2.11 Using a CA-Signed SSL Certificate in the Quick Start Installation
The Spatial Studio Quick Start installation typically comes with a self-signed certificate for handling SSL or HTTPS URL connection encryption.
However, this is not desirable as the browser always warns you about an insecure connection. Starting with Spatial Studio Release 23.2.0, you can use your own (CA-signed) X.509 certificate.
Review the following sections and perform the steps that apply to your scenario.
- Preparing a CA-Signed Certificate and Private Key for the Spatial Studio Server
You can prepare a CA-signed certificate and a private key for the Spatial Studio server. - Configuring the Spatial Studio Server to Use a Java Keystore
You can configure your server to use a Java keystore file containing an X.509 certificate. - Configuring Reverse Proxy for the Quick Start Installation
If your Spatial Studio Quick Start installation is running on the same host, where you already have an Apache HTTP or NGINX server running, then you can simply use a reverse proxy to ensure a secure connection.
Parent topic: Administering Oracle Spatial Studio
2.11.1 Preparing a CA-Signed Certificate and Private Key for the Spatial Studio Server
You can prepare a CA-signed certificate and a private key for the Spatial Studio server.
2.11.2 Configuring the Spatial Studio Server to Use a Java Keystore
You can configure your server to use a Java keystore file containing an X.509 certificate.
yourdomain.keystore
) generated from an X.509 certificate and
private key as explained in Preparing a CA-Signed Certificate and Private Key for the Spatial Studio Server. It is important to note that the keystore file generated in a
different manner may not work with Spatial Studio.
2.11.3 Configuring Reverse Proxy for the Quick Start Installation
If your Spatial Studio Quick Start installation is running on the same host, where you already have an Apache HTTP or NGINX server running, then you can simply use a reverse proxy to ensure a secure connection.
With this approach, you are not required to make any configuration changes to the Spatial Studio server itself.