Please read this carefully. Please do not send me a link on how to import a certificate.
I I am using Postman for QA and testing work. I have a test system I frequently rebuild myself and so it is completely trusted. It has custom self signed certificates and I import them as detailed here: http://blog.getpostman.com/2014/01/28/using-self-signed-certificates-with-postman/
However when I access the site, https://mysite.mycompany.com, I get a message "NET::ERR_CERT_REVOKED". Since it is revoked, importing the certificate does not help at all.
So, is there a way to get Postman to simply ignore certificates for testing purposes? I am not testing certificates but other functionality at this point in time. I do not care about security in this case at all as I have complete control of the system, I am behind a firewall, and I frequently rebuild the system.
This question is related to
testing
ssl-certificate
qa
postman
This steps are used in spring boot with self signed ssl certificate implementation
if SSL turns off then HTTPS call will be worked as expected.
https://localhost:8443/test/hello
These are the steps we have to follow,
keytool -genkeypair -alias tomcat -keyalg RSA -keysize 2048 -storetype PKCS12 -keystore keystore.p12 -validity 3650
after key generation has done then copy that file in to the resource foder in your project
server.port: 8443
server.ssl.key-store:classpath:keystore.p12
server.ssl.key-store-password: test123
server.ssl.keyStoreType: PKCS12
server.ssl.keyAlias: tomcat
now verify the url: https://localhost:8443/test/hello
There is an option in Postman if you download it from https://www.getpostman.com instead of the chrome store (most probably it has been introduced in the new versions and the chrome one will be updated later) not sure about the old ones.
In the settings, turn off the SSL certificate verification option
Be sure to remember to reactivate it afterwards, this is a security feature.
If you really want to use the chrome app, you could always add an exception to chrome for the url: Enter the url you would like to open in the chrome browser, you'll get a warning with a link at the bottom of the page to add an exception, which if you do, it will also allow postman to access your url. But the first option of using the postman stand-alone app is much better.
I hope this can help.
Source: Stackoverflow.com