fineract-provider/src/main/java/org/apache/fineract/infrastructure/core/boot/EmbeddedTomcatWithSSLConfiguration.java - fineract - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.fineract.infrastructure.core.boot;

 import java.io.File;
 import java.io.IOException;
 import java.net.URL;
 import org.apache.catalina.connector.Connector;
 import org.apache.commons.io.FileUtils;
 import org.apache.coyote.http11.Http11NioProtocol;
 import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
 import org.springframework.boot.web.servlet.server.ServletWebServerFactory;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.core.io.ClassPathResource;
 import org.springframework.core.io.Resource;

 @Configuration
 public class EmbeddedTomcatWithSSLConfiguration {

     // https://docs.spring.io/spring-boot/docs/2.2.6.RELEASE/reference/html/howto.html#howto-enable-multiple-connectors-in-tomcat

     @Bean
     public ServletWebServerFactory servletContainer() {
         TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory();
         tomcat.setContextPath(getContextPath());
         tomcat.addAdditionalTomcatConnectors(createSslConnector());
         return tomcat;
     }

     private String getContextPath() {
         return "/fineract-provider";
     }

     protected Connector createSslConnector() {
         Connector connector = new Connector("org.apache.coyote.http11.Http11NioProtocol");
         Http11NioProtocol protocol = (Http11NioProtocol) connector.getProtocolHandler();
         try {
             File keystore = getFile(getKeystore());
             connector.setScheme("https");
             connector.setSecure(true);
             connector.setPort(getHTTPSPort());
             protocol.setSSLEnabled(true);
             protocol.setKeystoreFile(keystore.getAbsolutePath());
             protocol.setKeystorePass(getKeystorePass());
             return connector;
         } catch (IOException ex) {
             throw new IllegalStateException("can't access keystore: [" + "keystore" + "] or truststore: [" + "keystore" + "]", ex);
         }
     }

     protected int getHTTPSPort() {
         // TODO This shouldn't be hard-coded here, but configurable
         return 8443;
     }

     protected String getKeystorePass() {
         return "openmf";
     }

     protected Resource getKeystore() {
         return new ClassPathResource("/keystore.jks");
     }

     public File getFile(Resource resource) throws IOException {
         try {
             return resource.getFile();
         } catch (IOException e) {
             // Uops.. OK, try again (below)
         }

         try {
             URL url = resource.getURL();
             /**
              * // If this creates filenames that are too long on Win, // then could just use resource.getFilename(), //
              * even though not unique, real risk prob. min.bon String tempDir = System.getProperty("java.io.tmpdir");
              * tempDir = tempDir + "/" + getClass().getSimpleName() + "/"; String path = url.getPath(); String uniqName
              * = path.replace("file:/", "").replace('!', '_'); String tempFullPath = tempDir + uniqName;
              **/
             // instead of File.createTempFile(prefix?, suffix?);
             File targetFile = new File(resource.getFilename());
             long len = resource.contentLength();
             if (!targetFile.exists() || targetFile.length() != len) { // Only
                                                                       // copy
                                                                       // new
                                                                       // files
                 FileUtils.copyURLToFile(url, targetFile);
             }
             return targetFile;
         } catch (IOException e) {
             // Uops.. erm, give up:
             throw new IOException("Cannot obtain a File for Resource: " + resource.toString(), e);
         }

     }
 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.fineract.infrastructure.core.boot;

	import java.io.File;
	import java.io.IOException;
	import java.net.URL;
	import org.apache.catalina.connector.Connector;
	import org.apache.commons.io.FileUtils;
	import org.apache.coyote.http11.Http11NioProtocol;
	import org.springframework.boot.web.embedded.tomcat.TomcatServletWebServerFactory;
	import org.springframework.boot.web.servlet.server.ServletWebServerFactory;
	import org.springframework.context.annotation.Bean;
	import org.springframework.context.annotation.Configuration;
	import org.springframework.core.io.ClassPathResource;
	import org.springframework.core.io.Resource;

	@Configuration
	public class EmbeddedTomcatWithSSLConfiguration {

	// https://docs.spring.io/spring-boot/docs/2.2.6.RELEASE/reference/html/howto.html#howto-enable-multiple-connectors-in-tomcat

	@Bean
	public ServletWebServerFactory servletContainer() {
	TomcatServletWebServerFactory tomcat = new TomcatServletWebServerFactory();
	tomcat.setContextPath(getContextPath());
	tomcat.addAdditionalTomcatConnectors(createSslConnector());
	return tomcat;
	}

	private String getContextPath() {
	return "/fineract-provider";
	}

	protected Connector createSslConnector() {
	Connector connector = new Connector("org.apache.coyote.http11.Http11NioProtocol");
	Http11NioProtocol protocol = (Http11NioProtocol) connector.getProtocolHandler();
	try {
	File keystore = getFile(getKeystore());
	connector.setScheme("https");
	connector.setSecure(true);
	connector.setPort(getHTTPSPort());
	protocol.setSSLEnabled(true);
	protocol.setKeystoreFile(keystore.getAbsolutePath());
	protocol.setKeystorePass(getKeystorePass());
	return connector;
	} catch (IOException ex) {
	throw new IllegalStateException("can't access keystore: [" + "keystore" + "] or truststore: [" + "keystore" + "]", ex);
	}
	}

	protected int getHTTPSPort() {
	// TODO This shouldn't be hard-coded here, but configurable
	return 8443;
	}

	protected String getKeystorePass() {
	return "openmf";
	}

	protected Resource getKeystore() {
	return new ClassPathResource("/keystore.jks");
	}

	public File getFile(Resource resource) throws IOException {
	try {
	return resource.getFile();
	} catch (IOException e) {
	// Uops.. OK, try again (below)
	}

	try {
	URL url = resource.getURL();
	/**
	* // If this creates filenames that are too long on Win, // then could just use resource.getFilename(), //
	* even though not unique, real risk prob. min.bon String tempDir = System.getProperty("java.io.tmpdir");
	* tempDir = tempDir + "/" + getClass().getSimpleName() + "/"; String path = url.getPath(); String uniqName
	* = path.replace("file:/", "").replace('!', '_'); String tempFullPath = tempDir + uniqName;
	**/
	// instead of File.createTempFile(prefix?, suffix?);
	File targetFile = new File(resource.getFilename());
	long len = resource.contentLength();
	if (!targetFile.exists() \|\| targetFile.length() != len) { // Only
	// copy
	// new
	// files
	FileUtils.copyURLToFile(url, targetFile);
	}
	return targetFile;
	} catch (IOException e) {
	// Uops.. erm, give up:
	throw new IOException("Cannot obtain a File for Resource: " + resource.toString(), e);
	}

	}
	}