Questions of Tomcat SSL configuration
Question
I have some question on configuration of Tomcat SSL and interation with it.
First I explain the problem: I have a domain on a virtual server to which I have installed the SSL certificate via Plesk (with Let's Encrypt extension). Now I want to configure Tomcat with SSL to access resources on the RESTful Web Service.
My questions are:
- Is it correct to use the same certificate to configure Tomcat? I tried and when I open the Tomcat page on the browser the page is secure. But the problem is that when I try to access resources on the REST Web Service the client return an exception
unable to find valid certification path to requested target. In RESTful Web Service through HTTPS I found the solution for Java client. But now my questions are: - To access resources on the REST do I must to load the certificate on the client (for any kinds of client? such as Android app, IOS app, Smart Device) or if tomcat is configured correctly do not must do it?
- If I have to upload the certificate on the client, when certificate expired I have to update all my client with the renewed certificate?
Thanks in advance.
1 answers
solution1
0 ACCPTED 2017-10-20 12:05:52
The SSL certificate only goes on the server. If the SSL certificate is not signed by a Certificate Authority (CA) then when testing your ios/android will complain but in development mode you can get them to ignore it. So as long as your cert is trusted by your clients you shouldn't have any issue on mobile apps, smart devices etc etc
Update
LetsEncrypt's Root CA seems to be untrusted/not-present in some versions of the Android key store -> Let's Encrypt on Android gives java.security.cert.CertPathValidatorException: Trust anchor for certification path not found
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.