Certify a jetty webserver


#1

Hi

i’m using a web software called “subsonic” to stream my personnal files (movies, musics)
It runs “jetty” webserver 6.1.
I’m looking to use let’s encrypt to certify the https connexion.

Do you know how i can do ? because it seems that i need cert file

thank you :smiley:


#2

Went ahead and moved this to the “Help” topic. I’m not familiar at all with Jetty, but if you could fill out the questions below (they’re presented automatically for new Help threads) that would help direct our efforts a bit. The first three aren’t as important in this scenario as the rest of them.

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):


#3

Hi,

After fill out the form, please use this link for directions on getting a cert from LE

Thank you


#4

My domain name is : https://stream.isi-informatique.com:4443/login.view?
I ran this command : I tried with certify software
It produced this output : not detected because it’s not in IIS
My webserver : subsonic so it seems to be jetty webserfver
OS : windows 2016 server
Hosting provider : home
Root shell : administratof of the domain
Control panel : yes, subsonic.

thank you


#5

Jetty is a servlet container and not really a general purpose web server.

Honestly the most straightforward thing to do would be to put your Jetty application behind a reverse proxy like nginx, Apache httpd or haproxy. From there you have the option of using the common tools and configurations like Certbot.

Otherwise, you will need to dive into the Jetty XML configuration files and figure out how to direct a the /.well-known/acme-challenge context path to somewhere on your filesystem. This could be very tricky if the Jetty runtime is embedded into the Subsonic application (you’d need to edit fies inside subsonic.war::WEB-INF/web.xml).

Finally you also have the solution to use the DNS challenge, but you may find that it is the most complicated of all, AND you’d still have to modify the Jetty XML files to use your certificate. It’s almost certainly a giant waste of time.


#6

Hi davi2d,
I used this guide from Subsonic official forum and it worked just fine: http://forum.subsonic.org/forum/viewtopic.php?f=6&t=17238&p=74862&hilit=letsencrypt#p74862


#7

thank you, but i’m looking to set it up on windows.


#8

IIS on Windows can reverse proxy too:

As @_az mentions it is very difficult to place a verification file with a Jetty application so fronting it with IIS and using Certify for your certificate will probably be the easiest solution for you.


#9

thank you. I saw this way.
But, I only get error messages : too many redirect or cgi erreur or I get nothing.


#10

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.