We use cookies to ensure you get the best experience on our website
首页 发现 帮助
注册 登录
0ct0pu5
/
kafka-ui
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 4c3b5033fd
分支列表 标签列表
kafka-ui
/
kafka-ui-api
/
src
/
main
/
java
/
com
/
provectus
/
kafka
/
ui
/
util
/
SecuredWebClient.java

SecuredWebClient.java 2.5 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. package com.provectus.kafka.ui.util;
    2. 

  2. 

  3. import io.netty.handler.ssl.SslContext;
    4. 

  4. import io.netty.handler.ssl.SslContextBuilder;
    5. 

  5. import java.io.FileInputStream;
    6. 

  6. import java.io.FileNotFoundException;
    7. 

  7. import java.io.IOException;
    8. 

  8. import java.security.KeyStore;
    9. 

  9. import java.security.KeyStoreException;
    10. 

  10. import java.security.NoSuchAlgorithmException;
    11. 

  11. import java.security.UnrecoverableKeyException;
    12. 

  12. import java.security.cert.CertificateException;
    13. 

  13. import javax.net.ssl.KeyManagerFactory;
    14. 

  14. import javax.net.ssl.TrustManagerFactory;
    15. 

  15. import org.springframework.http.client.reactive.ReactorClientHttpConnector;
    16. 

  16. import org.springframework.util.ResourceUtils;
    17. 

  17. import org.springframework.web.reactive.function.client.WebClient;
    18. 

  18. import reactor.netty.http.client.HttpClient;
    19. 

  19. 

  20. public class SecuredWebClient {
    21. 

  21.   public static WebClient.Builder configure(
    22. 

  22.       String keystoreLocation,
    23. 

  23.       String keystorePassword,
    24. 

  24.       String truststoreLocation,
    25. 

  25.       String truststorePassword)
    26. 

  26.       throws NoSuchAlgorithmException, IOException, KeyStoreException, CertificateException, UnrecoverableKeyException {
    27. 

  27.     // If we want to customize our TLS configuration, we need at least a truststore
    28. 

  28.     if (truststoreLocation == null || truststorePassword == null) {
    29. 

  29.       return WebClient.builder();
    30. 

  30.     }
    31. 

  31. 

  32.     SslContextBuilder contextBuilder = SslContextBuilder.forClient();
    33. 

  33. 

  34.     // Prepare truststore
    35. 

  35.     KeyStore trustStore = KeyStore.getInstance("JKS");
    36. 

  36.     trustStore.load(
    37. 

  37.         new FileInputStream((ResourceUtils.getFile(truststoreLocation))),
    38. 

  38.         truststorePassword.toCharArray()
    39. 

  39.     );
    40. 

  40. 

  41.     TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(
    42. 

  42.         TrustManagerFactory.getDefaultAlgorithm()
    43. 

  43.     );
    44. 

  44.     trustManagerFactory.init(trustStore);
    45. 

  45.     contextBuilder.trustManager(trustManagerFactory);
    46. 

  46. 

  47.     // Prepare keystore only if we got a keystore
    48. 

  48.     if (keystoreLocation != null && keystorePassword != null) {
    49. 

  49.       KeyStore keyStore = KeyStore.getInstance("JKS");
    50. 

  50.       keyStore.load(
    51. 

  51.           new FileInputStream(ResourceUtils.getFile(keystoreLocation)),
    52. 

  52.           keystorePassword.toCharArray()
    53. 

  53.       );
    54. 

  54. 

  55.       KeyManagerFactory keyManagerFactory = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
    56. 

  56.       keyManagerFactory.init(keyStore, keystorePassword.toCharArray());
    57. 

  57.       contextBuilder.keyManager(keyManagerFactory);
    58. 

  58.     }
    59. 

  59. 

  60.     // Create webclient
    61. 

  61.     SslContext context = contextBuilder.build();
    62. 

  62. 

  63.     return WebClient.builder()
    64. 

  64.         .clientConnector(new ReactorClientHttpConnector(HttpClient.create().secure(t -> t.sslContext(context))));
    65. 

  65.   }
    66. 

  66. }
    67.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5