A question about Spring Boot MVC with Tomcat and TLSv1.3 I used to have a Spring Boot MVC, Tomcat based web app, with very simple business logic, over ssl HTTPS. Per security team review, I had to bump the TLS version from TLSv1.2 to TLSv1.3. Thought is was very simple and could easily complete this task, I w…
Tag: tls1.2
Java 11 SSLHandshakeException with TLS 1.3: How do I revert to TLS 1.2?
My application is a form of “web scraper” which loads the HTML from a desired input page using the Java Jsoup library. I recently upgraded my application platform from Java 8 to Java 11. With this upgrade, I have received several reports from my clients saying that they receive SSLHandshakeExcepti…
Make Feign client to take truststore from custom property
Feign client in our app is communicating with a self-signed server. We are able to make Feign client use the custom truststore using the property javax.net.ssl.trustStore system property. But because my app also communicates with standard CA certified sites, the default truststore shouldn’t be overridde…
Android Https web service communication (SSL / TLS 1.2)
In my Android application I’ve got to communicate with a https web service and read the response. I’ve informed the server configured SSL with TLS 1.2. I am using the following sample code to connect with the service (https get request), but only the devices that runs Android 5.0 or above can succ…