> I got the Object ID and version straight out of the Certificate using
> Keystore Explorer. I'm not sure why there is a difference.
Keystore Explorer uses Bouncy Castle (https://www.bouncycastle.org/) as
provider for JCE.
If your JRE/JDK does not provide some algorithm you could use Bouncy
Hello,
it seems you have changed the default Java trust store, so you also need to
provide its password.
You should provide more info about your requirements:
- server authentication only or client authentication too (mTLS in Oracle
documentation)?
- which version of ucp/ojdbc are you using
If you have a fronting reverse proxy/load balancer (HAProxy, NGINX, Apache) you
can use them to set HSTS and let Tomcat set the other security headers.
If your application is running in a container (Kubernetes, Openshift, OKD),
they all have the option to add HSTS in Ingress/Route. Again, the
,
On 21.06.2021 18:31, Roberto Benedetti wrote:
> Hello,
> in our product we subclassed JNDIRealm to return a custom Principal with
> attributes retrieved from Active Directory (bug 65391 is going to add support
> for that).
> We overrode authenticate(DirContext, String, String) to retrieve th
Hello,
in our product we subclassed JNDIRealm to return a custom Principal with
attributes retrieved from Active Directory (bug 65391 is going to add support
for that).
We overrode authenticate(DirContext, String, String) to retrieve the attributes
and return the custom Principal.
In Tomcat
Hello,
I'm developing a ServerAuthModule implementation to use a 3rd party identity
provider with our web applications. Tomcat version is 9.0.35.
The implementation depends on some libraries already packaged with the web
applications.
To avoid conflicts I tried to configure server.loader in
hi everyone,
I'm having problems trying to combine Oracle and Tomcat: if I define
a DB connection to a MySQL or Postgres resource, everything works fine
and DB failures are properly detected.
conversely, if I define an Oracle DataSource, apparently RDBMS or
network problems are not detected
