SpringBoot+Eureka+CloudConfig in a SSL environment

java ssl spring spring-boot tomcat

Define META-INF/spring.factories and add a org.springframework.cloud.bootstrap.BootstrapConfiguration = ... line

The class could be like:

@Configuration
@BootstrapConfiguration
public class SslConfiguration {
  @Value("${http.client.ssl.trust-store}")
  private URL trustStore;
  @Value("${http.client.ssl.trust-store-password}")
  private String trustStorePassword;

  @Bean
  public DiscoveryClient.DiscoveryClientOptionalArgs getTrustStoredEurekaClient(SSLContext sslContext) {
    DiscoveryClient.DiscoveryClientOptionalArgs args = new DiscoveryClient.DiscoveryClientOptionalArgs();
    args.setSSLContext(sslContext);
    return args;
  }

  @Bean
  public SSLContext sslContext() throws Exception {
    return new SSLContextBuilder().loadTrustMaterial(trustStore, trustStorePassword.toCharArray()).build();
  }
}

And because the DiscoveryClientOptionalArgs are now defined twice, then add another class, which is loaded after the Spring Context is up

@Configuration
public class DiscoveryServiceConfiguration {
  @Bean
  public static BeanFactoryPostProcessor registerPostProcessor() {
    return (ConfigurableListableBeanFactory beanFactory) -> {
      BeanDefinitionRegistry registry = (BeanDefinitionRegistry) beanFactory;
      for (String beanDefinitionName : registry.getBeanDefinitionNames()) {
        if (beanDefinitionName.equalsIgnoreCase("discoveryClientOptionalArgs")) {
          BeanDefinition beanDefinition = registry.containsBeanDefinition(beanDefinitionName) ? registry.getBeanDefinition(beanDefinitionName) : null;
          if (beanDefinition != null) {
            if (registry.containsBeanDefinition(beanDefinitionName)) {
              registry.removeBeanDefinition(beanDefinitionName);
            }
          }
        }
      }
    };
  }
}

Then it works too. You don't need to define JVM args anymore.


interesting thing - If I use embedded Undertow instead of embedded Tomcat, it works - but is this the solution? 

dependencies {
  compile("org.springframework.boot:spring-boot-starter") {
    exclude module: "tomcat-embed-el"
  }
  compile("org.springframework.boot:spring-boot-starter-web") {
    exclude module: "spring-boot-starter-tomcat"
  }
  compile('org.springframework.boot:spring-boot-starter-undertow')
  ...
}

Related

Opening zipfile of unsupported compression-type silently returns empty filestream, instead of throwing exception
Pyspark dataframe column value dependent on value from another row
Why fetching images I can not to count number of uploaded images?
Scatterpie pie plot: circles not properly positioned over map
How do I calculate TVL on-chain?
How to efficiently determine the binary length of an integer? [duplicate]
"grant_type parameter is missing": Spotify API PKCE OAuth Flow Troubles
vue js how to set option value selected
react change color of a single element with index
Run sudo apt-get install without internet connection
How to make a Text widget act like marquee when the text overflows in Flutter
Get canvas from context