SpringBoot Spring native image public cert management related questions

Hi,

I am using spring native to build my spring boot app to exe. As my deployment needs, I need to import public certificates of other servers for my app. How do i do so?

Do i first import all necessary certs into the cacerts of GraalVM jdk first, then when building it will use this cacerts? Any configuration needed?

Is there a way also to not require rebuild when i need to import a new cert?

More info: Spring boot version: 3.0.7 Build method: Using base image ghcr.io/graalvm/graalvm-ce:22.3.1 to build exe with command mvnw native:compile -Pnative, with maven plugin native-maven-plugin Plugin configuration:

<plugin>
    <groupId>org.graalvm.buildtools</groupId>
    <artifactId>native-maven-plugin</artifactId>
    <configuration>
        <buildArgs>
            <arg>-H:+AddAllCharsets</arg>
            <arg>-H:+TraceSecurityServices</arg>
            <arg>-H:+ReportExceptionStackTraces</arg>
        </buildArgs>
    </configuration>
</plugin>

Thanks, Kae Yan (NCS)

Comment From: wilkinsona

Thanks for getting in touch, but it feels like this is a question that would be better suited to Stack Overflow. As mentioned in the guidelines for contributing, we prefer to use GitHub issues only for bugs and enhancements. It also isn't specific to Spring Boot and appears to be a general question about GraalVM.