堆栈内存溢出
  简体   繁体   English

AWS EC2上的Java Web服务SSL?

[英]Java web service SSL on AWS EC2?

 原文  2017-11-07 16:45:02       java/ amazon-web-services/ ssl/ amazon-ec2

问题描述

I am using Dropwizard to develop my service that will eventually be hosted on an EC2 instance. 我正在使用Dropwizard开发我的服务,该服务最终将托管在EC2实例上。

Currently Amazon Certificates can only be used for services like Elastic Beanstalk. 当前,Amazon证书只能用于Elastic Beanstalk之类的服务。 You cannot download any of the certificate details to sign or roll your own key. 您无法下载任何证书详细信息来签名或滚动自己的密钥。

http://docs.aws.amazon.com/cli/latest/reference/acm/get-certificate.html http://docs.aws.amazon.com/cli/latest/reference/acm/get-certificate.html

I tried using the java keytool to generate a keystore file for the public domain the service will be available at, however that gives a Certficate warning on the browser. 我尝试使用java keytool为将在其中提供该服务的公共域生成密钥库文件,但是在浏览器上给出了证书警告。

Is the solution to use Elastic beanstalk for Java services? 是将Elastic beanstalk用于Java服务的解决方案吗?

Any suggestions are welcome! 欢迎任何建议!

1 个解决方案

解决方案1
 2 已采纳  2017-11-07 16:50:01

Is the solution to use Elastic beanstalk for Java services? 是将Elastic beanstalk用于Java服务的解决方案吗?

That doesn't solve your issue in any way. 那根本无法解决您的问题。 That just gives you an EC2 instance with a Load Balancer. 这样就可以为您提供带负载均衡器的EC2实例。 You could setup a Load Balancer yourself if you want one. 如果需要,可以自己设置负载均衡器。 Elastic Beanstalk doesn't provide special SSL certificate support beyond what you could do yourself. 除了您自己可以做的之外,Elastic Beanstalk不提供特殊的SSL证书支持。

I tried using the java keytool to generate a keystore file for the public domain the service will be available at, however that gives a Certficate warning on the browser. 我尝试使用java keytool为将在其中提供该服务的公共域生成密钥库文件,但是在浏览器上给出了证书警告。

You generated a self-signed certificate , which is going to show warnings in a browser. 您生成了一个自签名证书 ,该证书将在浏览器中显示警告。 You need to obtain an SSL certificate from an actual certificate authority if you want to avoid the browser warnings. 如果要避免浏览器警告,则需要从实际的证书颁发机构获取SSL证书。

If you don't want to use a Load Balancer or CloudFront along with an AWS ACM certificate, then you will need to procure a valid SSL certificate from some other certificate authority and install that directly on your EC2 instance. 如果您不想与AWS ACM证书一起使用Load Balancer或CloudFront,那么您将需要从其他证书颁发机构获得有效的SSL证书,并将其直接安装在EC2实例上。 The most popular way to do this without incurring any cost is to use Let's Encrypt certificates. 实现此目的而又不产生任何费用的最流行方法是使用“ 让我们加密”证书。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 容器定义中带有java命令的AWS EC2 Task / Service容器 - AWS EC2 Task/Service container with java command in the container definitions AWS ec2实例java EE Web应用程序部署 - AWS ec2 instance java EE web app deployment Java时区和AWS EC2 - Java timezone & AWS EC2 在AWS EC2上部署Web应用程序 - Deploy Web Application on AWS EC2 如何为AWS EC2实例中部署的Spring Boot Rest API Web服务创建IAM角色 - how to create IAM role for a spring boot rest api web service deployed in aws ec2 instance 如何将Web服务部署到amazon EC2? - How to deploy a web service to amazon EC2? 限制对Amazon EC2上的Web Service的访问 - Restricting access to Web Service on Amazon EC2 AWS Java SDK凭证linux ec2 - AWS Java SDK credentials linux ec2 Java RMI UnmarshalException和AWS EC2服务器 - Java RMI UnmarshalException and AWS EC2 Server 在AWS EC2上获取最新的Java版本 - Getting the latest java version on aws ec2
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM