Jetty default settings

By default, the embedded Jetty server uses the following settings:

In IDM 7.3.2 and later, the embedded Jetty web server supports Jetty 12. Future releases of IDM 7.3.x are only compatible with Java 17. Jetty 12 requires this change.

When serving SSL requests, Jetty 12 checks that the incoming host header matches the server certificate’s subject and returns a 400 Bad Request error on a mismatch. If you’re upgrading to IDM 7.3.2 or later, you must ensure your IDM server certificate subject matches the host name used by your deployment.

Learn more in What’s new.

The HTTP, SSL, and Mutual Authentication ports defined in IDM.
The same keystore and truststore settings as IDM.
Trivial sample realm, openidm/security/realm.properties to add users.

The default settings are intended for evaluation only. Adjust them according to your production requirements.