enabling SSL

certificates/idpssl.crt

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

certificates/idpssl.key

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----

pom.xml

@@ -92,5 +92,16 @@
             <version>1.2</version>
         </dependency>
     </dependencies>
-
+<build>
+    <plugins>
+        <plugin>
+            <groupId>org.apache.tomcat.maven</groupId>
+            <artifactId>tomcat7-maven-plugin</artifactId>
+            <configuration>
+                <path>/${project.name}</path>
+                <serverXml>src/main/resources/server.xml</serverXml>
+            </configuration>
+        </plugin>
+    </plugins>
+</build>
 </project>

src/main/resources/server.xml

@@ -0,0 +1,48 @@
+<?xml version='1.0' encoding='utf-8'?>
+<Server port="8005" shutdown="SHUTDOWN">
+    <Listener className="org.apache.catalina.core.JasperListener" />
+    <Listener className="org.apache.catalina.core.AprLifecycleListener" SSLEngine="on" />
+    <Listener className="org.apache.catalina.core.JreMemoryLeakPreventionListener" />
+    <Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener" />
+    <Listener className="org.apache.catalina.core.ThreadLocalLeakPreventionListener" />
+
+    <GlobalNamingResources>
+        <Resource name="UserDatabase" auth="Container"
+                  type="org.apache.catalina.UserDatabase"
+                  description="User database that can be updated and saved"
+                  factory="org.apache.catalina.users.MemoryUserDatabaseFactory"
+                  pathname="conf/tomcat-users.xml" />
+    </GlobalNamingResources>
+
+    <Service name="Catalina">
+        <Connector port="8080" protocol="HTTP/1.1"
+                   connectionTimeout="20000"
+                   redirectPort="8443" />
+
+        <Connector
+
+
+                port="8443" maxThreads="200"
+                scheme="https" secure="true" SSLEnabled="true"
+                keystoreFile="../../certificates/idpssl.pfx"
+                keystoreType="PKCS12"
+                keystorePass="password"
+                clientAuth="false" sslProtocol="TLS" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
+   TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,
+   TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,
+   TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA" protocol="org.apache.coyote.http11.Http11Protocol"/>
+
+        <Engine name="Catalina" defaultHost="localhost">
+
+            <Realm className="org.apache.catalina.realm.LockOutRealm">
+                <Realm className="org.apache.catalina.realm.UserDatabaseRealm"
+                       resourceName="UserDatabase"/>
+            </Realm>
+
+            <Host name="localhost"  appBase="webapps"
+                  unpackWARs="true" autoDeploy="true">
+                <Context docBase="../../webprofile-ref-project-1.0-SNAPSHOT" path="/webprofile-ref-project" reloadable="true" />
+            </Host>
+        </Engine>
+    </Service>
+</Server>