https://bz.apache.org/bugzilla/show_bug.cgi?id=67667
Bug ID: 67667
Summary: TLSCertificateReloadListener prints unreadable
rendering for X509Certificate#getNotAfter()
Product: Tomcat 9
Version: 9.0.81
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
Assignee: dev@tomcat.apache.org
Reporter: micha...@apache.org
Target Milestone: -----
Output: 10-Oct-2023 19:52:21.881 WARNUNG [Catalina-utility-2]
org.apache.catalina.security.TLSCertificateReloadListener.checkCertificatesForRenewal
[Connector["https-openssl-apr-30002"]], TLS virtual host [_default_] with name
[CN=localhost,OU=IN IT IN,O=Siemens,L=Berlin,ST=Berlin,C=DE] that expires on
[10/15/23 7:20 PM] is overdue for renewal
This date isn't readable for international audience and an insult to the
developer's/admin's eye.
The easiest solution is to do "expiringCertificate.getNotAfter().toInstant()",
but Tomcat 8.5 runs on 7 only, alternatively, we use
SimpleDateFormat/ConcurrentDateFormat with "yyyy-MM-dd'T'HH:mm:ssXXX".
Readable output:
10-Oct-2023 20:45:01.472 WARNUNG [Catalina-utility-1]
org.apache.catalina.security.TLSCertificateReloadListener.checkCertificatesForRenewal
[Connector["https-openssl-apr-30002"]], TLS virtual host [_default_] with name
[CN=localhost, OU=IN IT IN, O=Siemens, L=Berlin, ST=Berlin, C=DE] that expires
on [2023-10-15T17:20:55Z] is overdue for renewal
If no one objects, I'd commit and push the SDF to all branches.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
