1、修改配置文件application.yml,并将*.jks放到resource目录下。
bash
server:
port: 8080
ssl:
key-store: classpath:*.jks
key-store-password: *
key-store-type: JKS
enabled: true
key-alias: boe.com.cn2、添加http转https的配置
java
@Configuration
public class TomcatConfig {
@Bean
public TomcatServletWebServerFactory servletContainer() {
TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory() {
@Override
protected void postProcessContext(Context context) {
SecurityConstraint constraint = new SecurityConstraint();
constraint.setUserConstraint("CONFIDENTIAL");
SecurityCollection collection = new SecurityCollection();
collection.addPattern("/*");
constraint.addCollection(collection);
context.addConstraint(constraint);
}
};
tomcat.addAdditionalTomcatConnectors(httpConnector());
return tomcat;
}
@Bean
public Connector httpConnector() {
Connector connector = new Connector("org.apache.coyote.http11.Http11NioProtocol");
connector.setScheme("http");
//Connector监听的http的端口号
connector.setPort(8082);
connector.setSecure(false);
//监听到http的端口号后转向到的https的端口号
connector.setRedirectPort(8080);
return connector;
}
}3、修改pom.xml文件
一般到上一步,本地运行没有什么问题,但是打包会有问题。
xml
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-resources-plugin</artifactId>
<version>3.1.0</version>
<configuration>
<nonFilteredFileExtensions>
<!-- 过滤后缀为jks的证书文件 -->
<nonFilteredFileExtension>jks</nonFilteredFileExtension>
</nonFilteredFileExtensions>
</configuration>
</plugin>此时打包应该没有问题,但是部署时可能会出现端口问题,如果出现就添加一下代码
xml
<resource>
<directory>src/main/resources</directory>
<filtering>true</filtering>
<excludes>
<!-- 替换成自己的证书文件 -->
<exclude>*.jks</exclude>
</excludes>
</resource>
<resource>
<directory>src/main/resources</directory>
<filtering>false</filtering>
<includes>
<!-- 替换成自己的证书文件 -->
<include>*.jks</include>
</includes>
</resource>另外,如果还有问题,就很可能是端口问题,8090这个端口配置一直不成功,换成8080就好了。