You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ignite.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2018/10/18 10:04:00 UTC

[jira] [Commented] (IGNITE-9845) Web Console: Add support of two way ssl authentication in Web Console agent

    [ https://issues.apache.org/jira/browse/IGNITE-9845?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16654989#comment-16654989 ] 

ASF GitHub Bot commented on IGNITE-9845:
----------------------------------------

GitHub user akuznetsov-gridgain opened a pull request:

    https://github.com/apache/ignite/pull/5022

    IGNITE-9845 Implemented support for passing arguments for mutual SSL

    

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/gridgain/apache-ignite ignite-9845

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/ignite/pull/5022.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #5022
    
----
commit f72c1bbd257090e928efc7e49027af7cd5a9b78f
Author: Alexey Kuznetsov <ak...@...>
Date:   2018-10-18T02:04:51Z

    IGNITE-9845 WIP on dual SSL for Web Agent.

commit af35b395be5e7c9cc072944161a28804d44e322f
Author: Alexey Kuznetsov <ak...@...>
Date:   2018-10-18T02:55:34Z

    Merge branch 'master' of https://git-wip-us.apache.org/repos/asf/ignite into ignite-9845

commit a5e6266e4cd3c29edb30c85f1d342415c8721148
Author: Alexey Kuznetsov <ak...@...>
Date:   2018-10-18T09:27:55Z

    IGNITE-9845 WIP on dual SSL for Web Agent.

commit f4cd5c966f0f203e260d0f8db1783f0689c7725a
Author: Alexey Kuznetsov <ak...@...>
Date:   2018-10-18T09:58:46Z

    Merge branch 'master' of https://git-wip-us.apache.org/repos/asf/ignite into ignite-9845

----


> Web Console: Add support of two way ssl authentication in Web Console agent
> ---------------------------------------------------------------------------
>
>                 Key: IGNITE-9845
>                 URL: https://issues.apache.org/jira/browse/IGNITE-9845
>             Project: Ignite
>          Issue Type: Improvement
>          Components: wizards
>    Affects Versions: 2.6
>            Reporter: Andrey Novikov
>            Assignee: Alexey Kuznetsov
>            Priority: Major
>             Fix For: 2.8
>
>
> RestExecutor should not be shared between different users requests in case of two way ssl authentication:
>  * For each token with ssl we need create separated RestExecutor and set up socketFactory and trustManager.
>  * RestExecutor should be removed if token expired.
> Add program arguments for passing client certificate, client password, trust store, trust store password for metrics collection task in agent.
>  
> Example on okhttp: https://github.com/square/okhttp/blob/cd872fd83824512c128dcd80c04d445c8a2fc8eb/okhttp-tests/src/test/java/okhttp3/internal/tls/ClientAuthTest.java



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)