[英]Spring boot by default HTTPS but test profile with HTTP
是否可以定义默认properties
文件以启用https
例如:
server.port: 8443
# SSL Configuration
server.ssl.key-store:/etc/pki/certificate.p12
server.ssl.key-store-password: ${P12PASS}
server.ssl.keyStoreType: PKCS12
server.ssl.keyAlias: ${KEYALIAS}
server.ssl.trust-store=/etc/pki/trust.jks
server.ssl.trust-store-password=${TRUSTPASS}
但是在没有任何密钥库信息的情况下,以某种方式在8080
端口上使用@Bean
定义为http
执行@Configuration
吗?
我想使用rest-assured
库准备一些集成测试,但是当测试加载我的默认应用程序上下文时,我收到与未设置变量(如P12PASS
或TRUSTPASS
相关的错误。 我希望集成测试在没有 https 配置的情况下运行应用程序上下文。
有小费吗?
另一种方法是为您的应用程序制作双端口。 一种是用于Http。 另一个用于https。 所以不会影响你的考试。
应用程序.yml
server:
port: 8080
https:
port: 8443
key-store: /etc/pki/certificate.p12
key-store-password: ${P12PASS}
应用
import java.nio.charset.Charset;
import org.apache.catalina.connector.Connector;
import org.apache.coyote.http11.Http11NioProtocol;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.boot.Banner;
import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication;
import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
import org.springframework.boot.web.servlet.server.ServletWebServerFactory;
import org.springframework.context.annotation.Bean;
@SpringBootApplication
public class Application {
private final static Logger logger = LoggerFactory.getLogger(Application.class) ;
@Value("${https.port}")
int port;
@Value("${https.key-store}")
String storeFile;
@Value("${https.key-store-password}")
String password;
public static void main(String[] args) {
SpringApplication app = new SpringApplication(Application.class);
app.setBannerMode(Banner.Mode.OFF);
app.run(args);
}
@Bean
public ServletWebServerFactory servletContainer() {
TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory ();
tomcat.setUriEncoding(Charset.forName("UTF-8"));
tomcat.addAdditionalTomcatConnectors(createSslConnector());
return tomcat;
}
public Connector createSslConnector() {
Connector connector = new Connector("org.apache.coyote.http11.Http11NioProtocol");
Http11NioProtocol protocol = (Http11NioProtocol) connector.getProtocolHandler();
connector.setPort(port);
connector.setScheme("https");
connector.setSecure(true);
protocol.setSSLEnabled(true);
protocol.setClientAuth("false");
protocol.setSSLProtocol("TLSv1+TLSv1.1+TLSv1.2");
protocol.setCiphers("TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA");
protocol.setKeystoreFile(storeFile);
protocol.setKeystorePass(password);
return connector;
}
}
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.