Support for SSL termination in servlet container

[camechis]

Not sure if its already supported but I need the ability to configure Mutual SSL Authentication in Jetty/Tomcat.

[dsyer]

Can you provide some more detail or a pull request, please? You want the container to terminate SSL?

[camechis]

Sorry if I wasn't clear. Spring Security supports X509 Auth and I may be
wrong here but I believe there are some configurations that need to be done
to the container( Jetty/Tomcat ) in order for it to work. I just wasnt'
sure if spring-boot has these settings configurable since the containers
are embedded. For instance Dropwizard allows you to do this with its YAML
configuration.

http:
   connectorType: nonblocking+ssl
   ssl:
       keyStore: foo.jks
       keyStorePassword: "asfasf"
       trustStore: bar.jks
       trustStorePassword: "asfasf"
       wantClientAuth: true
       needClientAuth: true

[dsyer]

I see. That makes sense (enabling SSL termination in the container). I don't think that would be very difficult. Pull requests welcome.

[dsyer]

I added some documentation based on doing this yourself in a TomcatConnectorCustomizer (see https://github.com/spring-projects/spring-boot/blob/master/docs/howto.md)

[btiernay]

Would be nice if this could be done declaratively a la Dropwizard. This is one area where Dropwizard has the edge over boot imho, and there aren't many of those :)

[philwebb]

@ btiernay I've raised a new enhancement request issue for this. /cc yourself to #1084 .

[btiernay]

@philwebb Thats awesome. You guys rock :)