Enabling TLSv1.2 in Glassfish3
Hello glassfish users,
We used https with GF-2.1 and Java6 and it worked fine, until we got TLS-1.2 clients. We upgraded to JDK 7, which supports TLSv1.2, and this solved our problem.
However, after an upgrade to GF-3.1.2, this does not work anymore.
I have googled a lot, tried to set https.protocols=TLSv1.2 in system properties, but this does not work.
Looking into sources, I have found in com.sun.enterprise.web.connector.coyote.PECoyoteConnector.configureSSL() that the list of protocols is set, depending of flags ssl2/ssl3/tls enabled.
But if tls is enabled, it appears that the only appended string is "TLSv1", and we observed that TLSv1.2 is actually not used by server when speaking to a TLS-1.2 only compliant client.
So how can we enable TLS-1.2 with glassfish 3.1.2 (we use latest JDK 7) ?