{"id":13056,"date":"2025-01-09T15:56:20","date_gmt":"2025-01-09T07:56:20","guid":{"rendered":"https:\/\/www.ldhost.cn\/jc\/?p=13056"},"modified":"2025-01-09T16:00:10","modified_gmt":"2025-01-09T08:00:10","slug":"java%e7%bd%91%e7%ab%99tomcat-%e7%8e%af%e5%a2%83%e4%b8%8bssl%e8%af%81%e4%b9%a6%e9%83%a8%e7%bd%b2%e2%bd%85%e6%b3%95","status":"publish","type":"post","link":"https:\/\/www.ldhost.cn\/jc\/ssl\/13056.html","title":{"rendered":"JAVA\u7f51\u7ad9Tomcat \u73af\u5883\u4e0bSSL\u8bc1\u4e66\u90e8\u7f72\u2f45\u6cd5"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"599\" height=\"210\" src=\"https:\/\/www.ldhost.cn\/jc\/wp-content\/uploads\/2025\/01\/20250109-155851.png\" alt=\"\" class=\"wp-image-13059\" srcset=\"https:\/\/www.ldhost.cn\/jc\/wp-content\/uploads\/2025\/01\/20250109-155851.png 599w, https:\/\/www.ldhost.cn\/jc\/wp-content\/uploads\/2025\/01\/20250109-155851-300x105.png 300w, https:\/\/www.ldhost.cn\/jc\/wp-content\/uploads\/2025\/01\/20250109-155851-150x53.png 150w\" sizes=\"auto, (max-width: 599px) 100vw, 599px\" \/><\/figure>\n\n\n\n<p><strong>1\u3001\u51c6\u5907\u8bc1\u4e66\u2f42\u6863<\/strong><\/p>\n\n\n\n<p>\u4e0b\u8f7d\u5e76\u89e3\u538b\u8bc1\u4e66\u5305\uff0c\u6253\u5f00\u8bc1\u4e66\u2f42\u6863 Tomcat \u2f42\u4ef6\u5939\uff0c\u5185\u6709\u591a\u79cd\u8bc1\u4e66\u2f42\u4ef6\uff0c\u5bf9\u5e94\u8bf4\u660e\u5982\u4e0b\uff1a<\/p>\n\n\n\n<p>your_domain. jks \u8bc1\u4e66\u2f42\u4ef6<\/p>\n\n\n\n<p>your_domain.pfx \u8bc1\u4e66\u2f42\u4ef6<\/p>\n\n\n\n<p>password.txt \u8bc1\u4e66\u2f42\u4ef6\u2f1d\u4ee4<\/p>\n\n\n\n<p><strong>2\u3001\u4e0a\u4f20\u8bc1\u4e66\u2f42\u4ef6<\/strong><\/p>\n\n\n\n<p>Tomcat \u2f40\u6301 PFX \u548c JKS \u4e24\u79cd<a href=\"https:\/\/www.ldhost.cn\/ssl.html\" target=\"_blank\" rel=\"noreferrer noopener\">SSL\u8bc1\u4e66<\/a>\u683c\u5f0f\uff0c\u53ef\u6839\u636e\u5177\u4f53\u60c5\u51b5\u4efb\u9009\u2f00\u79cd\uff0c\u7136\u540e\u5c06\u6240\u9700\u8bc1\u4e66\u2f42\u4ef6\u4e0a\u4f20\u2f84 Tomcat<\/p>\n\n\n\n<p>\u5b89\u88c5\u2f6c\u5f55\u4e0b Cert \u2f42\u4ef6\u5939\uff08\u5982\u679c\u6ca1\u6709\u53ef\u65b0\u5efa\uff09<\/p>\n\n\n\n<p><strong>3\u3001\u4fee\u6539\u7ad9\u70b9\u914d\u7f6e\u2f42\u4ef6<\/strong><\/p>\n\n\n\n<p>\u4fee\u6539 Tomcat \u7ad9\u70b9\u914d\u7f6e\u2f42\u4ef6 server.xml\uff0c\u8be5\u2f42\u4ef6\u2f00\u822c\u4f4d\u4e8e Tomcat \u2f6c\u5f55\/conf \/\u4e0b<\/p>\n\n\n\n<p>\u8bf7\u6ce8\u610f\uff0c\u672c\u914d\u7f6e\u4ec5\u4f9b\u53c2\u8003\uff0c\u7279\u6b8a\u60c5\u51b5\u4e0b\u8bf7\u7ed3\u5408\u670d\u52a1\u5668\u7cfb\u7edf\u7248\u672c\u53ca Web \u73af\u5883\u5177\u4f53\u60c5\u51b5\u8c03\u6574\u4fee\u6539\u3002<\/p>\n\n\n\n<p>&lt;Connector port=&#8221;443&#8243;<\/p>\n\n\n\n<p>protocol=&#8221;org.apache.coyote.http11.Http11NioProtocol&#8221;<\/p>\n\n\n\n<p>SSLEnabled=&#8221;true&#8221;<\/p>\n\n\n\n<p>scheme=&#8221;https&#8221;<\/p>\n\n\n\n<p>secure=&#8221;true&#8221;<\/p>\n\n\n\n<p>keystoreFile=&#8221;\/path\/to\/cert\/your_domain.jks&#8221;   &lt;!\u2014\u8bf7\u4f7f\u2f64\u7edd\u5bf9\u8def\u5f84\u6307\u5f15\u8bc1\u4e66\u2f42\u4ef6 &#8211;><\/p>\n\n\n\n<p>keystoreType=&#8221;JKS&#8221;   &lt;!\u2014JKS \u9002\u2f64\u4e8e.jks \u8bc1\u4e66\u2f42\u4ef6\uff0cPKCS12 \u9002\u2f64\u4e8e.pfx \u8bc1\u4e66\u2f42\u4ef6\uff0c\u8bf7\u52ff\u5199\u9519 &#8211;><\/p>\n\n\n\n<p>keystorePass=&#8221;password&#8221;    &lt;!\u2014\u8bf7\u590d\u5236 password.txt \u2f42\u6863\u4e2d\u7684\u2f1d\u4ee4\u7c98\u8d34\u4e8e\u6b64 &#8211;><\/p>\n\n\n\n<p>clientAuth=&#8221;false&#8221;<\/p>\n\n\n\n<p>sslEnabledProtocols=&#8221;TLSv1.2,TLSv1.3&#8243;   &lt;!\u2014\u914d\u7f6e\u66f4\u5b89\u5168\u7684 TLS \u7248\u672c &#8211;><\/p>\n\n\n\n<p>ciphers=&#8221;TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_ECDHE_RSA_WITH_AES<\/p>\n\n\n\n<p>_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256,TLS_ECD HE_ECDSA_WITH_CHACHA20_POLY1305_SHA256&#8243;   &lt;!\u2014\u914d\u7f6e\u52a0\u5bc6\u7b97\u6cd5 &#8211;><\/p>\n\n\n\n<p>\/&gt;<\/p>\n\n\n\n<p>\u5982\u679c\u9700\u8981\u5f3a\u5236\u5f00\u542f https \u8df3\u8f6c\uff0c\u8bf7\u5728\u4e0a\u8ff0\u914d\u7f6e\u2f5a\u6bb5\u524d\uff0c\u589e\u52a0\u4ee5\u4e0b\u914d\u7f6e<\/p>\n\n\n\n<p>&lt;Connector port=&#8221;80&#8243; protocol=&#8221;HTTP\/1.1&#8243;<\/p>\n\n\n\n<p>connectionTimeout=&#8221;20000&#8243;<\/p>\n\n\n\n<p>redirectPort=&#8221;443&#8243; \/&gt;<\/p>\n\n\n\n<p><strong>4\u3001\u4fdd\u5b58\u914d\u7f6e\u2f42\u4ef6\uff0c\u91cd\u542f Tomcat \u6216\u670d\u52a1\u5668\uff0c\u914d\u7f6e\u2f63\u6548\u3002<\/strong><\/p>\n<div><img decoding=\"async\" src=\"https:\/\/www.ldhost.cn\/images\/ad-845-3.png\" alt=\"\u56fe\u7247\u63cf\u8ff0\" \/><\/div>","protected":false},"excerpt":{"rendered":"<p>1\u3001\u51c6\u5907\u8bc1\u4e66\u2f42\u6863 \u4e0b\u8f7d\u5e76\u89e3\u538b\u8bc1\u4e66\u5305\uff0c\u6253\u5f00\u8bc1\u4e66\u2f42\u6863 Tomcat \u2f42\u4ef6\u5939\uff0c\u5185\u6709\u591a\u79cd\u8bc1\u4e66\u2f42\u4ef6\uff0c\u5bf9\u5e94\u8bf4\u660e\u5982\u4e0b\uff1a your_domain. jks \u8bc1\u4e66\u2f42\u4ef6 your_domain.pfx \u8bc1\u4e66\u2f42\u4ef6 password.txt \u8bc1\u4e66\u2f42\u4ef6\u2f1d\u4ee4 2\u3001\u4e0a\u4f20\u8bc1\u4e66\u2f42\u4ef6 Tomcat \u2f40\u6301 PFX \u548c JKS \u4e24\u79cdSSL\u8bc1\u4e66\u683c\u5f0f\uff0c\u53ef\u6839\u636e\u5177\u4f53\u60c5\u51b5\u4efb\u9009\u2f00\u79cd\uff0c\u7136\u540e\u5c06\u6240\u9700\u8bc1\u4e66\u2f42\u4ef6\u4e0a\u4f20\u2f84 Tomcat \u5b89\u88c5\u2f6c\u5f55\u4e0b Cert \u2f42\u4ef6\u5939\uff08\u5982\u679c\u6ca1\u6709\u53ef\u65b0\u5efa\uff09 3\u3001\u4fee\u6539\u7ad9\u70b9\u914d\u7f6e\u2f42\u4ef6 \u4fee\u6539 Tomcat \u7ad9\u70b9\u914d\u7f6e\u2f42\u4ef6 server.xml\uff0c\u8be5\u2f42\u4ef6\u2f00\u822c\u4f4d\u4e8e Tomcat \u2f6c\u5f55\/conf \/\u4e0b \u8bf7\u6ce8\u610f\uff0c\u672c\u914d\u7f6e\u4ec5\u4f9b\u53c2\u8003\uff0c\u7279\u6b8a\u60c5\u51b5\u4e0b\u8bf7\u7ed3\u5408\u670d\u52a1\u5668\u7cfb&#8230; <a href=\"https:\/\/www.ldhost.cn\/jc\/ssl\/13056.html\" class=\"readmore\">\u9605\u8bfb\u5168\u6587<span class=\"screen-reader-text\">JAVA\u7f51\u7ad9Tomcat \u73af\u5883\u4e0bSSL\u8bc1\u4e66\u90e8\u7f72\u2f45\u6cd5<\/span><span class=\"fa fa-angle-double-right\" aria-hidden=\"true\"><\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[98],"tags":[],"class_list":["post-13056","post","type-post","status-publish","format-standard","hentry","category-ssl","content-layout-excerpt-thumb"],"_links":{"self":[{"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/posts\/13056","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/comments?post=13056"}],"version-history":[{"count":3,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/posts\/13056\/revisions"}],"predecessor-version":[{"id":13061,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/posts\/13056\/revisions\/13061"}],"wp:attachment":[{"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/media?parent=13056"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/categories?post=13056"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ldhost.cn\/jc\/wp-json\/wp\/v2\/tags?post=13056"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}