You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geode.apache.org by "Udo Kohlmeyer (JIRA)" <ji...@apache.org> on 2016/12/27 23:53:58 UTC
[jira] [Assigned] (GEODE-1294) Overriding cluster-ssl properties
does not work for http-service-ssl
[ https://issues.apache.org/jira/browse/GEODE-1294?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Udo Kohlmeyer reassigned GEODE-1294:
------------------------------------
Assignee: Udo Kohlmeyer
> Overriding cluster-ssl properties does not work for http-service-ssl
> --------------------------------------------------------------------
>
> Key: GEODE-1294
> URL: https://issues.apache.org/jira/browse/GEODE-1294
> Project: Geode
> Issue Type: Bug
> Components: security
> Reporter: Jens Deppe
> Assignee: Udo Kohlmeyer
>
> when {{cluster-ssl-require-authentication=true}} the following properties are set:
> {noformat}
> cluster-ssl-require-authentication=true
> gateway-ssl-require-authentication=true
> http-service-ssl-require-authentication=true
> jmx-manager-ssl-require-authentication=true
> server-ssl-require-authentication=true
> {noformat}
> When that property is not set (i.e. just defaulted) and {{cluster-ssl-enabled=true}} then only {{http-service-ssl-require-authentication=false}} is set and all the other {{require-authentication}} properties are {{true}}. With these settings, we require mutual auth for all connections except Pulse and gfsh over http.
> However, if I set the following which should really be mimicking the default settings for {{cluster-ssl-enabled=true}}:
> {noformat}
> cluster-ssl-require-authentication=true
> http-service-ssl-require-authentication=false
> {noformat}
> Then I am unable to access Pulse as it still appears to require mutual auth.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)