§Configuring WS SSL
Play WS allows you to set up HTTPS completely from a configuration file, without the need to write code. It does this by layering the Java Secure Socket Extension (JSSE) with a configuration layer and with reasonable defaults.
JDK 1.8 contains an implementation of JSSE which is significantly more advanced than previous versions, and should be used if security is a priority.
NOTE: It is highly recommended (if not required) to use WS SSL with the
unlimited strength java cryptography extension. You can download the policy files from Oracle’s website at Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files 8 Download.
§Table of Contents
The Play WS configuration is based on Typesafe SSLConfig.
For convenience, a table of contents to SSLConfig is provided:
- Quick Start to WS SSL
- Generating X.509 Certificates
- Configuring Trust Stores and Key Stores
- Configuring Protocols
- Configuring Cipher Suites
- Configuring Certificate Validation
- Configuring Certificate Revocation
- Configuring Hostname Verification
- Example Configurations
- Using the Default SSLContext
- Debugging SSL Connections
- Loose Options
- Testing SSL
NOTE: The links below are relative to
Typesafe SSLConfig, which uses thessl-configas a prefix for ssl properties.
Play uses theplay.ws.sslprefix, so that, for instance thessl-config.loose.acceptAnyCertificatebecomesplay.ws.ssl.loose.acceptAnyCertificatefor your playWSClientconfiguration.
§Further Reading
JSSE is a complex product. For convenience, the JSSE materials are provided here:
JDK 1.8:
Next: Configuring WS Cache