问题
My spring boot application is calling a number of external soap services. When I run the app in my local machine , I am required to install all the security certificates in my JVM using keytool command. However when I deploy my app to pivotal cloud foundry platform , the app is not complaining about the security certificates. The services that I consume are primarily hosted in weblogic clusters running on different data centers.Is there a possible explanation as to why the app deployed in pcf platform is not asking for security certificates to be installed? Could these have been installed by pcf admin when they made the java buildpack available?
回答1:
your system administrator will need to add the trusted certificate to Cloud Foundry, the process is slightly different dependent on whether it's open source CF or Pivotal CF:
OSS CF: http://bosh.io/docs/trusted-certs.html
Pivotal CF : https://docs.pivotal.io/pivotalcf/1-7/devguide/deploy-apps/trusted-system-certificates.html
Once the certificate is added, it's just a matter of telling the java buildpack to trust that certificate, you can do that by setting an environment variable on the app itself:
https://docs.pivotal.io/pivotalcf/1-7/buildpacks/java/bosh_custom_trusted_certs.html
来源:https://stackoverflow.com/questions/39391896/pivotal-cloud-foundry-security-certificates