- yml配置
server:
address: 127.0.0.1
port: 443
servlet:
context-path: /xxx项目名称
ssl:
key-store: classpath:server.keystore
key-alias: tomcat
enabled: true
key-store-password: 123456
key-store-type: JKS
- tomcat配置
package com.common.config;
import org.apache.catalina.Context;
import org.apache.catalina.connector.Connector;
import org.apache.tomcat.util.descriptor.web.SecurityCollection;
import org.apache.tomcat.util.descriptor.web.SecurityConstraint;
import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
@Configuration
public class ServerConfig {
@Bean
public Connector connector(){
Connector connector=new Connector("org.apache.coyote.http11.Http11NioProtocol");
connector.setScheme("http");
connector.setPort(80);
connector.setSecure(false);
connector.setRedirectPort(443);
return connector;
}
@Bean
public TomcatServletWebServerFactory tomcatServletWebServerFactory(Connector connector){
TomcatServletWebServerFactory tomcat=new TomcatServletWebServerFactory(){
@Override
protected void postProcessContext(Context context) {
SecurityConstraint securityConstraint=new SecurityConstraint();
securityConstraint.setUserConstraint("CONFIDENTIAL");
SecurityCollection collection=new SecurityCollection();
collection.addPattern("/*");
securityConstraint.addCollection(collection);
context.addConstraint(securityConstraint);
}
};
tomcat.addAdditionalTomcatConnectors(connector);
return tomcat;
}
}
本文介绍如何通过Tomcat配置实现HTTPS服务,并设置HTTP到HTTPS的强制重定向。详细展示了yml文件中关于SSL证书配置的部分及Tomcat配置类中关于连接器和上下文安全约束的设置。
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
