java-tutorials
mutual-tls-ssl
Our great sponsors
java-tutorials | mutual-tls-ssl | |
---|---|---|
2 | 13 | |
32 | 540 | |
- | - | |
5.8 | 5.8 | |
2 months ago | about 1 month ago | |
Java | Java | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
java-tutorials
-
Hot reload SSL configuration for a server and http client
Hi, I have been working on a small library to make hot reloading of a ssl configuration for a server and http client possible. I was just curious why we needed to restart the server or recreate a http client with new ssl configuration when the keystores needed to be updated. I wanted to learn how the ssl configuration is handled in java and was just curious if I could be able to bypass this limitation and reload the ssl configuration instantly. An alternative would be to use nginx as a proxy with ssl configuration for a server setup, but I was a bit bored and wanted to achieve this just in java. In the above demo I demonstrate a spring boot with embedded jetty server, however similar behaviour is possible with akka or other servers which use SSLContext, SSLSocketFactory, SSLEngine, TrustManager or KeyManager. The server has an initial ssl configuration and it will get updated by an admin application from the terminal through an https request, but it can also use a file listener to update it. If the keystores on the filesystem get replaced or updated it can also pick that up or fetch it from a database based on a trigger or something else. The demo can be found here https://github.com/Hakky54/java-tutorials/tree/main/instant-server-ssl-reloading I use my own library to have this setup working, which is available here: https://github.com/Hakky54/sslcontext-kickstart
-
Updating server certificates during runtime without the need of restarting it
The example project is here: GitHub - Instant server ssl reloading
mutual-tls-ssl
-
Challenging Java Hobby Projects
You can check my GitHub repo Mutual tls ssl It covers the following topics:
-
Step by step guide of setting up SSL/TLS for a server and client
See here for the tutorial: https://github.com/Hakky54/mutual-tls-ssl
What are some alternatives?
SSLContext-Kickstart - π A lightweight high level library for configuring a http client or server based on SSLContext or other properties such as TrustManager, KeyManager or Trusted Certificates to communicate over SSL TLS for one way authentication or two way authentication provided by the SSLFactory. Support for Java, Scala and Kotlin based clients with examples. Available client examples are: Apache HttpClient, OkHttp, Spring RestTemplate, Spring WebFlux WebClient Jetty and Netty, the old and the new JDK HttpClient, the old and the new Jersey Client, Google HttpClient, Unirest, Retrofit, Feign, Methanol, Vertx, Scala client Finagle, Featherbed, Dispatch Reboot, AsyncHttpClient, Sttp, Akka, Requests Scala, Http4s Blaze, Kotlin client Fuel, http4k Kohttp and Ktor. Also gRPC, WebSocket and ElasticSearch examples are included
es-kafka-pagination - Letβs say you have an ElasticSearch Index of 1,000,000 documents and you need to run some operation on those documents.
OneMoreSecret - Password management based on Android KeyStore, QR and Bluetooth
MoreShortcuts - Adds more shortcuts to Intellij Idea
certificate-ripper - π A CLI tool to extract server certificates