Skip to main content

Configuration reference

All starter-specific properties use the prefix jeap.web.tls. Sensible defaults apply, so in most cases no configuration is needed — adding the dependency is enough (see Getting started).

Properties

PropertyDefaultDescription
jeap.web.tls.enabledtrueEnable (true) or disable (false) the jEAP TLS starter. When false, no SSL properties are added.
jeap.web.tls.self-signed-cert.hostname${spring.application.name} (else unknown)Value used as the certificate's subject common name (CN) and as a DNS subject alternative name (SAN).
jeap.web.tls.self-signed-cert.days-valid3650 (10 years)Number of days the generated self-signed certificate is valid.
jeap:
web:
tls:
enabled: true
self-signed-cert:
hostname: jme-example-service
days-valid: 1100

A non-integer value for days-valid causes start-up to fail with an IllegalArgumentException.

Spring properties set by the starter

When enabled, the starter adds the following Spring Boot properties to the environment (in a property source named jeap-tls-config). You normally do not set these yourself:

PropertyValue set
spring.ssl.bundle.pem.web-server.keystore.private-keyThe generated PEM private key
spring.ssl.bundle.pem.web-server.keystore.certificateThe generated PEM certificate
server.ssl.bundleweb-server
server.http2.enabledtrue

If server.ssl.bundle is already configured, the starter logs a debug message and leaves the environment untouched, so an explicitly configured SSL bundle always wins.