Java:每年替代CACERTS文件的证书更新
每年或三次,我们都会为各种客户提供证书更新。
我们需要在Chrome视图证书中打开他们的网站,并下载为.der。
每次我们点击Keytool命令并将其更新为Local上的Cacerts进行开发和生产以进行连接。
是否需要通过“ Java代码”下载和更新Cacerts文件夹的“ Java代码”,以防止突然的下降或其他任何方法?
Every year or thrice a month we have certificate updates for our various clients.
We need to open their website and in chrome view certificate and download as .der.
Everytime we hit keytool command and update it to cacerts on local for development and on Production for connection.
Is there way through "Java code" that we need to to download and update cacerts folder every time to prevent abrupt downtimes or any other way to do it?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
是的,尽管您可能应该问自己有关为什么需要的问题。边缘案例比比皆是,有时是必要的。
有密钥库API,您可以在此处详细介绍一些代码: 。
他们不应该。
Yes, although you should probably ask yourself questions on why you need to. Edge cases do abound and sometime it is simply necessary.
There is the Keystore API and you could write some code against that as detailed here: https://www.baeldung.com/java-keystore
You will, of course, need to ensure that correct checks and access control are in place, otherwise a bad actor could use this to modify your keystore and cause system to permit connect to/from things they shouldn't.