{"id":44474009,"url":"https://github.com/jhinrichsen/import-server-cert","last_synced_at":"2026-02-12T22:07:43.692Z","repository":{"id":57529140,"uuid":"117724322","full_name":"jhinrichsen/import-server-cert","owner":"jhinrichsen","description":"Import a remote TLS server certificate into a Java trust store (aka cacerts keystore), optionally including any referenced CA certificates","archived":false,"fork":false,"pushed_at":"2018-01-17T09:18:20.000Z","size":8,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-02-19T12:55:20.892Z","etag":null,"topics":["certificate","certificate-authority","keystore","keytool","truststore"],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jhinrichsen.png","metadata":{"files":{"readme":"README.adoc","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-01-16T18:32:13.000Z","updated_at":"2023-02-10T19:40:54.000Z","dependencies_parsed_at":"2022-08-26T03:51:22.859Z","dependency_job_id":null,"html_url":"https://github.com/jhinrichsen/import-server-cert","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"purl":"pkg:github/jhinrichsen/import-server-cert","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jhinrichsen%2Fimport-server-cert","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jhinrichsen%2Fimport-server-cert/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jhinrichsen%2Fimport-server-cert/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jhinrichsen%2Fimport-server-cert/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jhinrichsen","download_url":"https://codeload.github.com/jhinrichsen/import-server-cert/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jhinrichsen%2Fimport-server-cert/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29382969,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-12T20:34:40.886Z","status":"ssl_error","status_checked_at":"2026-02-12T20:23:00.490Z","response_time":55,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["certificate","certificate-authority","keystore","keytool","truststore"],"created_at":"2026-02-12T22:07:41.641Z","updated_at":"2026-02-12T22:07:43.682Z","avatar_url":"https://github.com/jhinrichsen.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"= Overview\n\nThis small utility helps in maintaining self signed certificates, and\ncertificate authorities (CA) that are not supported by Java out of the box (such\nas custom enterprise root CAs).\n\nIf your organization is running its own CA, you need to make each and every new\nJDK version familiar with this CA.\n\n== Prerequisites\n\n- Java (JRE). Specifically, the Java binary `keytool` and the CA truststore\n`${JAVA_HOME}/jre/lib/security/cacerts`.\n\nIf you do not have a local JRE, this utility does not make any sense for you.\n\n== Installation\n\n== Install binary release\n\nDownload Linux or Windows version from the github 'releases' section. These are\nstandalone, statically linked executables without any dependencies such as\nlibcurl, OpenSSL, ....\n\nDid i mention i love this Go feature?\n\n== Install from source\n\n----\n$ go get github.com/jhinrichsen/import-server-cert\n----\n\n== Usage\n\nShow help:\n\n----\n$ import-server-cert --help\nUsage of ./import-server-cert:\n  -chain\n        Import complete CA chain (default true)\n  -insecure\n        Allow custom cert path (default true)\n  -keep\n        Keep interim certificates in temporary directory\n  -keystorepasswd string\n        keystore password (default \"changeit\")\n----\n\nTypical use:\n\n----\n$ JAVA_HOME=\u003cpath\u003e import-server-cert jira.mycompany.com:443\n----\n\n== What it does\n\n- Create a backup copy of `${JAVA_HOME}/jre/lib/security/cacerts`\n- Download the TLS certificate from the remote server, and install it via Java's\n  `keytool` into the trust store\n- Optionally (`--chain=true`) download and install certificate chain. This\n  requires the X.509 AIA extension (issuing CA certificate URL) to be supplied\n  by the certificate.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjhinrichsen%2Fimport-server-cert","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjhinrichsen%2Fimport-server-cert","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjhinrichsen%2Fimport-server-cert/lists"}