HTTPS support for Lattix Web

HTTPS support for Lattix Web#

  • Create a keystore file to store the server’s private key and self-signed certificate by executing the following command:

    Windows:

    "%JAVA_HOME%\bin\keytool" -genkey -alias LattixWeb -keyalg RSA
    

    Linux:

    $JAVA_HOME/bin/keytool -genkey -alias LattixWeb -keyalg RSA
    

    Specify the computer hostname when prompted for “First and Last name”

    and specify a password value of “changeit”.

  • On Linux, edit the file <LattixWeb Install Directory>/LattixTemplates/server.xml. On Windows Edit the file <LattixWeb Install Directory>/conf/server.xml

  • Remove the following lines: (note “changeit” is the default password created by the keytool command)
    <Connector port="/SERVER_PORT/" protocol="HTTP/1.1"
               connectionTimeout="20000"
               redirectPort="8443" />
    
  • Add the following lines:
    <Connector
               protocol="org.apache.coyote.http11.Http11NioProtocol"
               port="8443" maxThreads="200"
               scheme="https" secure="true" SSLEnabled="true"
               keystoreFile="/opt/lattix/cert.jks" keystorePass="changeit"
               clientAuth="false" sslProtocol="TLS"/>
    

    Make sure to change the port, keystoreFile, and keystorePass to match your actual settings.