You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@directory.apache.org by "Achim Willems (JIRA)" <ji...@apache.org> on 2013/06/14 10:38:19 UTC

[jira] [Created] (DIRSERVER-1857) Allow registration of an LdapsInitializer at the LdapServer

Achim Willems created DIRSERVER-1857:
----------------------------------------

             Summary: Allow registration of an LdapsInitializer at the LdapServer
                 Key: DIRSERVER-1857
                 URL: https://issues.apache.org/jira/browse/DIRSERVER-1857
             Project: Directory ApacheDS
          Issue Type: Improvement
    Affects Versions: 2.0.0-M12
            Reporter: Achim Willems


Due to a BSI directive we need mutual authentication for SSL/TLS connections. BSI (Bundesamt für Sicherheit in der Informationstechnik) is a german governmental organization. This means, that we cannot ignore this directive.

The current implementation of org.apache.directory.server.ldap.LdapServer uses the static method org.apache.directory.server.ldap.handlers.ssl.LdapsInitializer.init to initialize the SSL communication.

It would be helpful to have an LdapsInitializer interface with a default implementation (i.e. the current implementation is the default) and the possibility to register this interface at the LdapServer.

We then could implement our own version of the initializer to establish the necessary behaviour.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira