mklimek · June 11, 2021 00:10 · mklimek · Mar 30, 2016
diff --git a/SslUtils.java b/SslUtils.java
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;

 import java.io.FileInputStream;
 import java.io.InputStream;
 import java.security.KeyStore;
 import java.security.SecureRandom;
 import java.security.cert.Certificate;
 import java.security.cert.CertificateFactory;
 import java.security.cert.X509Certificate;

 import javax.net.ssl.SSLContext;
 import javax.net.ssl.TrustManagerFactory;

 public class SslUtils {

    private static final Logger LOG = LoggerFactory.getLogger(SslUtils.class.getSimpleName());

    public static SSLContext getSslContextForCertificateFile(String fileName) {
        try {
            KeyStore keyStore = SslUtils.getKeyStore(fileName);
            SSLContext sslContext = SSLContext.getInstance("SSL");
            TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
            trustManagerFactory.init(keyStore);
            sslContext.init(null, trustManagerFactory.getTrustManagers(), new SecureRandom());
            return sslContext;
        } catch (Exception e) {
            String msg = "Cannot load certificate from file";
            LOG.error(msg, e);
            throw new RuntimeException(msg);
        }
    }

    private static KeyStore getKeyStore(String fileName) {
        KeyStore keyStore = null;
        try {
            CertificateFactory cf = CertificateFactory.getInstance("X.509");
            InputStream inputStream = new FileInputStream(fileName);
            Certificate ca;
            try {
                ca = cf.generateCertificate(inputStream);
                LOG.debug("ca={}", ((X509Certificate) ca).getSubjectDN());
            } finally {
                inputStream.close();
            }

            String keyStoreType = KeyStore.getDefaultType();
            keyStore = KeyStore.getInstance(keyStoreType);
            keyStore.load(null, null);
            keyStore.setCertificateEntry("ca", ca);
        } catch (Exception e) {
            LOG.error("Error during getting keystore", e);
        }
        return keyStore;
    }
 }
	import org.slf4j.Logger;
	import org.slf4j.LoggerFactory;

	import java.io.FileInputStream;
	import java.io.InputStream;
	import java.security.KeyStore;
	import java.security.SecureRandom;
	import java.security.cert.Certificate;
	import java.security.cert.CertificateFactory;
	import java.security.cert.X509Certificate;

	import javax.net.ssl.SSLContext;
	import javax.net.ssl.TrustManagerFactory;

	public class SslUtils {

	private static final Logger LOG = LoggerFactory.getLogger(SslUtils.class.getSimpleName());

	public static SSLContext getSslContextForCertificateFile(String fileName) {
	try {
	KeyStore keyStore = SslUtils.getKeyStore(fileName);
	SSLContext sslContext = SSLContext.getInstance("SSL");
	TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
	trustManagerFactory.init(keyStore);
	sslContext.init(null, trustManagerFactory.getTrustManagers(), new SecureRandom());
	return sslContext;
	} catch (Exception e) {
	String msg = "Cannot load certificate from file";
	LOG.error(msg, e);
	throw new RuntimeException(msg);
	}
	}

	private static KeyStore getKeyStore(String fileName) {
	KeyStore keyStore = null;
	try {
	CertificateFactory cf = CertificateFactory.getInstance("X.509");
	InputStream inputStream = new FileInputStream(fileName);
	Certificate ca;
	try {
	ca = cf.generateCertificate(inputStream);
	LOG.debug("ca={}", ((X509Certificate) ca).getSubjectDN());
	} finally {
	inputStream.close();
	}

	String keyStoreType = KeyStore.getDefaultType();
	keyStore = KeyStore.getInstance(keyStoreType);
	keyStore.load(null, null);
	keyStore.setCertificateEntry("ca", ca);
	} catch (Exception e) {
	LOG.error("Error during getting keystore", e);
	}
	return keyStore;
	}
	}