Tuesday, August 6, 2019

Mule 4: Enable HTTPS Connector Using openssl

Introduction

This article demonstrate the procedures using openssl to generate self-signed certificates, and how to use the private key to configure HTTPS connector.

Generate Private Key And Public Cert Using openssl

$ openssl req -newkey rsa:2048 -x509 -keyout cakey.pem -out cacert.pem -days 3650
Generating a RSA private key
....+++++
...................................................+++++
writing new private key to 'cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:US
State or Province Name (full name) []:Texas
Locality Name (eg, city) [Default City]:Dallas
Organization Name (eg, company) [Default Company Ltd]:GGL Consulting Inc
Organizational Unit Name (eg, section) []:EA
Common Name (eg, your name or your server's hostname) []:Gary Liu
Email Address []:gary.liu1119@gmail.com
The above command will generate two files:
  1. cakey.pem
  2. cacert.pem
Mulesoft HTTPS TLS configuration support 3 format:
  1. JKS -- Java Keystore
  2. PKCS12 -- for details refer this page
  3. JCEKS -- Stands for Java Cryptography Extension KeyStore
We need to convert the RAS format to PKCS12 using the following command: 
$ openssl pkcs12 -export -in cacert.pem -inkey cakey.pem -out identity.p12 -name "mykey"
Enter pass phrase for cakey.pem:
Enter Export Password:
Verifying - Enter Export Password:
The above command generate a file namely: identity.p12 with the alias mykey. Now we can configure the HTTPS Connector.

Configure HTTPS Connector

The xml configuration will be like the following:
The follow snapshots show the procedures using Anypoint Studio:

Invoke The Service

To test the service we can use the following curl command: 
$ curl -k -XGET https://localhost/helloworld
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100    31  100    31    0     0     31      0  0:00:01  0:00:01 --:--:--    29
{
  "message": "Hello, World"
}
Note -k option is to tell curl to accepted self-signed certificates.
at

5 comments:

  1. goformuleNovember 14, 2019 at 6:00 AM

    very nice & informative video for mulesoft folks...you can also visit https://www.goformule.com for mulesoft tutorials

    ReplyDelete
  2. goformuleNovember 22, 2019 at 5:43 AM

    Very informative post for mulesoft developers.You can also visit goformule.com for mulesoft stuff.

    ReplyDelete
  3. TNK Design DeskDecember 22, 2019 at 10:38 PM

    Thank you so much for these kinds of informative blogs.We are also a digital marketing company in gurgaon and we provide the website design services,
    web development services, e-commerce development services.
    website designer in noida
    website designers delhi
    website designers in delhi
    website designing agency in delhi
    website designing and development
    website designing companies in delhi
    website designing company delhi
    website designing company in delhi ncr
    website designing company in gurgaon
    website designing company in new delhi
    website designing company in noida
    website designing company list
    website designing company noida
    website designing cost in delhi
    website designing cost in india
    website designing delhi
    website designing firms in delhi
    website designing in delhi
    website designing in delhi ncr
    website designing in gurgaon
    website designing in noida
    website designing services
    website designing services delhi
    website designing services in delhi
    web design development company
    web design development services
    web design in delhi
    web design service
    web design services company
    web design services in delhi
    web designer company
    web designer delhi
    web designer in delhi
    web designers delhi
    web designers in delhi
    web designing & development
    web designing advertisement
    web designing and development
    web designing and development company
    web designing and development services

    ReplyDelete
  4. PriyaJanuary 22, 2020 at 3:03 AM

    This blog is very enjoyable and very informative. Thank you for sharing this nice article.
    Mulesoft Online Training
    Mulesoft Training in Hyderabad

    ReplyDelete
  5. UnknownAugust 10, 2020 at 12:30 AM

    Thanks for sharing valuable information and very well explained. Keep posting.

    mule 4 online training
    mule 4 certification

    ReplyDelete

Subscribe to: Post Comments (Atom)

Anypoint Studio Error: The project is missing Munit lIbrary to run tests

Anypoint Studio 7.9 has a bug. Even if we following the article: https://help.mulesoft.com/s/article/The-project-is-missing-MUnit-libraries-...