Simone Bordet
Simone Bordet
> I tried to find documentation about how to write Jetty Connections and Factories but to no avail. Do you have some pointers maybe? https://www.eclipse.org/jetty/documentation/jetty-11/programming-guide/index.html#pg-arch-io-endpoint-connection
> And what is the best way to monitor the reload of the key-store, some life cycle event, create my own key-store scanner, or is there something more specific? What...
BTW did you have to wrap the `KeyManager` to provide the right alias for the `acme-tls/1` protocol?
@Maurice-Betzel I have doubts that it will work without wrapping the `KeyManager`. In the logs above, you are using a different hostname/SNI (`localhost`) to differentiate among the certificates, but I...
@Maurice-Betzel the RFC says: > Once this certificate has been created, it MUST be provisioned such that it is returned during a TLS handshake where the "acme-tls/1" application-layer protocol has...
But you're not using the Pebble server in production, right? I imagine your ACME server is also your TLS server? I understand that the CA server issues the challenge to...
All right, if it works for you, great. I think a more generic solution would require wrapping of the `KeyManager`, but perhaps for simpler cases this is not required. Thanks...
Not sure I follow. Servlet apps will lock using `synchronized` on a different instance, that delegates to the core `Session` object. Core web apps, if they wish to lock, will...
@gregw @janbartel I am talking about core-only web applications. ```java public boolean handle(Request req, Response rsp, Callback cbk) { Session session = req.getSession(true); // How to make sure access to...
@janbartel do you see a problem adding a `Session.getLock()` method to the API `Session` interface?