How to configure https communication

From Gcube Wiki
Revision as of 17:06, 26 May 2014 by Ciro.formisano (Talk | contribs) (Created page with 'In order to enable HTTPS communication between the Portal and gCube services a keystore and a truststore should be created and associated to tomcat instance. Let's consider a ke…')

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

In order to enable HTTPS communication between the Portal and gCube services a keystore and a truststore should be created and associated to tomcat instance.

Let's consider a key store (keyStore.jks) and a trust store (truststore.jks): the former contains portal key and certificate used to contact gCube services and the latter contains the Certificates of the Certification Authorities used for the GHNs.

Key store and trust store should be configured by using CATALINA_OPTS variable in catalina.sh file, under TOMCAT_HOME/bin directory:

    export CATALINA_OPTS="-Djavax.net.ssl.keyStore=<keystore path> 
                          -Djavax.net.ssl.keyStorePassword=<keystore password> 
                          -Djavax.net.ssl.keyStoreType=<keystore type, default jks> 
                          -Djavax.net.ssl.trustStore=<truststore path> 
                          -Djavax.net.ssl.trustStoreType=<truststore type, default jks>                           
                          -Djavax.net.ssl.trustStorePassword=<truststore password>"