https://bz.apache.org/bugzilla/show_bug.cgi?id=67667
Bug ID: 67667 Summary: TLSCertificateReloadListener prints unreadable rendering for X509Certificate#getNotAfter() Product: Tomcat 9 Version: 9.0.81 Hardware: All OS: All Status: NEW Severity: normal Priority: P2 Component: Catalina Assignee: dev@tomcat.apache.org Reporter: micha...@apache.org Target Milestone: ----- Output: 10-Oct-2023 19:52:21.881 WARNUNG [Catalina-utility-2] org.apache.catalina.security.TLSCertificateReloadListener.checkCertificatesForRenewal [Connector["https-openssl-apr-30002"]], TLS virtual host [_default_] with name [CN=localhost,OU=IN IT IN,O=Siemens,L=Berlin,ST=Berlin,C=DE] that expires on [10/15/23 7:20 PM] is overdue for renewal This date isn't readable for international audience and an insult to the developer's/admin's eye. The easiest solution is to do "expiringCertificate.getNotAfter().toInstant()", but Tomcat 8.5 runs on 7 only, alternatively, we use SimpleDateFormat/ConcurrentDateFormat with "yyyy-MM-dd'T'HH:mm:ssXXX". Readable output: 10-Oct-2023 20:45:01.472 WARNUNG [Catalina-utility-1] org.apache.catalina.security.TLSCertificateReloadListener.checkCertificatesForRenewal [Connector["https-openssl-apr-30002"]], TLS virtual host [_default_] with name [CN=localhost, OU=IN IT IN, O=Siemens, L=Berlin, ST=Berlin, C=DE] that expires on [2023-10-15T17:20:55Z] is overdue for renewal If no one objects, I'd commit and push the SDF to all branches. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org