Enabling HTTPS, Strong Encryption Support, and Password Encryption


HTTPS is enabled on all the Omni-Gen applications with a web front end and/or those exposing RESTful web services.

To enable HTTPS, a signed SSL certificate must be used. Certificates are data files that digitally bind a cryptographic key to the details of an organization and to ensure that the content provided is from the correct (verified) sender. The following procedure describes the steps needed to enable HTTPS on the various Spring Boot applications. The TLS 1.2 protocol is enabled, by default, in the version of Spring Boot. Currently, 1.4.x is used.

Omni-Gen creates and uses a self-signed SSL certificate by default. The installation software captures the required parameters to create the certificate and configure the application software to use the certificate. This can be replaced with a CA-approved certificate.