Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-7661

Mark also ssl-session-cache-size and ssl-session-timeout attributes as deprecated in Undertow's https-listener

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 11.0.0.Alpha1
    • None
    • Web (Undertow)
    • None

      Some of Undertow's https-listener attributes have been marked as deprecated recently due to the Elytron subsystem added into 7.1. Although there are still two attributes, that I think should be marked as deprecated but they have not been marked so yet. These are:

                  "ssl-session-cache-size" => {
                      "type" => INT,
                      "description" => "The maximum number of active SSL sessions",
                      "expressions-allowed" => true,
                      "nillable" => true,
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "no-services"
                  },
                  "ssl-session-timeout" => {
                      "type" => INT,
                      "description" => "The timeout for SSL sessions, in seconds",
                      "expressions-allowed" => true,
                      "nillable" => true,
                      "unit" => "SECONDS",
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "no-services"
                  },
      

      Both can be set via Elytron ssl-context:

      /subsystem=elytron/server-ssl-context=mytest:read-resource-description
      ...
                  "maximum-session-cache-size" => {
                      "type" => INT,
                      "description" => "The maximum number of SSL sessions to be cached.",
                      "expressions-allowed" => true,
                      "nillable" => true,
                      "default" => 0,
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "resource-services"
                  },
      ...
                  "session-timeout" => {
                      "type" => INT,
                      "description" => "The timeout for SSL sessions.",
                      "expressions-allowed" => true,
                      "nillable" => true,
                      "default" => 0,
                      "access-type" => "read-write",
                      "storage" => "configuration",
                      "restart-required" => "resource-services"
                  },
      ...
      

              sdouglas1@redhat.com Stuart Douglas (Inactive)
              sdouglas1@redhat.com Stuart Douglas (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: