简体繁体中英

How do I know the SSL certificate chain is being verified?

原文 2018-09-04 17:09:33 6 1 spring/ apache/ ssl-certificate/ resttemplate

I just want to see the code where the SSL certificate chain is verified. I have found a method called checkClientTrusted and checkServerTrusted . I don't think they are called anywhere.

For context I found them in the Apache SSLContextBuilder.

I am not sure if the chain verification is done automatically for me somewhere or I am supposed to somehow call checkClientTrusted and checkServerTrusted

1 answers

You don't have to explicitly call anything to initiate the SSL handshake. HTTP client will do it for you. If you're using spring Resttemplate, apache HTTP client will initiate SSL handshake if the URL is HTTP over SSL (https)

If you want to see the logs, update your log4j or logback to level TRACE on package org.apache

If you want to verify SSL is valid and certificate chains are setup correctly on the server you can use openssl to validate like

openssl s_client -showcerts -connect www.exampledomain.com:443

How to configure Tomcat (in Spring Boot) to provide full certificate chain with SSL connections? (currently working with Chromium, not with Firefox)

CXF SSL Spring configuration - Empty client certificate chain

Spring security: how do I stop the chain with my custom code?

How do I conditionally chain webclient calls in spring webflux/webclient

Rest Services , Rethrowing javax.net.ssl.SSLHandshakeException: null cert chain, bad_certificate

How do I know if the prepared statements are cached?

How to disable SSL certificate checking with Spring RestTemplate?

How to disable SSL certificate checking with Spring WebServiceTemplate?

how to configure ssl certificate in spring boot 2.1.9

How to connect with CA to sign ssl certificate?

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to configure Tomcat (in Spring Boot) to provide full certificate chain with SSL connections? (currently working with Chromium, not with Firefox) CXF SSL Spring configuration - Empty client certificate chain Spring security: how do I stop the chain with my custom code? How do I conditionally chain webclient calls in spring webflux/webclient Rest Services , Rethrowing javax.net.ssl.SSLHandshakeException: null cert chain, bad_certificate How do I know if the prepared statements are cached? How to disable SSL certificate checking with Spring RestTemplate? How to disable SSL certificate checking with Spring WebServiceTemplate? how to configure ssl certificate in spring boot 2.1.9 How to connect with CA to sign ssl certificate?

Related Tags

How do I know the SSL certificate chain is being verified?

Question

1 answers

solution1 0 2018-09-05 04:39:22

solution1
0 2018-09-05 04:39:22