🎄 Happy Holidays! 🥳

Most of Solace is closed December 24–January 1 so our employees can spend time with their families. We will re-open Thursday, January 2, 2024. Please expect slower response times during this period and open a support ticket for anything needing immediate assistance.

Happy Holidays!

Please note: most of Solace is closed December 25–January 2, and will re-open Tuesday, January 3, 2023.

How to enable TLS connection in spring boot?

Ali
Ali Member Posts: 3
in PubSub+ Event Broker #1
Hello everyone,
I have successfully integrated queue communication in solace with spring boot but I'm facing an issue.
I want to make it such that any client without a valid certificate (jks) is not allowed to connect even if the credentials are valid.

It seems that the default settings allow anyone with credentials to connect without a certificate.

I tried following the docs and fiddling with the settings (both the java and the solace cloud gui), but nothing seems to work.

Any tips would be greatly appreciated!
Tagged:

Answers

  • marc
    marc Member, Administrator, Moderator, Employee Posts: 963 admin
    #2

    Hi @Ali ,

    Are you wanting clients to authenticate using client certificate authentication or basic authentication (username/password)?

    Either way you should disable the unsecured SMF port (by default 55555) and ensure clients are connecting via the secured SMF port (by default 55443). They will only be able to connect via that port if they have a valid certificate to establish the TLS handshake. On top of that, if you want to only use client certificate auth you can disable basic authentication completely so they can only authenticate via their certificate that must be signed by a certificate authority that your broker trusts.

    Hope that helps!

Categories

This Month's Leaders

This Week's Leaders