ignite-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Nikolay Tikhonov (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (IGNITE-2337) SSL & TLS use distinguished name of the certificate (DN)
Date Thu, 28 Jan 2016 11:15:39 GMT

    [ https://issues.apache.org/jira/browse/IGNITE-2337?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15121241#comment-15121241
] 

Nikolay Tikhonov commented on IGNITE-2337:
------------------------------------------

I'm not sure that this parameter should be added in SslContextFactory. For checking certificates
can be used trust manager from file store (see trustStoreFilePath and trustStorePassword properties)
or implement your own. For example implement X509TrustManager has access to issuer DN. 

> SSL & TLS use distinguished name of the certificate (DN)
> --------------------------------------------------------
>
>                 Key: IGNITE-2337
>                 URL: https://issues.apache.org/jira/browse/IGNITE-2337
>             Project: Ignite
>          Issue Type: New Feature
>          Components: 1.4
>            Reporter: Andrey Kartashov
>              Labels: community, newbie
>             Fix For: 1.6
>
>
> Can you add the use of SSLPEERNAME for SslContextFactory parameter to check distinguished
name of the certificate. It is necessary to use certificates signed by the certification authority.
To get rid of certificate exchange.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message