Question

Different SSL certificates for same service

1

Hi Guys, I am connecting to a 3rd party web service with a client certificate loaded in Mendix. The problem is that I have to use a different certificate per user. I thought it might be possible to load the certificates in the Mendix database and use some Java code to load the correct certificate before calling the web service, preferably per session. Is this possible? Does anyone have experience with a simular problem?

asked 2015-08-14

Charles Bronzwaer

1 answers

Jelle van Vliet · Answer 1 · 2015-08-17

You can load the certificates into the recources folder as a .pfx and load this in the java code:

    File f = new File(Core.getConfiguration().getResourcesPath().toString() + File.separatorChar + "keyfile.pfx");

    KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
    KeyStore ks = KeyStore.getInstance("PKCS12");
    InputStream kIn = new FileInputStream(f);
    ks.load(kIn, certificatePassword.toCharArray());
    kIn.close();
    kmf.init(ks, certificatePassword.toCharArray());

You can add one pfx per certificate this way (and open the right one depeding on the user) or load all certificates into one pfx file, i'm not sure how to read a specific certificate from the file, but i'm sure stackoverflow can help there ;)