Last Updated: February 25, 2016
·
1.048K
· cfeduke

Java+nginx getting around self-signed certs

#nginx
#ssl
#java

I encountered a Nexus server over HTTPS that had a self-signed certificate and the certificate wasn't even for the specified public name. I got around it with the following nginx reverse proxy configuration:

server {
       listen 80; 
       server_name _;

       location / { 
       proxy_pass https://nexus.somedomain.com;
       proxy_set_header Host nexus.somedomain.com;
       proxy_redirect https://nexus.somedomain.com/ http://$host:$server_port/;
       proxy_pass_header WWW-Authenticate;   
       }   
   }

I then installed Sonatype Nexus and pointed to the remote repositories using http://localhost/... and specifying the digest authentication parameters. Problem solved and the entire dev team won't have to add the self signed certificate as a trusted root in their $JAVA_HOME.

#nginx
#ssl
#java

Written by Charles Feduke

Say Thanks
Respond

Related protips

Installing Nginx in Mac OS X Maverick With Homebrew

278.6K
23

Nginx direct file upload

142.9K
60

Nginx as proxy for Amazon S3

142.1K
13

Have a fresh tip? Share with Coderwall community!

Post
Post a tip
Best #Nginx Authors
mikhailov
286.7K
#nginx
reiaguilera
278.2K
#nginx
#JavaScript
#Open Source
boris
91.1K
#nginx
#CSS
#Ruby
jamesdullaghan
89.64K
#nginx
#JavaScript
#Ruby
aeas44
60.95K
#nginx
#Python
#Docker
Related Tags
#nginx
#ssl
#java
Sponsored by
#native_company#
#native_desc#
#native_cta#
Awesome Job
See All Jobs
Post a job for only $299
Thanks to our sponsor
Sponsored by #native_company# — Learn More
#native_title# #native_desc#
#native_cta#