Enabling HTTP/2 in Spring Boot with Tomcat

HTTP/2 is a major revision of the HTTP protocol that improves performance by enabling multiplexed streams, header compression, and server push. Spring Boot, which uses Tomcat as its default embedded server, supports HTTP/2 natively. This article explains how to enable HTTP/2 in a Spring Boot application running with Tomcat.

1. Setting Up a Test Project

To begin, create a new Spring Boot project using Spring Initializr or your preferred method. Include the following dependencies in pom.xml for a Maven project.

These dependencies provide support for building a web application using Spring Boot with an embedded Tomcat server.

2. Creating a Simple Controller for Testing

To test HTTP/2, create a basic REST controller.

This controller exposes an endpoint (/hello) that returns a simple message.

Now, let’s use curl to check the HTTP version being used before enabling a self-signed certificate. Running the following command will send a request to the local server and display the response headers:

This command retrieves only the headers (-I flag) from the response. If the server is running correctly, you should see output similar to the following:

The first line indicates that the server is currently using HTTP/1.1, meaning HTTP/2 is not yet enabled. HTTP/2 requires HTTPS to function properly. Next, let’s configure the application to enable HTTP/2 and verify the changes.

3. Generating a Self-Signed SSL Certificate

Since HTTP/2 requires HTTPS, we need an SSL certificate. For development and testing purposes, we can generate a self-signed certificate using the Java keytool command.

This command creates a keystore.p12 file that can be used in the configuration. Place this file in src/main/resources/.

4. Enabling HTTP/2 in Spring Boot

To enable HTTP/2 in a Spring Boot application running with Tomcat, we need to update the server configuration. Since Tomcat only supports HTTP/2 over HTTPS, we must also configure an SSL certificate. This can be done in the application.yml or application.properties file by specifying the HTTP/2 protocol and providing SSL settings. The following configuration ensures that HTTP/2 is enabled when the application runs.

Using application.properties

These configurations enable HTTP/2 over HTTPS on port 8443. Since Tomcat requires HTTPS for HTTP/2, we specify an SSL key store. The key store file keystore.p12 must be placed in the resources folder.

5. Running and Testing HTTP/2 Support

Start the application and test if HTTP/2 is working using curl:

This command sends an HTTPS request to https://127.0.0.1:8443/hello, retrieving only the response headers while ignoring SSL certificate validation errors. The -k option allows insecure SSL connections, which is useful when using a self-signed certificate.

If HTTP/2 is enabled, you should see the output containing:

This confirms that the application is serving requests over HTTP/2. You can also set up a few more things, like redirecting HTTP to HTTPS in Tomcat and using Spring Security to make sure all connections use SSL.

5. Conclusion

In this article, we explored how to enable HTTP/2 in a Spring Boot application using Tomcat. We covered the necessary configurations, including enabling HTTP/2 in application.properties, setting up an SSL certificate, and testing the setup using curl. Additionally, we can enhance security by redirecting HTTP to HTTPS and integrating Spring Security to enforce SSL connections.

6. Download the Source Code

This article covered HTTP2 support in Spring Boot with Tomcat.

Do you want to know how to develop your skillset to become a Java Rockstar?

Subscribe to our newsletter to start Rocking right now!

To get you started we give you our best selling eBooks for FREE!

1. JPA Mini Book

2. JVM Troubleshooting Guide

3. JUnit Tutorial for Unit Testing

4. Java Annotations Tutorial

5. Java Interview Questions

6. Spring Interview Questions

7. Android UI Design

and many more ....

I agree to the Terms and Privacy Policy

Sign up

Thank you!

We will contact you soon.