Switching to HTTPS
To switch an existing network of nodes from HTTP to HTTPS, these instructions will enable HTTPS and update all sync URLs. Leave HTTP enabled until all nodes are aware of the change to HTTPS.
- Edit conf/symmetric-server.properties and set https.enable=true.
- Verify the port to use with property https.port=31417.
- Restart SymmetricDS.
- Verify that both HTTP and HTTPS can be used to access SymmetricDS. For example, use the ping URL: http://localhost:31415/sync/server/ping
- Edit engines/{engine}.properties files and change the sync.url property to use "https".
- Restart SymmetricDS.
- Verify all nodes receive the change to HTTPS. There will be batches on the "config" channel. After they are synced, all nodes have the change. For example, query with: select count(*) from sym_outgoing_batch where channel_id = 'config' and status != 'OK'
Optionally, you may choose to disable HTTP at this point. The steps are:
- Edit conf/symmetric-server.properties and set http.enable=false.
- Restart SymmetricDS
- Verify that HTTPS is still working and HTTP can no longer be accessed.