drill-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Venki Korukanti (JIRA)" <j...@apache.org>
Subject [jira] [Created] (DRILL-3725) Add HTTPS support for Drill web interface
Date Mon, 31 Aug 2015 17:32:46 GMT
Venki Korukanti created DRILL-3725:

             Summary: Add HTTPS support for Drill web interface
                 Key: DRILL-3725
                 URL: https://issues.apache.org/jira/browse/DRILL-3725
             Project: Apache Drill
          Issue Type: New Feature
          Components: Client - HTTP
            Reporter: Venki Korukanti
            Assignee: Venki Korukanti
             Fix For: 1.2.0

Currently web UI or REST API calls don't support transport layer security (TLS). This jira
is to add support for TLS. We need this feature before adding the user authentication to Drill's
web interface.

Proposal is:
* Always default to HTTPS
* Cluster admin can set the following SSL configuration to specify their own keystore and/or
** java.net.ssl.keyStore
** java.net.ssl.keyStorePassword
** java.net.ssl.trustStore
** java.net.ssl.trustStorePassword
* If cluster admin didn't specified the above SSL config, generate a self signed certificate
programmatically and use it by using libraries such as [Bouncy Castle|http://www.bouncycastle.org/].
* Make use of the Jetty APIs to add a HTTPS connection. Example is [here|http://git.eclipse.org/c/jetty/org.eclipse.jetty.project.git/tree/examples/embedded/src/main/java/org/eclipse/jetty/embedded/LikeJettyXml.java].

Let me know if you have any comments.

This message was sent by Atlassian JIRA

View raw message