Reputation: 165
Springboot : Initializing EmbeddedServletContainerFactory based on some flag
I want to implement SSL in spring boot application wherein, i also want to encrypt (For testing purpose i am encoding it by base 64) the password to the keystore, which i am passing as JVM arguments to the spring boot application.
This password to keystore will be later used in following way to decrypt (for now base 64 decode) and form the EmbeddedServletContainerFactory on the fly.
@Bean
public EmbeddedServletContainerFactory servletContainer() {
TomcatEmbeddedServletContainerFactory tomcatFactory = new TomcatEmbeddedServletContainerFactory();
tomcatFactory.setSsl(createSsl());
tomcatFactory.setPort(sslConfig.getHttpsPort());
return tomcatFactory;
}
private Ssl createSsl() {
Ssl ssl = new Ssl();
try {
ssl.setKeyStore("/path/to/keystore.pkcs12");
ssl.setKeyStorePassword(new String(Base64.getDecoder().decode(sslConfig.getKeyPassword())));
ssl.setKeyAlias(sslConfig.getKeyAlias());
} catch (Exception e) {
logger.error(e.getMessage());
}
return ssl;
}
JVM arguments :
-Dtls.keyAlias=tomcat
-Dtls.key-store-password=cGFzc3dvcmQ=
POJO to store the alias and password getting from JVM arguments :
@Component
public class SSLConfig {
@Value("#{systemProperties['tls.keyAlias']}")
public String keyAlias;
@Value("#{systemProperties['tls.key-store-password']}")
private String keyPassword;
....getters n setters
}
The above configuration is working absolutely fine.
Now, I want to achieve this based on some flag which will be passed through JVM arguments say "isSSLEnabled", on setting which the control should flow through above logic, otherwise it should work in default way.
Can someone please guide on this ?
Upvotes: 1
Views: 417
Answers (1)
Reputation: 47905
You can use Spring Boot's ConditionalOnProperty annotation to make your servletContainer() bean conditional on the value of an isSSLEnabled property/JVM argument.
For example:
@Bean
@ConditionalOnProperty(name = "isSSLEnabled", havingValue = "true")
public EmbeddedServletContainerFactory servletContainer() {
TomcatEmbeddedServletContainerFactory tomcatFactory = new TomcatEmbeddedServletContainerFactory();
tomcatFactory.setSsl(createSsl());
tomcatFactory.setPort(sslConfig.getHttpsPort());
return tomcatFactory;
}
private Ssl createSsl() {
Ssl ssl = new Ssl();
try {
ssl.setKeyStore("/path/to/keystore.pkcs12");
ssl.setKeyStorePassword(new String(Base64.getDecoder().decode(sslConfig.getKeyPassword())));
ssl.setKeyAlias(sslConfig.getKeyAlias());
} catch (Exception e) {
logger.error(e.getMessage());
}
return ssl;
}
Upvotes: 5
Related Questions
- Conditional enabling of HTTPS in Springboot application
- Spring Boot: how to use Multiple RestTemplates? to make calls with and without SSL certificate verification conditionally
- Spring Boot 2 programmatic configuration of Embedded Servlet Container
- How to configure a servlet init-param in a Spring boot application
- Is there a way to move Java VM args to Spring Boot configuration file?
- Springboot>WebServlet - Pass spring container
- Spring Boot: Enable HTTPS for embedded tomcat
- Disable SSLv3 using Spring-Boot and embedded Tomcat
- Configure multiple servletcontainers/servlets with spring boot
- How to generate an HttpServletRequest during Spring startup for a bean initialisation?