You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2017/03/23 14:22:41 UTC

[jira] [Created] (CXF-7296) Add support to enable revocation for TLS via configuration

Colm O hEigeartaigh created CXF-7296:
----------------------------------------

             Summary: Add support to enable revocation for TLS via configuration
                 Key: CXF-7296
                 URL: https://issues.apache.org/jira/browse/CXF-7296
             Project: CXF
          Issue Type: Improvement
          Components: Transports
            Reporter: Colm O hEigeartaigh
            Assignee: Colm O hEigeartaigh
             Fix For: 3.2.0, 3.1.11


This task is to add support to enable revocation for TLS via configuration. Currently it's not possible to support OCSP for example when spring-configuring TLS on the client or service side (Jetty). 

A boolean new attribute will be introduced called "enableRevocation" (defaulting to false) for the tlsClientParameters/tlsServerParameters. When enabled OCSP is supported if the Java security property "ocsp.enable" is also set to true.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)