Skip to content

README.md

Latest commit

 

History

History
116 lines (89 loc) · 3.13 KB

README.md

File metadata and controls

116 lines (89 loc) · 3.13 KB

Credentials

The credential files are generated from command line. This process can be automated.

CREATE CLIENT CREDENTIALS

  • Client keystore

    docker run --rm -v $(pwd)/certs:/certs eclipse-temurin:17-jre \
 keytool -genkeypair \
 -alias client1 \
 -keyalg RSA \
 -keysize 2048 \
 -validity 3650 \
 -storetype JKS \
 -keystore /certs/client1.jks \
 -storepass changeit \
 -keypass changeit \
 -dname "CN=client1"
    (Windows) 
    docker run --rm -v ${pwd}/certs:/certs eclipse-temurin:17-jre keytool -genkeypair -alias client1 -keyalg RSA -keysize 2048 -validity 3650 -storetype JKS -keystore /certs/client1.jks -storepass changeit -keypass changeit -dname "CN=client1"

  • Export client certificate

    docker run --rm -v $(pwd)/certs:/certs eclipse-temurin:17-jre \
 keytool -exportcert \
 -alias client1 \
 -keystore /certs/client1.jks \
 -storepass changeit \
 -file /certs/client1.cer
    (Windows) 
    docker run --rm -v ${pwd}/certs:/certs eclipse-temurin:17-jre keytool -exportcert -alias client1 -keystore /certs/client1.jks -storepass changeit -file /certs/client1.cer

  • PKCS12 keystore for client

    docker run --rm -v $(pwd)/certs:/certs eclipse-temurin:17-jre \
 keytool -importkeystore \
 -srckeystore /certs/client1.jks \
 -srcstoretype JKS \
 -srcstorepass changeit \
 -destkeystore /certs/client1.p12 \
 -deststoretype PKCS12 \
 -deststorepass changeit \
 -destkeypass changeit
    (Windows) 
    docker run --rm -v ${pwd}/certs:/certs eclipse-temurin:17-jre keytool -importkeystore -srckeystore /certs/client1.jks -srcstoretype JKS -srcstorepass changeit -destkeystore /certs/client1.p12 -deststoretype PKCS12 -deststorepass changeit -destkeypass changeit

CREATE SERVER CREDENTIALS

  • Server keystore. Run once

    docker run --rm -v $(pwd)/certs:/certs eclipse-temurin:17-jre \
 keytool -genkeypair \
 -alias wiremock-server \
 -keyalg RSA \
 -keysize 2048 \
 -validity 3650 \
 -storetype JKS \
 -keystore /certs/server.jks \
 -storepass changeit \
 -keypass changeit \
 -dname "CN=localhost" \
 -ext SAN=dns:localhost,ip:127.0.0.1
    (Windows) 
    docker run --rm -v ${pwd}/certs:/certs eclipse-temurin:17-jre keytool -genkeypair -alias wiremock-server -keyalg RSA -keysize 2048 -validity 3650 -storetype JKS -keystore /certs/server.jks -storepass changeit -keypass changeit -dname "CN=localhost" -ext SAN=dns:localhost,ip:127.0.0.1

  • Truststore for wiremock

    docker run --rm -v $(pwd)/certs:/certs eclipse-temurin:17-jre \
 keytool -importcert \
 -alias client1 \
 -file /certs/client1.cer \
 -keystore /certs/truststore.jks \
 -storepass changeit \
 -noprompt
    (Windows) 
    docker run --rm -v ${pwd}/certs:/certs eclipse-temurin:17-jre keytool -importcert -alias client1 -file /certs/client1.cer -keystore /certs/truststore.jks -storepass changeit -noprompt