| Note |
|---|
Next time, have a look at https://letsencrypt.org/about/ |
You may wish to install tomcat to support secure connections over SSL, that is, via HTTPS.
...
Linux
| Code Block | ||
|---|---|---|
| ||
$JAVA$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore pathToKeystoreFile |
E.g.
| Code Block | ||
|---|---|---|
| ||
$JAVAsudo mkdir /opt/tomcat/secure $JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA -keystore /opt/tomcat/secure/keystore sudo chown -R tomcat:tomcat /opt/tomcat/secure sudo chmod 500 /opt/tomcat/secure sudo chmod 400 /opt/tomcat/secure/keystore |
| Warning |
|---|
Ensure that you create your keystore in a location that is only accessible to privileged users |
...
To complete the command:
- Enter a keystore password when prompted - keystorePasswd
- Enter information about your company, contact name, etc - this information will be displayed when users access PhixFlow
- Select the default option not to set a separate password for the private key; if you want to do this, consult the tomcat documentation for further details.
...
| Warning |
|---|
Because the password for the keystore is stored in the server.xml file, ensure that this file is only accessible to privileged users |
...
- Restart tomcat. PhixFlow will now be available at
...
To use a certificate from a certificate authority, follow instructions in the standard tomcat documentation, e.g. the section Installing a Certificate from a Certificate Authority on the page https://tomcat.apache.org/tomcat-8.05-doc/ssl-howto.html, under section Installing a Certificate from a Certificate Authority