| description | How to install Root CA Certificate to all Java store on macOS |
|---|
In order to intercept HTTPS traffic from Java apps, extra steps are required to install the Proxyman CA Certificate into the Java Key Store.
- Intercept Traffic from Unit Test (written by Java or Kotlin)
- Intercept Traffic from Java app or CLI
- Proxyman provides a script to help developers automatically install Root Certificate to Java KeyStore with 1 click ✅
- Support
$JAVA_HOME - Support
SDKMAN - Support
/usr/libexec/java_home
Before installing Proxyman CA on Java VMs, we have to install it properly on your current Mac machine.
Check out the macOS Guideline:
{% content-ref url="macos.md" %} macos.md {% endcontent-ref %}
You can skip and start the next step if you've done this step.
- Certificate Menu -> Install Certificate on Java VMs -> Run Scripts
- The script will attempt to find the Key Store location from JAVA_HOME, SDKHOME, or from $(/usr/libexec/java_home) environment and install the CA Certificate if possible
Proxyman install the certificate to all Java Trust Store if possible
{% hint style="info" %} You can find the script at /Applications/Proxyman.app/Contents/Frameworks/ProxymanCore.framework/Versions/A/Resources/install-certificates-java.sh {% endhint %}
{% hint style="info" %} The script might require permission for EventKit because Proxyman triggers the script by Apple Script in order to install it under admin permission. {% endhint %}
- Check out @yauheniprakapenka solution: ProxymanApp/Proxyman#569 (comment) if you get the following error
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target