Follow these steps to configure HTTPS on a REST client connection to a HTTP
endpoint.
About this task
zosConnect-2.0 Applies to zosConnect-2.0.
Update server.xml to configure SSL on a REST client connection
definition.
Procedure
-
Edit the z/OS® Connect Server configuration file
to define an SSL element or SSLDefault
element.
- Add an sslCertsRef attribute to the
zosconnect_zosConnectServiceRestClientConnection element to reference the
SSL element.
For example:
<featureManager>
<feature>zosconnect:zosconnect-2.0</feature>
</featureManager>
<!-- Define the SSL configuration. -->
<ssl id="defaultSSLConfig" keyStoreRef="defaultKeyStore" trustStoreRef="defaultTrustStore" />
<!-- Define a keystore. Contains the IBM z/OS Connect Server's personal certificate to be sent on SSL handshake. -->
<keyStore id="defaultKeyStore" password="mypassword" location="${server.config.dir}/resources/security/serverKey.p12" />
<!-- Define a truststore. Contains the trusted certificate expected to be sent from Db2 on the SSL handshake. -->
<keyStore id="defaultTrustStore" password="mypassword" location="${server.config.dir}/resources/security/serverTrust.p12"/>
<!-- Define the connection to the REST API -->
<zosconnect_zosConnectServiceRestClientConnection id="restConn" sslCertsRef="defaultSSLConfig"
host="example.com" port="8080" />