配置SSL证书需要证书文件和密钥
1. 将证书文件移动到resources目录下
3358 www.Sina.com/server : port :443 # 服务端口SSL :密钥存储:类别路径:类别路径:4815826 _ we chat.le yishang.cn.SSL证书存储位置key-store-password : tz kig 1k1# 1 证书类型my : http port 33609000 httpsport 3360443效果图见以下
3358 www.Sina.com/http://www.Sina.com /此配置的主要作用是将所有http请求重定向到https进行操作。 这意味着访问http://127.0.0.1:80也会重定向至https://127.0.0
这里是题外话。 (https的默认端口为443端口。
HttpToHttpsConfig配置类代码如下(无序更改) : importorg.Apache.catalina.context; importorg.Apache.catalina.connector.connector; importorg.Apache.Tomcat.util.descriptor.web.security collection; importorg.Apache.Tomcat.util.descriptor.web.security constraint; importorg.spring framework.beans.factory.annotation.value; importorg.spring framework.boot.web.embedded.Tomcat.tomcatservletwebserverfactory; importorg.spring framework.context.annotation.bean; importorg.spring framework.context.annotation.configuration; /**从连接器配置http重定向到https意味着,即使前端仍然访问http,https */@ configurationpublicclasshttptohttpsconfig { @ value /** * http将重定向到https * @ return */@ beanpublictomcatservletwebserverfactoryservletcontainer ()。 { tomcatservletwebserverfactorytomcat=newtomcatservletwebserverfactory (} { @ overrideprotectedvoidpostprocesscontext (conn text (overrideprotectedvoidpostprontext constraint.setuser constraint ) securitycollectioncollection=newsecuritycollection (; Collection.addpattern('/* ' ); constraint.addcollection; context.add constraint (constraint; }; Tomcat.addadditionaltomcatconnectors (http connector ) ); 返回计数; } @ beanpublicconnectorhttpconnector () connector connector=new connector ) ' org.Apache.coyote.http 11.http 11 niopropprototottor //Connector侦听的http端口号connector.setport(httpport ); connector.setsecure(false; 拦截http的端口号后,转发目的地的https的端口号connector.setredirectport (httpsport ); 返回连接器; }
2. 在yml配置文件中配置如下:https协议端口为433端口,http协议端口为9000