SpringBoot2.0如何启用https协议
SpringBoot2.0之后,启用https协议的方式与1.*时有点儿不同,贴一下代码。
我的代码能够根据配置参数中的condition.http2https,确定是否启用https协议,如果启用https协议时,会将所有http协议的访问,自动转到https协议上。
一、启动程序
packagecom.wallimn.iteye.sp.asset;
importorg.apache.catalina.Context;
importorg.apache.catalina.connector.Connector;
importorg.apache.tomcat.util.descriptor.web.SecurityCollection;
importorg.apache.tomcat.util.descriptor.web.SecurityConstraint;
importorg.springframework.beans.factory.annotation.Value;
importorg.springframework.boot.SpringApplication;
importorg.springframework.boot.autoconfigure.SpringBootApplication;
importorg.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
importorg.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
importorg.springframework.context.annotation.Bean;
/**
*SpringBoot2.0启动程序
*@authorwallimn,http://wallimn.iteye.com
*
*/
@SpringBootApplication
publicclassAssetApplication{
publicstaticvoidmain(String[]args){
SpringApplication.run(AssetApplication.class,args);
}
//如果没有使用默认值80
@Value("${http.port:80}")
IntegerhttpPort;
//正常启用的https端口如443
@Value("${server.port}")
IntegerhttpsPort;
//springboot2写法
@Bean
@ConditionalOnProperty(name="condition.http2https",havingValue="true",matchIfMissing=false)
publicTomcatServletWebServerFactoryservletContainer(){
TomcatServletWebServerFactorytomcat=newTomcatServletWebServerFactory(){
@Override
protectedvoidpostProcessContext(Contextcontext){
SecurityConstraintconstraint=newSecurityConstraint();
constraint.setUserConstraint("CONFIDENTIAL");
SecurityCollectioncollection=newSecurityCollection();
collection.addPattern("/*");
constraint.addCollection(collection);
context.addConstraint(constraint);
}
};
tomcat.addAdditionalTomcatConnectors(httpConnector());
returntomcat;
}
@Bean
@ConditionalOnProperty(name="condition.http2https",havingValue="true",matchIfMissing=false)
publicConnectorhttpConnector(){
System.out.println("启用http转https协议,http端口:"+this.httpPort+",https端口:"+this.httpsPort);
Connectorconnector=newConnector("org.apache.coyote.http11.Http11NioProtocol");
connector.setScheme("http");
//Connector监听的http的端口号
connector.setPort(httpPort);
connector.setSecure(false);
//监听到http的端口号后转向到的https的端口号
connector.setRedirectPort(httpsPort);
returnconnector;
}}
二、配置文件
1.使用http协议时的配置
server.port=80
2.使用https及http协议时的配置
server.port=443 server.ssl.key-store=classpath:keystore.p12 server.ssl.key-store-password=your-password server.ssl.keyStoreType=PKCS12 server.ssl.keyAlias=your-cert-alias condition.http2https=true http.port=80
以上就是本文的全部内容,希望对大家的学习有所帮助,也希望大家多多支持毛票票。