The Studio generates a microservice artifact jar file that
contains a properties file. To allow HTTPS connections, you must create your own
application.properties file, edit it and configure the Data
Service Runner to deploy it.
Procedure
-
Before creating a custom properties file, create and configure
the keystore:
- Go to Java installation directory/etc/bin.
-
From the
bindirectory, execute the following command:keytool -genkeypair -alias dsrunner -keyalg RSA -keysize 2048 -storetype PKCS12 -keystore dsrunner.p12 -validity 3650 - In the First name and Last name fields, enter the host name. As the host name may be used as a validation field for the HTTPS connection, it is recommended to enter it.
- When you do not want to modify a field, press Return.
-
Import the certificate in the Java Run Environment
keystore by executing the following command lines:
-
keytool -export -keystore dsrunner.p12 -alias dsrunner -file dsrunner.crt -
keytool -importcert -file dsrunner.crt -alias dsrunner -keystore %JAVA_HOME%/lib/security/cacerts
-
The keystore is created and configured. -
Create a custom
application.propertiesfile. - Save it in a directory that the Talend Remote Engine can access.
-
Rename it.
You have two
application.propertiesfiles for microservices: the original one and the one you have just created. -
In the custom properties file, define the following command
lines:
security.require-ssl=true server.ssl.key-store=path_to_keystore server.ssl.key-store-type=keystore_type server.ssl.key-store-password=keystore_password server.ssl.key-store-alias=key_aliasFor example:security.require-ssl=true server.ssl.key-store=D:/dsrunner.p12 server.ssl.key-store-type=PKCS12 server.ssl.key-store-password=Password_1234 server.ssl.key-alias=dsrunnerThe microservice will only allow HTTPS connections that have the three following parameters:-
PKCS12for the keystore type, -
Password_1234for the password and -
dsrunnerfor the key alias.
-