Java | Apache Tomcat 9 | 从 memory 读取密钥库
[英]Java | Apache Tomcat 9 | Read keystore from memory
问题描述
Apache Tomcat 9 (Java) 中是否有办法从变量中读取 SSL 加密的密钥库,这意味着无需将文件保存为文件的迂回路径保存为文件?
目前我将密钥库传递到 Apache 中,如下代码:
Connector connector = new Connector();
connector.setScheme("https");
connector.setProperty("keyAlias", "alias-test");
connector.setProperty("keystorePass", "testpwd");
connector.setProperty("keystoreType", "PKCS12");
connector.setProperty("keystoreFile", "keystore.pfx");
1 个解决方案
解决方案1
2 已采纳 2021-06-16 10:12:05
要使用已配置的KeyStore ,您需要使用适当的setter方法,自 Tomcat 8.5 起为:
-
SSLHostConfig#setTrustStore用于受信任的证书, -
SSLHostConfigCertificate#setCertificateKeyStore用于包含服务器证书的密钥库。
总结起来是这样的:
final KeyStore trustStore = ...
final KeyStore keyStore = ...
// Certificate
final SSLHostConfigCertificate certificate = new SSLHostConfigCertificate();
certificate.setCertificateKeystore(keyStore);
certificate.setCertificateKeyAlias("mykey");
certificate.setCertificateKeyPassword("secret");
// Host SSL configuration
final SSLHostConfig sslHostConfig = new SSLHostConfig();
sslHostConfig.setTrustStore(trustStore);
sslHostConfig.addCertificate(certificate);
// Connector
final Connector connector = new Connector();
connector.setScheme("https");
connector.setSecure(true);
connector.addSslHostConfig(sslHostConfig);
connector.setProperty("SSLEnabled", "true");
从标准apache ssl certs生成java密钥库(用于jetty)
[英]Generate a java keystore (for jetty) from standard apache ssl certs
如何从TomCat中运行的Java应用程序中读取Apache Httpd Env变量?
[英]How can I read Apache Httpd Env variables from a Java application running in TomCat?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.