keystore manipulation
Greetings. I think I asked a similar question on this list a while ago - but did not get a response - so here goes one last time. I am importing/generating new certificates into the keystore that is set as the truststore for the JVM that runs Tomcat - via the javax.net.ssl.trustStore System property. On first load (when I initial a URL load of a HTTPS URI) all is fine. At this point it seems that the JVM caches the certificates stored in the specified (javax.net.ssl.trustStore) keystore. If, after the first access of the truststore, I import a certificate to the trustore, it is not picked up until a RESTART the JVM. This is problematic as I do NOT want to have to restart the JVM just to read a certificate! Does anyone know how I would refresh the certificate list from the keystore referenced by the SystemProperty: javax.net.ssl.trustStore I would appreciate any pointers! Thanks in advance. Carl - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
keystore manipulation
Greetings. Not sure if this is the right place to ask, but I reckon someone here will have some ideas! So here goes... I don't suppose anyone on the list knows of a way to dynamically (from code) reload a previously loaded keystore (e.g. one used with the system property: javax.net.ssl.trustStore). Problem I am having is that I programatically import/add a new cert to my keystore no worries. However, on first access of the keystore as specified in the javax.net.ssl.trustStore system property, the JVM parses the entire keystore and caches the all the entries. Theen, when I add a new cert, the entire JVM needs to be restarted before it will recognise the new cert entry! Thus, I need to be able to dynamically reload the keystore after adding a new cert to it - or clear the JVM level cache, forcing it to reload. Anyone have any ideas? Thanks. Carl - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
