[Jetty-support] Jetty and SSL using multiple common names

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hello there,
=20
I've got two questions about Jetty and SSL and ran out of options
myself...
=20
I'm trying to configure Jetty to use SSL using multiple common names
using Java keytool.exe.
=20
I've read the tutorial at:
http://jetty.mortbay.org/jetty/faq?s=3D400-Security&t=3Dssl
=20
I've issued the following command lines:
1. keytool -keystore keystore -alias jettylocalhost -genkey -keyalg RSA
2. keytool -keystore keystore -alias jettyonip -genkey -keyalg RSA
=20
After each I've answered all the questions. The first Common name (First
and last name) I entered was "localhost" and the second "127.0.0.1".
=20
Opening the site in Internet Explorer should now issue a warning about
the chain of trust but not for the servername if I'm using
https://localhost or https://127.0.0.1. It does however with one of
them. So Jetty seems to ignore on of the keys in the keystore or I'm
doing something wrong.
=20
The second question is how to setup Jetty so users entering
http://localhost or http://127.0.0.1 will be redirected to the secure
https-equivalent without being bothered. Is this possible?
=20
Best regards,
=20
Patrick Mackaaij