There is a spring boot service, requests to this service are proxied using the zuul gateway service (hereinafter simply zuul). If the service works with the usual http-protocol, everything works as it should, there are no problems.
Problems appear when you try to make it work through https. I activated https on the service, added a self-signed certificate that I generated using keytool, and the service became available via the https protocol. However, zuul cannot work with him, he gets an exception:
com.sun.jersey.api.client.ClientHandlerException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target Obviously, this problem occurred because the client that is used in zuul cannot verify my certificate.
I want to configure zuul so that it ignores the certificate verification phase, but I don’t understand how to do this. Who can faced it and knows what to do?
PS: on zuul I explicitly configured the use of the ribbon as a load balancer:
ribbon.IsSecure=true ribbon.restclient.enabled=true 