Jetty: Error initializing keystore

Question

For starters, I have already refereed these questions on stackoverflow and they didn't solve my problem, therefore creating a new one:

java.io.IOException: Invalid Keystore format

tomcat 7 ssl invalid keystore format

Problem:

While integrating SAML with my Jetty web app(by following the tutorial at: https://developer.okta.com/blog/2017/03/16/spring-boot-saml), I get following error:

org.springframework.beans.BeanInstantiationException: Failed to instantiate [javax.servlet.Filter]: Factory method 'springSecurityFilterChain' threw exception; nested exception is java.lang.RuntimeException: Error initializing keystore

I have tried creating the keystore from multiple versions of JDK but for all files, I get the same error.

Also I am not using maven.

EDIT:

Exception trace:

unavailable Error creating bean with name 'springSecurityFilterChain' defined in class path resource [org/springframework/security/config/annotation/web/configuration/WebSecurityConfiguration.class]: Bean instantiation via factory method failed; nested exception is org.springframework.beans.BeanInstantiationException: Failed to instantiate [javax.servlet.Filter]: Factory method 'springSecurityFilterChain' threw exception; nested exception is java.lang.RuntimeException: Error initializing keystore
FAILED o.e.j.s.ServletContextHandler@550dbc7a{/api,null,STARTING}: javax.servlet.ServletException: org.springframework.web.servlet.DispatcherServlet-7b2bbc3@bef2d67e==org.springframework.web.servlet.DispatcherServlet,-1,false org.springframework.web.servlet.DispatcherServlet-7b2bbc3@bef2d67e==org.springframework.web.servlet.DispatcherServlet,-1,false
FAILED  
Error Details:
     org.springframework.web.servlet.DispatcherServlet-7b2bbc3@bef2d67e==org.springframework.web.servlet.DispatcherServlet,-1,false
Server exiting.

did you check out this one ? https://stackoverflow.com/questions/26764806/java-io-ioexception-invalid-keystore-format-spring-security-saml-extension — Axel Podehl, Jan 15 '18 at 09:19
Yes I did. It gives the solution as "maven might be filtering out the jks file". I am not using maven as mentioned in my question. — tryingToLearn, Jan 15 '18 at 10:05
And does keytool work on this file ? Try C:\Java\jdk_1.7.3\bin>keytool -list keystore.jks — Axel Podehl, Jan 15 '18 at 10:26
Correction: keytool -list -keystore keystore.jks gives correct output. No error — tryingToLearn, Jan 15 '18 at 10:46
can you post the complete Exception trace ? The cause of this exception might be interesting to see... — Axel Podehl, Jan 15 '18 at 10:54

score 2 · Accepted Answer · answered Jan 16 '18 at 06:06

So after downloading the source and debugging for a while, I found out the problem.

Turns out, this line from source was causing the problem(the link i mentioned in my question uses this code): Spring Security with SAML

I changed the following line:

DefaultResourceLoader loader = new DefaultResourceLoader();
Resource storeFile = loader.getResource(keyStore.getStoreFilePath());

to

Resource storeFile = new FileSystemResource(keyStore.getStoreFilePath());

and it works perfectly. The only change I did was using FileSystemResource instead of DefaultResourceLoader

Although, In a different application, no change was needed, I am not sure why it fails to read the same file in 1 application and fails in another. More debugging is required. However, I am sharing the solution, in case someone stumbles upon the same problem.

`DefaultResourceLoader` resolves class path resources whereas the `FileSystemResourceLoader` resolves plain paths as file system resources. Source: https://docs.spring.io/spring-framework/docs/current/javadoc-api/org/springframework/core/io/FileSystemResourceLoader.html — duncanportelli, Oct 28 '19 at 09:32

Jetty: Error initializing keystore

1 Answers1