Specifying trust store information in spring boot application.properties

by

In case if you need to make a REST call you can use the next way.

This will work for outgoing calls through RestTemplate.

Declare the RestTemplate bean like this.

@Configuration
public class SslConfiguration {
    @Value("${http.client.ssl.trust-store}")
    private Resource keyStore;
    @Value("${http.client.ssl.trust-store-password}")
    private String keyStorePassword;

    @Bean
    RestTemplate restTemplate() throws Exception {
        SSLContext sslContext = new SSLContextBuilder()
                .loadTrustMaterial(
                        keyStore.getURL(),
                        keyStorePassword.toCharArray()
                ).build();
        SSLConnectionSocketFactory socketFactory = 
                new SSLConnectionSocketFactory(sslContext);
        HttpClient httpClient = HttpClients.custom()
                .setSSLSocketFactory(socketFactory).build();
        HttpComponentsClientHttpRequestFactory factory = 
                new HttpComponentsClientHttpRequestFactory(httpClient);
        return new RestTemplate(factory);
    }
}

Where http.client.ssl.trust-store and http.client.ssl.trust-store-password points to truststore in JKS format and the password for the specified truststore.

This will override the RestTemplate bean provided with Spring Boot and make it use the trust store you need.

More Related Contents:

  1. How do you sign a Certificate Signing Request with your Certification Authority?
  2. Is a HTTPS query string secure?
  3. Security consequences of disabling CURLOPT_SSL_VERIFYHOST (libcurl/openssl)
  4. Using a custom truststore in java as well as the default one
  5. “The underlying connection was closed: An unexpected error occurred on a send.” With SSL Certificate
  6. Convert .pem to .crt and .key
  7. Import certificate as PrivateKeyEntry
  8. How to do a https request with bad certificate?
  9. How to Configure SSL for Amazon S3 bucket
  10. Use self signed certificate with cURL?
  11. How to force SSL for Kubernetes Ingress on GKE
  12. Ignore SSL certificate errors in Xamarin.Forms (PCL)
  13. How to read data from java properties file using Spring Boot
  14. Why does my wss:// (WebSockets over SSL/TLS) connection immediately disconnect without giving any errors?
  15. curl: (35) error:1408F10B:SSL routines:ssl3_get_record:wrong version number
  16. Enabling SSL with XAMPP
  17. pip always fails ssl verification
  18. Connecting to a Websphere MQ in Java with SSL/Keystore
  19. How to add subject alernative name to ssl certs?
  20. Insecure content in iframe on secure page
  21. Difference between self-signed CA and self-signed certificate [closed]
  22. Load spring boot app properties from database
  23. How to configure trustStore for javax.net.ssl.trustStore on windows?
  24. SSL errors using MailChimp’s API
  25. Google App Script – MySql 8 – JDBC Connection Failed
  26. SSL Certificate add failed when binding to port
  27. How to connect to database with SSL in google apps script?
  28. Setting multiple truststore on the same JVM
  29. SSLHandshakeException: Received fatal alert: handshake_failure when setting ciphers on tomcat 7 server
  30. What is CA certificate, and why do we need it?

Leave a Comment