Reputation: 156
Grails SSL certificate error
I'm using the acegi security plugin and I run the app -https. The cert is generated but I get a certificate warning when i visit the web page. I have then download the weak ssl plugin and added weakssl.trustAll =true to Config.groovy. But still getting the same warning. Have I left out anything?
Upvotes: 0
Views: 1305
Answers (2)
Reputation: 2381
To solve your problem you need to either
- manually tell your browser the certificate is OK by adding the certificate to your truststore
or
- get a certificate from a trusted CA (Certificate Authority) a list of trusted CAs is stored in your browser. To get a certififate from a CA you need to proof your identity and pay (a lot) some money.
so I recommend you just accept the untrusted certifcate unless you want to buy a CA certificate.
The config you changed tells only the server to accept all certificates. i.e. if your server is connecting to another server
Upvotes: 1
Reputation: 182753
The warning is normal. You can just accept the self-signed certificate. The weakssl module allows the Grails server to trust itself even if it provides a self-signed certificate. It has no effect whatsoever on the client. (Think what a horrible security hole it would be if you could just install some code on the server and get a client to accept a self-signed certificate without a warning!)
Upvotes: 2
Related Questions
- Run Grails on HTTPS
- Grails:Groovy:SSLPeerUnverifiedException: peer not authenticated
- handshake_failure from grails app
- How to configure SSL in Grails 3.1.6+?
- Error with Grails on Windows. unable to find valid certification
- SSL, Tomcat and Grails
- grails 3.0.4 throws SSLPeerUnverifiedException
- How to run grails in Netbeans (8.0) with https (ssl)?
- How to verify SSL in Grails application running on tomcat?
- Errors with SSL validation in Grails