ncknt/java-spin-mtls.yml

## java-spin-mtls.yml
# TLS only
# server:
#   ssl:
#     enabled: true
# # Identity of the server
#     key-store: /path/to/server/java/server.p12"
#     key-store-type: "PKCS12"
#     key-alias: server
#     key-store-password: <keystorepassword>

# mTLS with jks for truststore
server:
  ssl:
    enabled: true
# Identity of the server
    key-store: /path/to/server/java/server.p12
    key-store-type: PKCS12
    key-alias: server
    key-store-password: <keystorepassword>
# Who is trusted by the service, this will contain the root CA
    trust-store: /path/to/ca/truststore.jks
    trust-store-password: <truststorepassword>
    client-auth: "need" # or want

ok-http-client:
  # Contains the identity of the service
  key-store: /path/to/server/java/server.p12
  key-store-type: "PKCS12"
  key-store-password: <keystorepassword>
  # Contains the trust store
  trust-store: /path/to/ca/truststore.jks
  trust-store-type: JKS
  trust-store-password: <truststorepassword>
  tls-versions: ["TLSv1.2"]
	# TLS only
	# server:
	# ssl:
	# enabled: true
	# # Identity of the server
	# key-store: /path/to/server/java/server.p12"
	# key-store-type: "PKCS12"
	# key-alias: server
	# key-store-password: <keystorepassword>

	# mTLS with jks for truststore
	server:
	ssl:
	enabled: true
	# Identity of the server
	key-store: /path/to/server/java/server.p12
	key-store-type: PKCS12
	key-alias: server
	key-store-password: <keystorepassword>
	# Who is trusted by the service, this will contain the root CA
	trust-store: /path/to/ca/truststore.jks
	trust-store-password: <truststorepassword>
	client-auth: "need" # or want

	ok-http-client:
	# Contains the identity of the service
	key-store: /path/to/server/java/server.p12
	key-store-type: "PKCS12"
	key-store-password: <keystorepassword>
	# Contains the trust store
	trust-store: /path/to/ca/truststore.jks
	trust-store-type: JKS
	trust-store-password: <truststorepassword>
	tls-versions: ["TLSv1.2"]