Spring 使用项目默认值yaml将ssl信任库添加到thorntail应用程序_Spring_Ssl_Java 11_Thorntail_Wildfly 18

Spring 使用项目默认值yaml将ssl信任库添加到thorntail应用程序

spring ssl

Spring 使用项目默认值yaml将ssl信任库添加到thorntail应用程序,spring,ssl,java-11,thorntail,wildfly-18,Spring,Ssl,Java 11,Thorntail,Wildfly 18,如何使用配置项目默认值yaml或使用wildfly standalone.xml在thorntail应用程序上添加ssl trustStore和trustStorePassword 下面介绍如何使用yaml添加密钥库及其keyStorePassword thorntail: management: http: port: 8010 security-realms: ApplicationRealm: jaas-authenticatio

如何使用配置项目默认值yaml或使用wildfly standalone.xml在thorntail应用程序上添加ssl trustStore和trustStorePassword

下面介绍如何使用yaml添加密钥库及其keyStorePassword

thorntail:
  management:
    http:
      port: 8010
    security-realms:
      ApplicationRealm:
        jaas-authentication:
          name: OSecDom
        ssl-server-identity:
          alias: ${private.key.alias}
          keystore-provider: ${javax.net.ssl.keyStoreType}
          keystore-path: ${javax.net.ssl.keyStore}
          keystore-password: ${javax.net.ssl.keyStorePassword}

thorntail是否有可能，而不必添加ssl trustStore作为Java-JVM参数，如下所示

RUN_ARGS="-jar -Xdebug -Xrunjdwp:transport=dt_socket,server=y,suspend=n,address=5005 -Djavax.net.ssl.trustStore=/opt/myscerts/cacerts -Djavax.net.ssl.trustStorePassword=changeit  ${PROJECT_ARTIFACT} -P ${PROJECT_PROP} -s ${PROJECT_CONFIG}"
/usr/lib/java/jdk-11.0.5/bin/java $RUN_ARGS $*

可以添加信任存储：

thorntail:
  management:
    security-realms:
      my-ssl-realm:
        ssl-server-identity:
          keystore-path: server-keystore.jks
          keystore-password: server-password
          alias: server-key
          key-password: server-password
        truststore-authentication:
          keystore-path: server-truststore.jks
          keystore-password: server-password

有关使用遗留安全性和Elytron的两个完整示例，请参阅