Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/marschall/truststore-maven-plugin

generates a truststore from a directory of certificates
https://github.com/marschall/truststore-maven-plugin

java maven truststore

Last synced: about 23 hours ago
JSON representation

generates a truststore from a directory of certificates

Host: GitHub
URL: https://github.com/marschall/truststore-maven-plugin
Owner: marschall
Created: 2018-07-22T11:43:05.000Z (over 6 years ago)
Default Branch: master
Last Pushed: 2023-02-11T08:16:52.000Z (almost 2 years ago)
Last Synced: 2023-12-22T03:31:59.582Z (11 months ago)
Topics: java, maven, truststore
Language: Java
Size: 454 KB
Stars: 1
Watchers: 2
Forks: 0
Open Issues: 1
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

Truststore Maven Plugin [![Maven Central](https://maven-badges.herokuapp.com/maven-central/com.github.marschall/truststore-maven-plugin/badge.svg)](https://maven-badges.herokuapp.com/maven-central/com.github.marschall/truststore-maven-plugin) [![Build Status](https://travis-ci.org/marschall/truststore-maven-plugin.svg?branch=master)](https://travis-ci.org/marschall/truststore-maven-plugin)
=======================

The truststore Maven plugin gives you an easy way to manage Java truststores.

The plugins allows you to manage truststores by having a project under source control that contains all your trusted certificates. A Maven build a produces a PKCS12 artifact that can be deployed to a Maven repository. Since the project is under source control a release is also tagged making to easy to know what is deployed in production.

Usage
-----

Simply create a project with packaging `pkcs12`

```xml

4.0.0

com.acme
truststore
1.0-SNAPSHOT
pkcs12

com.github.marschall
truststore-maven-plugin
0.7.0
true

changeit

```

and add your certificates under `src/main/certificates`. The filename minus the extension will be the alias of the certificate. Certificates can be in either PEM or DER format.

The plugin can also generate a truststore in-place to `target/generated-truststores` which is added to the projects JAR file.

```xml

com.github.marschall
truststore-maven-plugin
0.7.0

generate-truststore

generate-pkcs12

changeit

```

Documentation
-------------

For more information check out the generated [plugin page](https://marschall.github.io/truststore-maven-plugin/).

Passwordless Truststores
------------------------

Since [JDK 18](https://bugs.openjdk.org/browse/JDK-8274862) passwordless truststores are supported out of the box. [Earlier versions](https://bugs.openjdk.org/browse/JDK-8076190) need the following two system properties

```
-Dkeystore.pkcs12.certProtectionAlgorithm=NONE -Dkeystore.pkcs12.macAlgorithm=NONE
```

Similar Plugins
---------------

Similar plugins are [kaazing/truststore-maven-plugin](https://github.com/kaazing/truststore-maven-plugin) which creates a truststore using trusted sources from Mozilla and Chrome and [automatictester/truststore-maven-plugin](https://github.com/automatictester/truststore-maven-plugin) which is similar but can also download certificates or extract them from existing truststores.