      In Running Confluence over SSL or HTTPS, under Step 2. Modify your Confluence server.xml file, the example config uses sslProtocols incorrectly:

      <Connector port="8443" maxHttpHeaderSize="8192"
    maxThreads="150" minSpareThreads="25"                    
    protocol="org.apache.coyote.http11.Http11NioProtocol"
    enableLookups="false" disableUploadTimeout="true"
    acceptCount="100" scheme="https" secure="true"
    clientAuth="false" sslProtocols="TLSv1,TLSv1.1,TLSv1.2"      
       sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" SSLEnabled="true"
    URIEncoding="UTF-8" keystorePass="<MY_CERTIFICATE_PASSWORD>"/>

       This attribute shouldn't accept multiple values.

       Configuring as above makes the Connector fail to start: JIRA's Tomcat SSL Connector fails to start with SSLContext not available.

      Suggested Fix

      sslProtocols is not necessary and should be removed from the example. Using only sslEnabledProtocols is enough.

            Assignee:
            Unassigned
            Reporter:
            Bernardo Andreeti
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: