4.3.1 HTTP Configuration Properties
TLS is configured with properties that are typically set on the container level.
Note!
Quotes and double quotes surrounding the target path and property names are required to prevent overwriting of properties. For further information, see 1.4.4 Working with STR.
The available properties are:
mz.httpd.security
Set the value of this to property totrue
(default value isfalse
) to enable encryption.$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security"' true
mz.httpd.security.keystore
Use this property to set the keystore path, which must be absolute.$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security.keystore"' <keystore path>
mz.httpd.security.keystore.password
Use this property to set the password for the keystore, as selected inkeytool
.$ mzsh topo set 'topo://container:<container>/val:common."mz.httpd.security.keystore.password"' \ `mzsh encryptpassword <password>`
mz.httpd.security.key.password
Use this property to set to the password for the key, as chosen inkeytool
. By default this is the same as the keystore password. (This is the default forkeytool
).$ mzsh topo set topo://container:<container>/val:common.mz.httpd.security.key.password \ `mzsh encryptpassword <password>`
Note!
After having configured the properties, this section:
# Http url to platform, e.g http://localhost:9000 if [ -z "${MZ_PLATFORM+x}" ]; then MZ_PLATFORM="http://localhost:9000" export MZ_PLATFORM
in the $MZ_HOME/bin/mzsh
file needs to be updated to state https
instead of http
for both the Platform and the ECs.