tomcat配置https
1.生成服务端证书(证书是给浏览器看的)
keytool -genkeypair -alias “tomcat” -keyalg “RSA” -keystore “./tomcat.keystore”
2.tomcat server.xml配置证书
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="/Users/soft/apache-tomcat-8.5.15/credit/tomcat.keystore" keystorePass="123456" />
3.web.xml配置http请求转发到https
<security-constraint>
<web-resource-collection>
<web-resource-name>SSL</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
4.验证
浏览器请求 http://localhost:8089 会自动跳转到 https://localhost:8443 并且可访问,用https 访问其他任何链接,都可以访问,证明 https 配置成功