How to set the maximum number of Web connections in WildFly

The max-connections attribute sets the amount of concurrent connections that can be processed by an Undertow listener. You can apply to any of your available connectors. For example, to set the maximum number of connections for the HTTP connector from WildFly / JBoss CLI execute: The configuration will be updated as follows: If your configuration … Read more

Configuring Strict Transport Security (HSTS) on WildFly

HSTS stands for HTTP Strict Transport Security. It is a method used by websites to declare that they should only be accessible using a secure connection (HTTPS). If a website declares an HSTS policy, the browser should reject all HTTP connections and prevent users from accepting insecure SSL certificates. In this tutorial we will learn how to configure in on WildFly Web server.

Read more

Where are my compiled JSP pages on JBoss / WildFly?

WildFly application server places the source and compiled Servlets (derived from your JSP) under the standalone/tmp/<deployment_unit>/org/apache/jsp folder. Let’s see an example. You have deployed a Web application named “hello.war” which contains,in the root folder, the hello.jsp page. When requested, the following hello_jsp.java Servlet,java will be created and compiled: tmp ├── auth ├── hello.war │   └── … Read more

How to configure CORS on WildFly

This articles discusses about Cross-origin HTTP requests (CORS) and how they can be enabled on WildFly. Let0s start with some definitions: a cross-origin HTTP request is one that is made to: A different domain (for example, from acme.com to amazon.com). A different subdomain (for example, from acme.com to home.acme.com). A different port (for example, from … Read more

How to set the SameSite attribute in Java Web applications

This short article describes how you can set the SameSite property in HTTP Cookies for Web applications, with special focus on WildFly‘s Web server, which is Undertow. What is SameSite ? SameSite is a property that can be set in HTTP cookies to avoid false cross-site request (CSRF) attacks in web applications: When SameSite is … Read more

How do I reload dynamically my jsp from an EAR ?

Deploy your JSP as part of an application deployed in exploded format. (That is create a folder named yourapplication.ear’  and inside it create a folder yourwebapplication.war). This is the suggested deployment’ strategy when you’re developing your applications because changes to the JSP pages take effect immediately. Therefore, you don’t need to redeploy the application nor … Read more

How to deploy Java Web Start Applications on JBoss

INFO: Java Web Start (JWS) was deprecated in Java 9, and starting with Java 11, Oracle removed JWS from their JDK distributions. This means that clients that have the latest version of Java installed can no longer use JWS-based applications. And since public support of Java 8 has ended in Q2/2019, companies no longer get … Read more