Cerbis
Reputation: 515
How do i get Spring Vault to trust a custom TLS chain provided as PEM
I am currently using Spring Vault with TLS, which works fine. My problem is that I need to support a custom TLS chain to connect to a client's Vault instance. Using a jks is not an option, my only option is to use PEM files.
I've read that Spring Vault is able to use PEM files for its SSL configuration, but I can't figure out how ... :(
Upvotes: 0
Views: 423
Answers (1)
Alex
Reputation: 5924
Technically you need to customize underlining web client and provide custom SslConfiguration loading certificates from PEM files and creating truststore in runtime.
Looking at VaultAutoConfiguration you could provide custom ClientFactoryWrapper bean configured with your SslConfiguration.
Upvotes: 0
Related Questions
- Spring Boot SSL: How To Trust All Valid Certificates
- Vault Error, Server gave HTTP response to HTTPS client
- Specifying trust store information in spring boot application.properties
- Spring Cloud Vault error: nested exception is javax.net.ssl.SSLHandshakeException: extension (5) should not be presented in certificate_request
- Hashicorp Vault Error: Error checking seal status
- Vault. Spring. Unrecognized SSL message, plaintext connection/
- Add ssl trustStore to thorntail application using project-defaults yaml
- Spring Vault SSLPeerUnverifiedException
- Hashicorp Vault tls cert authentication does not read certificate
- How can I specify keystore and trust store in application.yaml for ssl client?