增加ssl
This commit is contained in:
季圣华
43
src/main/java/com/jsh/erp/config/SSLConfig.java
Normal file
43
src/main/java/com/jsh/erp/config/SSLConfig.java
Normal file
@@ -0,0 +1,43 @@
|
|||||||
|
package com.jsh.erp.config;
|
||||||
|
|
||||||
|
import org.apache.catalina.Context;
|
||||||
|
import org.apache.catalina.connector.Connector;
|
||||||
|
import org.apache.tomcat.util.descriptor.web.SecurityCollection;
|
||||||
|
import org.apache.tomcat.util.descriptor.web.SecurityConstraint;
|
||||||
|
import org.springframework.boot.autoconfigure.condition.ConditionalOnExpression;
|
||||||
|
import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
|
||||||
|
import org.springframework.context.annotation.Bean;
|
||||||
|
import org.springframework.context.annotation.Configuration;
|
||||||
|
|
||||||
|
@ConditionalOnExpression(value = "${server.ssl.enable:true}")
|
||||||
|
@Configuration
|
||||||
|
public class SSLConfig {
|
||||||
|
|
||||||
|
@Bean
|
||||||
|
public Connector connector(){
|
||||||
|
Connector connector=new Connector("org.apache.coyote.http11.Http11NioProtocol");
|
||||||
|
connector.setScheme("http");
|
||||||
|
connector.setPort(80);
|
||||||
|
connector.setSecure(false);
|
||||||
|
connector.setRedirectPort(443);
|
||||||
|
return connector;
|
||||||
|
}
|
||||||
|
|
||||||
|
@Bean
|
||||||
|
public TomcatServletWebServerFactory tomcatServletWebServerFactory(Connector connector){
|
||||||
|
TomcatServletWebServerFactory tomcat=new TomcatServletWebServerFactory(){
|
||||||
|
@Override
|
||||||
|
protected void postProcessContext(Context context) {
|
||||||
|
SecurityConstraint securityConstraint=new SecurityConstraint();
|
||||||
|
securityConstraint.setUserConstraint("CONFIDENTIAL");
|
||||||
|
SecurityCollection collection=new SecurityCollection();
|
||||||
|
collection.addPattern("/*");
|
||||||
|
securityConstraint.addCollection(collection);
|
||||||
|
context.addConstraint(securityConstraint);
|
||||||
|
}
|
||||||
|
};
|
||||||
|
tomcat.addAdditionalTomcatConnectors(connector);
|
||||||
|
return tomcat;
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
||||||
@@ -1,4 +1,11 @@
|
|||||||
server.port=8080
|
server.port=8080
|
||||||
|
#server.port=443
|
||||||
|
#server.ssl.key-store=classpath:jishenghua.jks
|
||||||
|
#server.ssl.key-alias=alias
|
||||||
|
#server.ssl.key-store-password=password
|
||||||
|
#server.ssl.key-store-type=JKS
|
||||||
|
#ssl的开关
|
||||||
|
server.ssl.enable=false
|
||||||
#登录超时-秒
|
#登录超时-秒
|
||||||
server.servlet.session.timeout=36000
|
server.servlet.session.timeout=36000
|
||||||
#数据库连接
|
#数据库连接
|
||||||
|
|||||||
BIN
src/main/resources/jishenghua.jks
Normal file
BIN
src/main/resources/jishenghua.jks
Normal file
Binary file not shown.
Reference in New Issue
Block a user