Pivotal Cloud Foundry-安全证书 [英] Pivotal Cloud Foundry - Security Certificates

问题描述

我的spring boot应用程序正在调用许多外部soap服务。在本地计算机上运行应用程序时，需要使用keytool命令在JVM中安装所有安全证书。但是，当我将应用程序部署到关键的Cloud Foundry平台时，该应用程序不会抱怨安全证书。我使用的服务主要托管在运行在不同数据中心上的Weblogic群集中。是否有可能解释为什么在pcf平台中部署的应用程序不要求安装安全证书？

My spring boot application is calling a number of external soap services. When I run the app in my local machine , I am required to install all the security certificates in my JVM using keytool command. However when I deploy my app to pivotal cloud foundry platform , the app is not complaining about the security certificates. The services that I consume are primarily hosted in weblogic clusters running on different data centers.Is there a possible explanation as to why the app deployed in pcf platform is not asking for security certificates to be installed? Could these have been installed by pcf admin when they made the java buildpack available?

推荐答案

您的系统管理员将需要添加受信任的文件，这些文件是否已经由pcf admin安装？证书是Cloud Foundry的证书，其过程取决于开源CF还是Pivotal CF：

your system administrator will need to add the trusted certificate to Cloud Foundry, the process is slightly different dependent on whether it's open source CF or Pivotal CF:

OSS CF： http://bosh.io/docs/trusted-certs.html

关键CF： https：// docs。 axis.io/pivotalcf/1-7/devguide/deploy-apps/trusted-system-certificates.html

添加证书后，告诉Java buildpack信任该证书，您可以通过在应用程序本身上设置环境变量来做到这一点：

Once the certificate is added, it's just a matter of telling the java buildpack to trust that certificate, you can do that by setting an environment variable on the app itself:

https://docs.pivotal.io/pivotalcf/1-7/buildpacks/java/bosh_custom_trusted_certs.html

这篇关于Pivotal Cloud Foundry-安全证书的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！