§Configuring WS SSL
Play WS allows you to set up HTTPS completely from a configuration file, without the need to write code. It does this by layering the Java Secure Socket Extension (JSSE) with a configuration layer and with reasonable defaults.
JDK 1.8 contains an implementation of JSSE which is significantly more advanced than previous versions, and should be used if security is a priority.
NOTE: It is highly recommended (if not required) to use WS SSL with the
unlimited strength java cryptography extension. You can download the policy files from Oracle’s website at Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files 8 Download.
§Table of Contents
The Play WS configuration is based on Typesafe SSLConfig.
For convenience, a table of contents to SSLConfig is provided:
- Quick Start to WS SSL
- Generating X.509 Certificates
- Configuring Trust Stores and Key Stores
- Configuring Protocols
- Configuring Cipher Suites
- Configuring Certificate Validation
- Configuring Certificate Revocation
- Configuring Hostname Verification
- Example Configurations
- Using the Default SSLContext
- Debugging SSL Connections
- Loose Options
- Testing SSL
NOTE: The links below are relative to
Typesafe SSLConfig
, which uses thessl-config
as a prefix for ssl properties.
Play uses theplay.ws.ssl
prefix, so that, for instance thessl-config.loose.acceptAnyCertificate
becomesplay.ws.ssl.loose.acceptAnyCertificate
for your playWSClient
configuration.
§Further Reading
JSSE is a complex product. For convenience, the JSSE materials are provided here:
JDK 1.8:
Next: Configuring WS Cache
Found an error in this documentation? The source code for this page can be found here. After reading the documentation guidelines, please feel free to contribute a pull request. Have questions or advice to share? Go to our community forums to start a conversation with the community.