[FEATURE REQ] TLS support in Spring Boot with Azure Key Vault Certificates

[saragluna]

Is your feature request related to a problem? Please describe. Spring web applications can either be an HTTP client or an HTTP server, if an application wants to secure the HTTP communication via TLS and the certificates are stored in Azure Key Vault, spring-cloud-azure-starter-keyvault-certificates should support it.

• If one-way TLS is used:
  • In the case of an HTTP server, users shall be able to configure the server's certificates in Azure Key Vault.
  • In the case of an HTTP client, users shall be able to validate the server's certificates stored in Azure Key Vault.
• If two-way TLS is used:
  • In the case of an HTTP server:
  • Users shall be able to configure the server's certificates in Azure Key Vault.
  • Users shall be able to validate the client certificates in Azure Key Vault.
  • In the case of an HTTP client:
  • Users shall be able to configure the client's certificates stored in Azure Key Vault to the server.
  • Users shall be able to validate the server's certificates stored in Azure Key Vault.

Given Spring MVC or WebFlux is used, the below scenarios should be supported:

• As a web server, users shall be able to use this feature with Spring MVC with Tomcat, Jetty, and Undertow.
• As a web server, users shall be able to use this feature with Spring WebFlux with Netty。
• As a web client, users shall be able to use this feature with Spring MVC and RestTemplate.
• As a web client, users shall be able to use this feature with Spring WebFlux and Web Client.

Additional context N/A

Information Checklist Kindly make sure that you have added all the following information above and checkoff the required fields otherwise we will treat the issuer as an incomplete report

• [x] Description Added
• [x] Expected solution specified

[saragluna]

https://github.com/spring-projects/spring-boot/wiki/Spring-Boot-2.7-Release-Notes#web-server-ssl-configuration-using-pem-encoded-certificates

[stliu]

#25880 the sample should be updated as well

[backwind1233]

Link to user issue: https://github.com/Azure/azure-sdk-for-java/issues/32854

[rvervaek]

We require this feature too in spring-azure libs 4.x+ and 5.x+. We are stuck using the old 3.x libraries because of this.

[moarychan]

Hi @rvervaek , thanks for using our library! We have received your submission and will take it into consideration and will keep you updated on the progress of our review.

[gzmrst-sr]

Is this ever planned to happen? We would very much like to be able to upgrade to a newer version of this library

[saragluna]

@gzmrst-sr please help vote this feature request. BTW, are you using the jca starter now?

[github-actions[bot]]

Hi @saragluna, we deeply appreciate your input into this project. Regrettably, this issue has remained inactive for over 2 years, leading us to the decision to close it. We've implemented this policy to maintain the relevance of our issue queue and facilitate easier navigation for new contributors. If you still believe this topic requires attention, please feel free to create a new issue, referencing this one. Thank you for your understanding and ongoing support.