spring-bootssltomcat
Error: unable to verify the first certificate - Springboot
I have written a restful API project which is developed using spring boot and I am using the embedded tomcat and running a jar on a linux server.
The APIs are live at:
https://api.arevogroup.com:8089/api/regions
and I can see the verified and correct SSL as well as in the given screenshot. 
but I am getting an this exception in the postman when I call these apis.
These APIs are consumed by a Xamrin based app which seems to work all good when consumed using iPhone but gives this same exception when the APIs are accessed via android.
I guess, the way I have generated the ssl certificate has some issues.
I have used a pfx file and my SSL config in properties file looks like this:
###SSL Key Info
security.require-ssl=true
server.ssl.key-store-password=PASSWORD
server.ssl.key-store=classpath:ssl_pfx.pfx
server.ssl.key-store-type=PKCS12
- I have 2 questions, if disable the ssl verification, would the communication still be encrypted or not? (man in the middle attack is still possible but the info will still be encrypted, right?).
- If not, how can I fix this?
Solution
security.require-ssl=true
server.ssl.key-store-password=PASSWORD
server.ssl.key-store=keystore.jks
server.ssl.key-store-provider=SUN
server.ssl.key-store-type=JKS
Used the jks file instead of pfx and it worked all good. Thought to share with others too.
- Handling exceptions thrown by Spring @Async methods
- Spring: how to pass objects from filters to controllers
- Spring Boot 3 micrometer tracing in MDC
- How to post request with spring boot web-client for Form data for content type application/x-www-form-urlencoded
- SpringBoot unknown property in application.properties
- Spring Boot 2.4.2 and Thymeleaf 3.0.12 - access static methods
- Spinning up Spring Instances - how to prevent Redis Cache Overload
- Spring Boot Restful Service and CORS problem
- parameters of @Bean annotated method
- Compatibility between JOOQ and spring-boot version
- Kafka + Java app. in Docker on local computer
- Spring Boot Jar cannot find auto config files
- Spring controller that accepts both MultipartFile and also a JSON Object
- Override default Spring-Boot application.properties settings in Junit Test
- Spring boot 3.2.9 Cloud stream - Kafka binder. classcastexception - class java.lang.Byte cannot be cast to class java.util.UUID
- Kafka Streams Admin Client disconnections
- Eclipse Spring Tool Suite add dependencies using GUI after project creation
- CORS in Spring Security (Spring Boot 3)
- SpringBoot + React: SpringBoot not checking CSRF token
- Can using GenerationType.SEQUENCE cause issues with Kubernetes and load balancing across multiple instances of a Spring Boot app?
- InvalidDataAccessApiUsageException: No enum constant
- Reactor Netty: Connection prematurely closed BEFORE response with WebClient
- How to handle Docker-Secrets in application.properties files
- What is the difference between getAsyncExecutor and threadPoolTaskScheduler in Spring MVC ASyncConfigurer?
- Spring Boot JPA H2 Console not running, application.properties file ignored
- Spring, Hibernate issue with applying/using another SQL Dialect
- File Extension getting changed for few content types when downloaded
- Does spring always require KafkaTemplate?
- ClassCastException: with unnamed module of loader 'app': Spring Data Redis
- Spring Boot: How to disable startup log message "Starting Application on mbp with PID 99446"