You are viewing a plain text version of this content. The canonical link for it is here.
Posted to stonehenge-dev@incubator.apache.org by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org> on 2009/10/19 15:57:59 UTC
[jira] Created: (STONEHENGE-103) Add Username over TLS endpoint
Add Username over TLS endpoint
------------------------------
Key: STONEHENGE-103
URL: https://issues.apache.org/jira/browse/STONEHENGE-103
Project: Stonehenge
Issue Type: New Feature
Components: DOTNET_OPS
Affects Versions: M2
Environment: DOTNET
Reporter: Pablo Mariano Cibraro
Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Pablo Mariano Cibraro closed STONEHENGE-103.
--------------------------------------------
Resolution: Fixed
Thanks Ben!. This is working fine, so I will close it.
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: DotNet_OrderProcessor_UsernameTLS.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Pablo Mariano Cibraro updated STONEHENGE-103:
---------------------------------------------
Attachment: username_over_tsl.patch
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: username_over_tsl.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Pablo Mariano Cibraro updated STONEHENGE-103:
---------------------------------------------
Attachment: (was: username_over_tsl.patch)
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: DotNet_OrderProcessor_UsernameTLS.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12767371#action_12767371 ]
Pablo Mariano Cibraro commented on STONEHENGE-103:
--------------------------------------------------
Additional instructions to configure https in the OPS host:
1. Open port 8005 on your firewall (This port is used by the Order Processor service secure endpoint)
1. Control Panel->Windows Firewall->"Allow a program through the fire wall"
2. You will get to a dialog, choose exceptions Tab
3. Click Add Port
4. Name it "8005" and put 8005 in the port Number field
2. Install the OPSHost.pfx certificate in the personal store so it can be used by the Order Processor service host
1. Install three certificates: setup_utilities\Util\ stocktraderpfxfile.pfx, BSLClient.pfx, OPSHost.pfx
1. Run mmc
2. In mmc go to File -> Add/Remove Snap-in...
3. Add Certificates and select Computer Account and choose Next then choose Finish.
4. Push Ok to return to mmc
5. Now, open the Certificates Folder, and then open the "Personal" folder.
7. Right click on the "Personal" folder, and choose All Tasks, Import.
8. This will bring up the Import wizard.
9. Choose Next, then click Browse.
10. Make sure to change the displayed file types to "Personal Information Exchange (*.pfx; *p12) file types.
11. Browse to and select the setup_utilities\util\OPSHost.pfx file.
12. Click Next.
13. You will be prompted for a password. The password is 'yyy'.
14. Click Next, Next, and Finish to import the certificate to the \Local Computer\Personal certificate store.
3. Associate the OPSHost.pfx certificate in the personal store with the port 8005 to enable https on the Order Processor host
1. On Vista+ you can use the netsh tool to do the mapping (admin privs required):
netsh http add sslcert ipport=0.0.0.0:8005 certhash=fa0f58bb605fa43369e279e8
f9088872fde09943 appid={C0C21DB2-6E94-4538-8A5E-C5AEBE6E3F8B}
On pre-Vista you can use httpcfg.exe to accomplish the same thing:
httpcfg set ssl /i 0.0.0.0:8005 /h fa0f58bb605fa43369e279e8
f9088872fde09943 /g "{C0C21DB2-6E94-4538-8A5E-C5AEBE6E3F8B}"
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: username_over_tsl.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Pablo Mariano Cibraro (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Pablo Mariano Cibraro updated STONEHENGE-103:
---------------------------------------------
Attachment: DotNet_OrderProcessor_UsernameTLS.patch
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: DotNet_OrderProcessor_UsernameTLS.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (STONEHENGE-103) Add Username over TLS endpoint
Posted by "Ben Dewey (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/STONEHENGE-103?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12841019#action_12841019 ]
Ben Dewey commented on STONEHENGE-103:
--------------------------------------
Pablo,
I've committed your patch. I built and tested and everything worked for me. Please test on your end and resolve if it works.
> Add Username over TLS endpoint
> ------------------------------
>
> Key: STONEHENGE-103
> URL: https://issues.apache.org/jira/browse/STONEHENGE-103
> Project: Stonehenge
> Issue Type: New Feature
> Components: DOTNET_OPS
> Affects Versions: M2
> Environment: DOTNET
> Reporter: Pablo Mariano Cibraro
> Attachments: DotNet_OrderProcessor_UsernameTLS.patch
>
>
> Add a new endpoint in OPS to support Username over TLS.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.