You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Yifan Cai (Jira)" <ji...@apache.org> on 2022/05/12 23:38:00 UTC
[jira] [Comment Edited] (CASSANDRA-17513) Adding support for TLS client authentication for internode communication
[ https://issues.apache.org/jira/browse/CASSANDRA-17513?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17536374#comment-17536374 ]
Yifan Cai edited comment on CASSANDRA-17513 at 5/12/22 11:37 PM:
-----------------------------------------------------------------
For posterity,
PR: [https://github.com/apache/cassandra/pull/1535]
CI: [https://app.circleci.com/pipelines/github/yifan-c/cassandra?branch=r%2Fpr1535&filter=all]
was (Author: yifanc):
For posterity, the PR is [https://github.com/apache/cassandra/pull/1535]
> Adding support for TLS client authentication for internode communication
> ------------------------------------------------------------------------
>
> Key: CASSANDRA-17513
> URL: https://issues.apache.org/jira/browse/CASSANDRA-17513
> Project: Cassandra
> Issue Type: Bug
> Components: Feature/Encryption, Local/Config
> Reporter: Jyothsna Konisa
> Assignee: Jyothsna Konisa
> Priority: Normal
> Time Spent: 4.5h
> Remaining Estimate: 0h
>
> Same keystore is being set for both Inbound and outbound connections but we should use a keystore with server certificate for Inbound connections and a keystore with client certificates for outbound connections. So we should add a new property in Cassandra.yaml to pass outbound keystore and use it in SSLContextFactory for creating outbound SSL context.
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org