enabling HTTPS for the API end point

Question

enabling HTTPS for the API end point

koushik9951 opened this issue 5 years ago · 5 comments

I am trying to enable HTTPS (ssl), but it's failing , is their any functionality to enable it?

Answer 1 · 2020-06-16T20:48:31.000Z

Can you explain what you are trying to do and in what setup?

Typically ssl management would be done a layer above, by a service mesh, proxy or load balancer.
Do you want Pitchfork itself to use a cert and serve https itself? Please add as much detail as you can to your reply.

Answer 2 · 2020-06-17T06:02:56.000Z

@worldtiki : Thanks for your response ,i am want enable HTTPS(by passing a certs) PITCHFORK itslef , so that Pitchfork API us as HTTPS

Answer 3 · 2020-06-17T06:35:31.000Z

this is what i tried to enable HTTPS by adding below properties in **application.yml ** file , but I am getting certificate unkown exception while posting traces
server:
port: 9411
ssl:
key-store-password: changeit
key-store: ssl-server.jks
key-password: changeit
key-store-type: JKS
enabled: true
security:
require-ssl: true

Answer 4 · 2020-06-17T09:10:10.000Z

That looks ok.

I tried to reproduce the error and couldn't. I pushed a branch to my fork here, with a self-signed cert: https://github.com/worldtiki/pitchfork/blob/ssl_test/src/main/resources/application.yml#L6-L11

(I don't have the require-ssl because I didn't add spring security).

Do you mind trying this branch?
I wonder if the issue is with the location of your jks file.

Answer 5 · 2021-01-20T15:19:13.000Z

@koushik9951 I'm going to close this issue. If you need help just comment and I'll reopen it.