Re: Add certificate from web -> keystore
On Jun 28, 2:12 pm, genk...@gmail.com wrote:
Hi -
I'm working with a large cluster of hundreds of nodes. The cluster
occasionally chats with itself using web services, SSL, and self-
signed certificates.
The cluster is built through scripts of course. And the creation
script must be able to establish communication between the nodes,
preferably over http (versus NFS or some other data sharing
mechanism).
What's the easiest most intuitive way to grab an SSL certificate over
http then add it to the keystore?
I appreciate the help.
Just guessing: (let me know if this helps)
import java.net.*;
import java.io.*;
import javax.net.ssl.HttpsURLConnection;
import javax.security.cert.Certificate;
public class SSLGetCertificateFromWebPager {
public static void main(String[] args) throws Exception {
URL site = new URL("https://mail.google.com/mail/");
HttpsURLConnection conn = (HttpsURLConnection)
site.openConnection();
conn.setDoOutput(true);
InputStream istream = conn.getInputStream();
java.security.cert.Certificate[] aCerts =
conn.getServerCertificates();
System.out.println( "The certificate is " );
System.out.println( aCerts[0].toString() );
System.out.println( "The certificate encoding is " +
aCerts[0].getType() );
byte[] data = aCerts[0].getEncoded();
File file = new File( "gmail_downloaded.cer" ); // DER
encoding for instance
DataOutputStream dos = new DataOutputStream( new
FileOutputStream( file ) );
dos.write( data );
dos.close();
BufferedReader br = new BufferedReader(
new InputStreamReader(
istream ));
String line;
while ((line = br.readLine()) != null)
System.out.println(line);
br.close();
}
}
Best,
TimJowers