Red Hat Summit이 콘텐츠는 선택한 언어로 제공되지 않습니다.
Chapter 5. Enabling HTTP/2 for the Red Hat JBoss Web Server
The Hypertext Transfer Protocols (HTTP) are standard methods of transmitting data between applications, such as servers and browsers, over the internet. JBoss Web Server supports the use of HTTP/2 for encrypted connections that are using Transport Layer Security (TLS), which is indicated by the h2 keyword when enabled.
HTTP/2 improves on HTTP/1.1 by providing the following enhancements:
- Header compression omits implied information to reduce the size of the header that is transmitted.
- Multiple requests and responses over a single connection use binary framing rather than textual framing to break down response messages.
JBoss Web Server does not support the use of HTTP/2 for unencrypted connections that are using the Transmission Control Protocol (TCP), which is indicated by the h2c keyword when enabled.
5.1. Prerequisites
- You have root user access on Red Hat Enterprise Linux.
- You have installed Red Hat JBoss Web Server 5.0 or later.
You have installed the
opensslandaprpackages that are provided with Red Hat Enterprise Linux. For more information about installing theopensslandaprpackages, see Red Hat Enterprise Linux package requirements.NoteThese operating system native libraries are also provided by
jws-6.1.0-application-server-<platform>-<architecture>.zipwhere available.If you want to run JSSE+OpenSSL or APR on Red Hat Enterprise Linux version 8 or 9, you must use Tomcat-Native to ensure successful operation. Tomcat-Native is located in the native archive directory.
You have configured a connector that supports the HTTP/2 protocol with SSL enabled. For JBoss Web Server 6.1, the following connectors support the HTTP/2 protocol:
- The NIO connector with JSSE + OpenSSL (JSSE)
- The NIO2 connector with JSSE + OpenSSL (JSSE)
5.2. Enabling HTTP/2 for a connector
In the server.xml file, the upgrade protocol in the connector definition is already set to HTTP/2 by default.
Procedure
-
Open the
JWS_HOME/tomcat/conf/server.xmlconfiguration file. In the connector definition, ensure that the
UpgradeProtocolclass name is set toorg.apache.coyote.http2.Http2Protocol.For example:
<Connector port="8443" protocol="org.apache.coyote.http11.Http11NioProtocol" maxThreads="150" SSLEnabled="true" maxParameterCount="1000"> <UpgradeProtocol className="org.apache.coyote.http2.Http2Protocol" /> <SSLHostConfig> <Certificate certificateKeystoreFile="conf/localhost-rsa.jks" certificateKeystorePassword="changeit" type="RSA" /> </SSLHostConfig> </Connector>To apply any configuration updates, restart the Red Hat JBoss Web Server as the root user.
To restart JBoss Web Server on Red Hat Enterprise Linux by using
systemd, enter the following command:# systemctl restart jws6-tomcat.service
To restart JBoss Web Server on Red Hat Enterprise Linux by using
startup.sh, enter the following commands:# JWS_HOME/sbin/shudown.sh # JWS_HOME/sbin/startup.sh
To restart JBoss Web Server on Windows Server, enter the following command:
# net restart tomcat10
5.3. Viewing JBoss Web Server logs to verify that HTTP/2 is enabled
You can view the JBoss Web Server console output log to verify that HTTP/2 is enabled.
Prerequisites
- You have enabled HTTP/2 for a connector.
Procedure
To view the console output log, enter the following command:
$ cat JWS_HOME/tomcat/logs/catalina.out | grep 'h2'NoteIn the preceding command, replace
JWS_HOMEwith the top-level directory for your JBoss Web Server installation.By default, JBoss Web Server produces the console output in one-line format. If you want to configure JBoss Web Server to produce the console output in JavaScript Object Notation (JSON) format instead, you can set the
java.util.logging.ConsoleHandler.formatterproperty toorg.apache.juli.JsonFormatterin theJWS_HOME/tomcat/conf/logging.propertiesfile.
Verification
If HTTP/2 is enabled, the command produces the following type of output that indicates the connector has been configured to support negotiation to
[h2]:06-Apr-2018 04:49:26.201 INFO [main] org.apache.coyote.http11.AbstractHttp11Protocol.configureUpgradeProtocol The ["connector_name"] connector has been configured to support negotiation to [h2] via ALPN
5.4. Using the curl command to verify that HTTP/2 is enabled
You can use the curl command-line tool to verify that HTTP/2 is enabled.
Prerequisites
- You have enabled HTTP/2 for a connector.
You are using a version of
curlthat supports HTTP/2.To check that you are using a version of
curlthat supports HTTP/2, enter the following command:$ curl -V
This command produces the following type of output:
curl 7.55.1 (x86_64-redhat-linux-gnu) ... Release-Date: 2017-08-14 Protocols: dict file ftp ftps gopher http https ... Features: AsynchDNS IDN IPv6 Largefile GSS-API Kerberos SPNEGO NTLM NTLM_WB SSL libz TLS-SRP HTTP2 UnixSockets HTTPS-proxy Metalink PSL
Procedure
To check that the HTTP/2 protocol is active, enter the following command:
$ curl -I http://<JBoss_Web_Server>:8080/NoteIn the preceding example, replace <JBoss_Web_Server> with the URI of the modified connector, such as
example.com. The port number is dependent on your configuration.
Verification
If the HTTP/2 protocol is active, the
curlcommand produces the following output:HTTP/2 200
Otherwise, if the HTTP/2 protocol is inactive, the
curlcommand produces the following output:HTTP/1.1 200
5.5. Additional resources (or Next steps)
- For more information about using HTTP/2, see Apache Tomcat 10 Configuration Reference: The HTTP Connector - HTTP/2 Support.
- For more information about the HTTP/2 Upgrade Protocol and the supported attributes, see Apache Tomcat 10 Configuration Reference: The HTTP2 Upgrade Protocol.
- For more information about the proposed internet standard for HTTP/2, see IETF: RFC 7540 - Hypertext Transfer Protocol Version 2 (HTTP/2).
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}