'How do i get Spring Vault to trust a custom TLS chain provided as PEM

I am currently using Spring Vault with TLS, which works fine. My problem is that I need to support a custom TLS chain to connect to a client's Vault instance. Using a jks is not an option, my only option is to use PEM files.

I've read that Spring Vault is able to use PEM files for its SSL configuration, but I can't figure out how ... :(

springspring-vault


Solution 1:[1]

Technically you need to customize underlining web client and provide custom SslConfiguration loading certificates from PEM files and creating truststore in runtime.

Looking at VaultAutoConfiguration you could provide custom ClientFactoryWrapper bean configured with your SslConfiguration.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 Alex

Related Questions

Upload data file as byte array with Feign

Apache Camel: Set body from resource

How to configure log4j in a Spring Mvc application configured with Java Annotations and using a log4j.properties file

SonnarQube's issue: change code to not construct the URL from user-controlled data

How do I produce just one message using Spring Cloud Stream w/o deprecated @Output, or turn off polling?

Error creating bean with name 'entityManagerFactory'

Spel not supported on spring annotation @Scheduled.fixedDelayString

How to run gradle based spring boot application in background using command line in ubuntu?

AuthenticationSuccessEvent never fired

Spring @Value annotation always evaluating as null?

Spring MongoDB query sorting

Map JSON default tag to java variable

Spring Hibernate Jackson Hibernate5Module

Spring JUnit: How to Mock autowired component in autowired component

Flyway Found more than one migration with version