How to configure spring boot application to use SSL/TLS over MySQL?

java mysql spring ssl spring-boot
27,313

Solution 1

You need to add the "*.pem" files (cert and key) in a keystore and the CA in a "truststore".

This link explains well how to create your own keystore and truststore [link] http://roopindersingh.com/programming/converting-pem-certificates-and-private-keys-to-jks/

After you have to add in JVM paramaters 

-Djavax.net.ssl.keyStore=/path/to/keystore/keystore.jks
-Djavax.net.ssl.keyStorePassword=password
-Djavax.net.ssl.trustStore=/path/to/keystore/truststore.jks
-Djavax.net.ssl.trustStorePassword=password

Solution 2

Check my answer: https://stackoverflow.com/a/51879119/173149

I don't like to pollute java options or system properties, which are useless in application containers in any case...

You can set SSL certificate for MySQL connection programmically with:

jdbc:mysql://example.com:3306/MYDB?verifyServerCertificate=true&useSSL=true&requireSSL=true&clientCertificateKeyStoreUrl=file:cert/keystore.jks&clientCertificateKeyStorePassword=123456&trustCertificateKeyStoreUrl=file:cert/truststore.jks&trustCertificateKeyStorePassword=123456

It is documented:

Share:
27,313
Youssouf Maiga
Author by

Youssouf Maiga

Updated on August 17, 2020

Comments

  • Youssouf Maiga
    Youssouf Maiga almost 4 years

    I set up SSL on my MySQL server.

    I generated few certicates for CA (ca.pem, ca-key.pem), for client (client-cert.pem, client-key.pem) and server (server-cert.pem and server-key.pem).

    In spring boot configuration file, here is the link to MySQL defined in application.yml file : jdbc:mysql://host:3306/bdd_name?useUnicode=true&characterEncoding=utf8&useSSL=true&requireSSL=true

    I verify that my certicates are with openssl verify and I verify also by using a mysql client to set up a connection.

    How to set the link Spring Boot application to my certificates (I have *.pem files) to finish my configuration ?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

What is wrong with my datasource settings to get Spring Boot to connect to MySQL?
Spring Boot exception "java.lang.IllegalArgumentException: Not a managed type:"
Spring boot Bean exception: Cannot determine embedded database driver class for database type NONE
how to save multiple tables using Spring boot JpaRepository
How to set HTTPS SSL Cipher Suite Preference in Spring boot embedded tomcat
How do I specify local file path to my ssl keystore file in spring application.properties?
how to execute sql statements inside spring boot controller?
Client Certificate Authentication with Spring Boot
Connect MySQL to Spring application
many-to-many-relationship between two entities in spring boot