You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Larry McCay (JIRA)" <ji...@apache.org> on 2017/11/08 15:41:00 UTC

[jira] [Created] (KNOX-1111) 2-way SSL Truststore and Keystore Improvements

Larry McCay created KNOX-1111:
---------------------------------

             Summary: 2-way SSL Truststore and Keystore Improvements
                 Key: KNOX-1111
                 URL: https://issues.apache.org/jira/browse/KNOX-1111
             Project: Apache Knox
          Issue Type: Bug
          Components: Server
            Reporter: Larry McCay
            Assignee: Jeff Storck
             Fix For: 0.15.0


Currently, the DefaultHttpClientFactory is setting the 2-way SSL for dispatches truststore as gateway.jks. This should be driven by configuration and probably default to cacerts rather than gateway.jks.

The client cert alias inside the keystore should be configurable as well so that we can possibly have different certs representing different topologies.

In addition, the keystore to host the client certs should be configurable.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)