You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2018/06/22 10:22:00 UTC
[jira] [Updated] (CXF-7763)
SSLUtils.configureKeyManagersWithCertAlias modifies keyManagers array
[ https://issues.apache.org/jira/browse/CXF-7763?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Colm O hEigeartaigh updated CXF-7763:
-------------------------------------
Fix Version/s: 3.1.17
3.2.6
> SSLUtils.configureKeyManagersWithCertAlias modifies keyManagers array
> ---------------------------------------------------------------------
>
> Key: CXF-7763
> URL: https://issues.apache.org/jira/browse/CXF-7763
> Project: CXF
> Issue Type: Bug
> Components: Core
> Affects Versions: 3.2.4
> Environment: Windows 2012 R2
> Tomcat 8.5.31
> Oracle JDK 1.8.0_171
> Reporter: M.H. Avegaart
> Assignee: Colm O hEigeartaigh
> Priority: Minor
> Fix For: 3.2.6, 3.1.17
>
>
> In needed to connect to a web service as several different users and the web service uses a client certificate for authentication. I created separate proxies with different TLSClientParameters for every user, passing in the same trustManagers and keyManagers and a different certAlias.
> This doesn't work, because SSLUtils.configureKeyManagersWithCertAlias modifies the keyManagers array, so it can only be used for a single proxy.
> IMHO SSLUtils.getSSLContext should make a COPY of parameters.getKeyManagers() before passing it to configureKeyManagersWithCertAlias.
> If you don't plan to fix this, then at least mention this in the documentation!
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)