ssl - How to add HTTPS certifications for Java application inside docker? -


i have java application make post request http api protected certificates. when ran locally first time got following exception:

i/o error on post request "https://... sun.security.validator.validatorexception: pkix path building failed: sun.security.provider.certpath.suncertpathbuilderexception: unable find valid certification path requested target; nested exception javax.net.ssl.sslhandshakeexception: sun.security.validator.validatorexception: pkix path building failed:  sun.security.provider.certpath.suncertpathbuilderexception: unable find valid certification path requested target

to fix exported certificate firefox , did following:

sudo keytool -import -alias example -keystore  /usr/lib/jvm/java-8-oracle/jre/lib/security/cacerts -file /path/to/certificate.der

reboot , worked.

now want application run on docker. so, have done before, use docker-maven-plugin spotify openjdk base image. first error appears again, try fix same way.

plugin usage:

<plugin> <groupid>com.spotify</groupid> <artifactid>docker-maven-plugin</artifactid> <version>0.4.13</version> <configuration>     <useconfigfile>true</useconfigfile>     <imagename>${project.artifactid}:${project.version}</imagename>     <baseimage>openjdk:latest</baseimage>     <imagetags>         <imagetag>latest</imagetag>         <imagetag>${project.version}</imagetag>     </imagetags>     <resources>         <resource>             <targetpath>/path/${project.artifactid}</targetpath>             <directory>${project.build.directory}</directory>             <include>${project.build.finalname}-jar-with-dependencies.jar</include>         </resource>         <resource>             <targetpath>/path/${project.artifactid}</targetpath>             <directory>${project.basedir}</directory>             <include>certificate.der</include>         </resource>     </resources>     <runs>         <run>$java_home/bin/keytool -import -noprompt -trustcacerts -alias example -file /path/certificate.der -keystore $java_home/jre/lib/security/cacerts -storepass changeit</run>         <run>chmod 555 /path</run>         <run>chmod 444 /path/${project.build.finalname}-jar-with-dependencies.jar</run>     </runs>     <entrypoint>         ["java", "-jar", "/path/${project.build.finalname}-jar-with-dependencies.jar"]     </entrypoint> </configuration>

the dockerfile generated is:

from openjdk:latest add /path/application.jar /path/ add /path/certificate.der /path/ run $java_home/bin/keytool -import -noprompt -trustcacerts -alias example -file /path/certificate.der -keystore $java_home/jre/lib/security/cacerts -storepass changeit run chmod 555 /path run chmod 444 /path/application.jar entrypoint ["java", "-jar", "/path/application.jar"]

the problem not fixed. run docker , when post request done have same error if don't have certificate in keystore, 1 mentioned @ beginning. also, if check keystore has certificate.

what missing?

any appreciated :)


Comments

Post a Comment

Popular posts from this blog

aws api gateway - SerializationException in posting new Records via Dynamodb Proxy Service in API -

i getting "__type": "com.amazon.coral.service#serializationexception" as reply in postman & in test console in api gateway trying post record directly dynamodb using api proxy services.. referring aws article - https://aws.amazon.com/blogs/compute/using-amazon-api-gateway-as-a-proxy-for-dynamodb/ here's mapping { "tablename": "tablenamegoeshere", "item": { "id" : "$context.requestid" "eventname" : "$input.path('$.eventname')", "timestamp" : $input.path('$.timestamp'), "answers": "$util.parsejson($input.path('$.answers'))" } } update: did asked ... , worked if try add array of json objects gives me above same error - here's trying now. please - couldnt find on google well #set($inputroot = $input.path('$')) { "tablename": "answer", "item": {
Read more

asp.net - Problems sending emails from forum -

i have been redesigning site has message board, has been written guy looked after site. it has few problems , written in .asp , uses .mdb files database. you can see whole thing here . feel free post if helps, test thing have set using original files , new database. the basic problem when posts message, supposed email sent them, have posted it. when replies, originator supposed message, replier has been posted. i’d have thought @ point in process there should script/file in postmessage.asp? the postmessage.asp page below. <% option explicit %> <!-- #include virtual="common/adovbs.inc" --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=windows-1252"> <meta name="generator" content="microsoft frontpage 4.0"> <meta name="progid" content="frontpage.editor.document"> <title>new page 2</title> <base target="_self"
Read more