I've taken our site pfx file and used it to create a client crt, ca crt and der key file.
Then concatenated the client and ca crt files and checked the certificates were in the correct order: client, intermediary, root.
Intermediary and root certificates are from DigiCert.
Update Jetty configuration to use these files.
I'm getting "unable to verify the first certificate" error when trying to test my API using SwaggerHub and using the following test tool it indicates the intermediary certificate is missing.
https://www.geocerts.com/ssl_checker
api.orix.co.nz:8443
If I use www.orix.co.nz:443 (different physical server) all looks OK.
Anyone got this working?
I'm using ords.17.4.1.353.06.48 as they now state this is supported in a production environment and we're expecting very low traffic.
"Standalone mode is suitable for development use and is supported in production deployments. Standalone mode, however, has minimal management capabilities when compared to most Java EE application servers and may not have adequate management capabilities for production use in some environments."
https://blogs.oracle.com/dbaas/installing-a-trusted-ssl-certificate-on-oracle-database-cloud-service-for-apex