You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@geode.apache.org by "Udo Kohlmeyer (JIRA)" <ji...@apache.org> on 2016/12/27 23:53:58 UTC

[jira] [Assigned] (GEODE-1294) Overriding cluster-ssl properties does not work for http-service-ssl

     [ https://issues.apache.org/jira/browse/GEODE-1294?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Udo Kohlmeyer reassigned GEODE-1294:
------------------------------------

    Assignee: Udo Kohlmeyer

> Overriding cluster-ssl properties does not work for http-service-ssl
> --------------------------------------------------------------------
>
>                 Key: GEODE-1294
>                 URL: https://issues.apache.org/jira/browse/GEODE-1294
>             Project: Geode
>          Issue Type: Bug
>          Components: security
>            Reporter: Jens Deppe
>            Assignee: Udo Kohlmeyer
>
> when {{cluster-ssl-require-authentication=true}} the following properties are set:
> {noformat}
> cluster-ssl-require-authentication=true
> gateway-ssl-require-authentication=true
> http-service-ssl-require-authentication=true
> jmx-manager-ssl-require-authentication=true
> server-ssl-require-authentication=true
> {noformat}
> When that property is not set (i.e. just defaulted) and {{cluster-ssl-enabled=true}} then only {{http-service-ssl-require-authentication=false}} is set and all the other {{require-authentication}} properties are {{true}}. With these settings, we require mutual auth for all connections except Pulse and gfsh over http.
> However, if I set the following which should really be mimicking the default settings for {{cluster-ssl-enabled=true}}:
> {noformat}
> cluster-ssl-require-authentication=true
> http-service-ssl-require-authentication=false
> {noformat}
> Then I am unable to access Pulse as it still appears to require mutual auth.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)