How Do I Consume SSL Encrypted Content with CFHTTP?

Many websites that use SSL certificates are not accessible via CFHTTP or via ColdFusion Web Services. This happens because the certificate issuing authority is not registered in the security keystore in the JVM that ColdFusion is running on top of. This can be remedied by installing the SSL certificate for the site or service you’re trying to consume. In order to do this, you will need to have administrative rights on the server (or local development machine) you are working on. Following is a step-by-step guide to installing an SSL certificate into your ColdFusion environment.

Prerequisites

You must have the following in order to complete this process:

Installing KeyToolGUI

Follow these instructions to install the KeyTool GUI on the computer running ColdFusion

Step-by-Step Instructions (Windows)

Step-by-Step Instructions (OS X)

** NOTE: Cacerts on Mac may also be found in: /Library/Java/lib/security/cacerts/ and you may need to make this writable using: sudo chmod 777 cacerts

** Open Terminal
** cd /Applications/coldfusion9/bin (or /Applications/coldfusion10/cfusion/bin for CF10)
** ./coldfusion restart

Note that you will not be able to consume the service or access the site until you restart the ColdFusion service.

This question was written by Joshua Miller
It was last updated on June 30, 2013.

Categories

Security

Comments

comments powered by Disqus