You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Karthik Narayanan (JIRA)" <ji...@apache.org> on 2016/11/22 15:55:58 UTC
[jira] [Commented] (NIFI-3081) add property to set ignoring
hostname verification check in ssl context service
[ https://issues.apache.org/jira/browse/NIFI-3081?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15687097#comment-15687097 ]
Karthik Narayanan commented on NIFI-3081:
-----------------------------------------
To get this implemented I was thinking of adding the logic in the SSLContextFactory class in wifi-security-utils. The hope is that adding it here would make it available to any processor that uses the sslcontextservice. The particular use case for this change is with connecting to a jus provider via ssl. The development environment hostname does not match with the certificate and the connection is failing.
The property would be set to true / false ,and should be EL enabled. If the EL value is not set then the property would default to true, thus forcing the user to explicitly set it , knowing the risks.
> add property to set ignoring hostname verification check in ssl context service
> -------------------------------------------------------------------------------
>
> Key: NIFI-3081
> URL: https://issues.apache.org/jira/browse/NIFI-3081
> Project: Apache NiFi
> Issue Type: Improvement
> Reporter: Karthik Narayanan
> Assignee: Karthik Narayanan
>
> In development environments it is pretty normal for users to use self signed certificates, which may not always match the domain name of the service. It would be useful to have a property that disables hostname verification.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)