Difference between revisions of "How to configure https communication"

From Gcube Wiki
Jump to: navigation, search
(Created page with 'In order to enable HTTPS communication between the Portal and gCube services a keystore and a truststore should be created and associated to tomcat instance. Let's consider a ke…')
 
(No difference)

Latest revision as of 18:06, 26 May 2014

In order to enable HTTPS communication between the Portal and gCube services a keystore and a truststore should be created and associated to tomcat instance.

Let's consider a key store (keyStore.jks) and a trust store (truststore.jks): the former contains portal key and certificate used to contact gCube services and the latter contains the Certificates of the Certification Authorities used for the GHNs.

Key store and trust store should be configured by using CATALINA_OPTS variable in catalina.sh file, under TOMCAT_HOME/bin directory: 

    export CATALINA_OPTS="-Djavax.net.ssl.keyStore=<keystore path> 
                          -Djavax.net.ssl.keyStorePassword=<keystore password> 
                          -Djavax.net.ssl.keyStoreType=<keystore type, default jks> 
                          -Djavax.net.ssl.trustStore=<truststore path> 
                          -Djavax.net.ssl.trustStoreType=<truststore type, default jks>                           
                          -Djavax.net.ssl.trustStorePassword=<truststore password>"
Retrieved from "https://wiki.gcube-system.org/index.php?title=How_to_configure_https_communication&oldid=21648"