stackoom
  简体   繁体   中英

Does anyone know how to use StartCom SSL without keystore in Java OR use a custom keystore?

 原文  2011-11-06 15:46:51       java/ resources/ certificate/ ssl-certificate/ keystore

Question

I have found the following post, which I think I may help because I need a way of verifying my website (that my java application connects to) without having to use the java keystore:

http://www.mombu.com/programming/java/t-ssl-for-java-without-keystores-1366416.html

However, I'm quite new to the world of SSL and don't know which files and passwords I need to use, so if anybody can point me in the right direction that would be great. If you didn't guess, I got my SSL certificate from StartSSL, who are ran/owned/something by StartCom Ltd. Here is a post I used for putting the details into the keystore:

https://forum.startcom.org/viewtopic.php?t=1390

Thanks in Advance!

Alternitively, is there any way for me to use a custom keystore. ie I'll do what I need with the default keystore and then copy the keystore into the .JAR so that I can tell my application to use the one in the .JAR instead of the one in the Java install directory, etc...

1 answers

solution1
 1 ACCPTED  2011-11-06 17:11:41

Yes, you can create and use your own keystore for your app using the keytool utility which comes with the JDK.

Basically, a keystore is a datastore for your keys & certificates, which will be used in your app either to authenticate yourself to another entity or to digitally sign your messages or any other data.

A distinct keystore called trustore is used to keep the public key certificates of the entities you trust.

You can have these keystores placed in your classpath and specify the path in your app in code like (these are VM params which will affect all apps running in this VM): 

Properties properties = System.getProperties();
properties.put("javax.net.ssl.keyStore", path/to/keystorefile);
properties.put("javax.net.ssl.keyStorePassword", keyStorePassword);
properties.put("javax.net.ssl.trustStore", path/to/truststore);
properties.put("javax.net.ssl.trustStorePassword", trustStorePassword);

EDIT:

Yes, you can specify the keystore & trustore locations and their passwords in a property file and load the properties file as myProperties.load(myProperties.getClass().getResourceAsStream("/path/to/proertyfile.properties"));

and then use it in your code as (exception handling omitted)(this will not affect any other app): 

KeyStore mykeystore = KeyStore.getInstance("JKS");
InputStream is = new FileInputStream("/path/from/myproperties");
mykeystore.load(is, myKeystorePasswordFromProperties.toCharArray());

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Does Java Runtimes require use of Keystore for SSL certificates as mandatory? What algorithm does java.security.KeyStore use to encrypt the privateKey in KeyStore.setKeyEntry() and KeyStore.store()? How to use keystore in Java to store private key? Is there a way to configurate a SSL certificate in Azure Kubernetes Service using WebFlux without use a Java keyStore? Should use the same Java keystore for SSL and HTTPS communication? Tell Java to use Windows keystore Use of isKeyEntry(alias) in KeyStore - Java How to import an existing X.509 certificate and private key in Java keystore to use in SSL? How to use a file in a jar as javax.net.ssl.keystore? What is the purpose of Java key store parameter (javax.net.ssl.keyStore), How to use it?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM