spring-bootembedded-tomcat-8spring-boot-actuator

Spring-boot Actuator SSL configuration


I'm developing a webapplication with Spring-boot using embedded tomcat. One of the requirements of this app is 2-way SSL (clientAuth).

Enabling ClientAuth is easy enough however we also like to use spring-boot Actuator for management of the app on a different port without clientAuth.

Is there is a clean way to do this?

(Disabling SSL on the actuator endpoints would also be enough)


Solution

  • According to latest spring docs, you can use

    management.server.port=8080
    management.server.ssl.enabled=false
    

    in the properties to configure the management ports. see production-ready-management-specific-ssl in the spring boot doc for more options.