Actually, I don't think this is ideal solution. In this case, the certificates will be self-signed which is just half-secured solution for secured web page.
I think the solution of passing jks and jks password with existing java keystore is the right solution.
If the jks password is in clear text is wouldn't pass a security review.
On Thu, Aug 16, 2018 at 12:47 PM, Jakub Hava (JIRA) <
What we can do is to create additional configuration to Sparkling Water which could be used to pass certification authority which will be used as the authority for the generated certificates.
However this won’t be available in the following release