Linux参考:http://www.freehao123.com/cloudflare-wosign-ssl/
本地windows环境搭建步骤如下:
域名本地为localhost
1.为服务器生成证书 tomcat.keystore
keytool -genkey -v -alias tomcat -keyalgRSA -keystore D:\home\tomcat.keystore -validity 36500
2.为客户端生成证书 mykey.p12
keytool -genkey -v -alias mykey -keyalg RSA-storetype PKCS12 -keystore D:\home\mykey.p12
3.让服务器信任客户端证书 mykey.cer
keytool -export -alias mykey -keystoreD:\home\mykey.p12 -storetype PKCS12 -storepass password -rfc -fileD:\home\mykey.cer
keytool -import -v -file D:\home\mykey.cer-keystore D:\home\tomcat.keystore
keytool -list -keystoreD:\home\tomcat.keystore
4.让客户端信任服务器证书tomcat.cer
keytool -keystore D:\home\tomcat.keystore-export -alias tomcat -file D:\home\tomcat.c