Wednesday, July 4, 2018

2 Way mutual ssl authentication

For anyone looking to implement 2 way mutual auth, following code worked perfectly for me.
keystoreInputStream = null;
    FileInputStream truststoreInputStream = null;
    try {

        KeyStore keystore = KeyStore.getInstance(KeyStore.getDefaultType());
        keystoreInputStream = new FileInputStream("C:\\Users\\Aman\\STSProj\\AppSecurity\\clientkeystore.p12");
        keystore.load(keystoreInputStream, "client".toCharArray());

        keystoreInputStream.close();

        KeyStore trustore = KeyStore.getInstance(KeyStore.getDefaultType());
        truststoreInputStream = new FileInputStream("C:\\Users\\Aman\\STSProj\\AppSecurity\\clienttruststore.p12");
        trustore.load(truststoreInputStream, "client".toCharArray());

        SSLContext sslcontext = SSLContexts.custom().useProtocol("TLS")
                .loadKeyMaterial(keystore, "client".toCharArray())
                .loadTrustMaterial(trustore, null).build();

        HostnameVerifier hostnameverifier = null;

        SSLConnectionSocketFactory sslSocketFactory = new SSLConnectionSocketFactory(sslcontext,
                null, null, hostnameverifier);

        CloseableHttpClient httpClient = HttpClients.custom().setSSLSocketFactory(sslSocketFactory).build();

        HttpsURLConnection.setDefaultSSLSocketFactory(sslcontext.getSocketFactory());
        HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory();

        requestFactory.setHttpClient(httpClient);

        RestTemplate restTemp = new RestTemplate(requestFactory);

        String greetings = restTemp
                .getForObject("https://localhost:8443/SecureAppServer/test/security/hello/aman123", String.class);

        System.out.println("Received greetings from secured server ---> " + greetings);

    } catch (Exception e) {
        // TODO Auto-generated catch block
        e.printStackTrace();
    }

    finally {
        if (keystoreInputStream != null) {
            try {
                keystoreInputStream.close();
            } catch (IOException e) {
                // TODO Auto-generated catch block
                e.printStackTrace();
            }
        }
        if (truststoreInputStream != null) {
            try {
                truststoreInputStream.close();
            } catch (IOException e) {
                // TODO Auto-generated catch block
                e.printStackTrace();
            }
        }

    }
https://stackoverflow.com/questions/25226391/how-to-write-java-client-and-server-applications-that-uses-mutual-ssl-authentica
at

2 comments:

  1. anupJuly 23, 2018 at 2:42 AM

    Nice post. Could Not understand anything ..

    ReplyDelete
    Replies
    1. java cavaJuly 23, 2018 at 2:44 AM

      for ur understanding https://www.youtube.com/watch?v=vYhY11p47rI

      Delete

Subscribe to: Post Comments (Atom)

java-8-streams-map-examples

package com.mkyong.java8; import java.math.BigDecimal; import java.util.ArrayList; import java.util.Arrays; import java.util.List; im...

  • uploading image and displaying
    FileUploadAction.java package net.viralpatel.struts2; import java.io.File; import javax.servlet.http.HttpServletRequest; import org.a...
  • Default HostnameVerifier
    E ven if the   SSLContext   can verify that a certificate is signed by a trusted Certificate Authority, there is still room for problems. ...
  • Beyond Compare Script from command line
    You can call Beyond Compare 3 in scripting mode with a /silent flag to have it run automatically and generate a report without showing a wi...