I am trying to use my DummyX509TrustManager with Springboot.
In order to do that I write the following class:
@Configuration
public class DummyComponent {
@PostConstruct
public void sslContextConfiguration() {
try {
SSLContext sslContext = SSLContext.getInstance("TLS");
sslContext.init(null, new TrustManager[] { new DummyTrustManager() }, null);
SSLContext.setDefault(sslContext);
} catch (Exception e) {
e.printStackTrace();
}
}
It seems this doesn't have any effects on my code, because it's used the default X509TrustManagerImpl. Maybe I have to override it in another way?
SOLUTION:
@Configuration
public class MyConfig {
@Bean
public TomcatServletWebServerFactory containerFactory() {
TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory ();
tomcat.addAdditionalTomcatConnectors(createSslConnector());
return tomcat;
}
private Connector createSslConnector() {
Connector connector = new Connector("org.apache.coyote.http11.Http11NioProtocol");
Http11NioProtocol protocol = (Http11NioProtocol) connector.getProtocolHandler();
try {
File keystore = new ClassPathResource(keystorepath).getFile();
File truststore = new ClassPathResource(truststorepath).getFile();
connector.setScheme("https");
connector.setSecure(true);
connector.setPort(port);
protocol.setKeystoreFile(keystore.getAbsolutePath());
protocol.setKeystorePass(keystorepassw);
protocol.setKeyAlias(keystorealias);
protocol.setSSLEnabled(true);
protocol.setTruststoreFile(truststore.getAbsolutePath());
protocol.setTruststorePass(truststorepassw);
protocol.setClientAuth(Boolean.TRUE.toString());
protocol.setTrustManagerClassName("pakage.DummyTrustManager");
return connector;
} catch (IOException ex) {
throw new IllegalStateException("can't access keystore: [" + "keystore"
+ "] or truststore: [" + "keystore" + "]", ex);
}
}
}