You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Yifan Cai (Jira)" <ji...@apache.org> on 2022/05/12 23:27:00 UTC
[jira] [Updated] (CASSANDRA-17513) Adding support for TLS client authentication for internode communication
[ https://issues.apache.org/jira/browse/CASSANDRA-17513?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Yifan Cai updated CASSANDRA-17513:
----------------------------------
Bug Category: Parent values: Code(13163)Level 1 values: Bug - Unclear Impact(13164)
Complexity: Normal
Component/s: Feature/Encryption
Local/Config
Discovered By: User Report
Severity: Low
Status: Open (was: Triage Needed)
Opening the issue. Somehow it was categorized as "Bug", which should really be an "Improvement" instead, IMO. Jira won't allow to change the type. I am filling the required fields at my best effort :]
> Adding support for TLS client authentication for internode communication
> ------------------------------------------------------------------------
>
> Key: CASSANDRA-17513
> URL: https://issues.apache.org/jira/browse/CASSANDRA-17513
> Project: Cassandra
> Issue Type: Bug
> Components: Feature/Encryption, Local/Config
> Reporter: Jyothsna Konisa
> Assignee: Jyothsna Konisa
> Priority: Normal
> Time Spent: 4.5h
> Remaining Estimate: 0h
>
> Same keystore is being set for both Inbound and outbound connections but we should use a keystore with server certificate for Inbound connections and a keystore with client certificates for outbound connections. So we should add a new property in Cassandra.yaml to pass outbound keystore and use it in SSLContextFactory for creating outbound SSL context.
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@cassandra.apache.org
For additional commands, e-mail: commits-help@cassandra.apache.org