oscerd opened a new pull request, #21951:
URL: https://github.com/apache/camel/pull/21951
…b: Add SSLContextParameters support and fix hardcoded TLS version
Add SSLContextParameters support and fix hardcoded TLS version
- Replace hardcoded SSLContext.getInstance("TLSv1.2") with
SSLContext.getInstance("TLS") in SslAwareMongoClient to allow the JVM to
negotiate the highest supported TLS version including TLS 1.3 with PQC key
exchange
- Implement SSLContextParametersAware on MongoDbComponent to support global
SSL context parameters
- Add sslContextParameters endpoint option on MongoDbEndpoint for
per-endpoint SSL/TLS configuration via Camel's SSLContextParameters
- When sslContextParameters is set, TLS is automatically enabled on the
MongoDB connection with proper SSLContext configuration
Add TLS integration test with test-infra
- Add MongoDBLocalContainerTLSService to test-infra-mongodb that starts a
standalone mongod with --tlsMode requireTLS using pre-generated self-signed
certificates mounted via classpath resource mapping
- Add MongoDbSslConnectionIT integration test that validates end-to-end TLS
connectivity using Camel's SSLContextParameters with a JKS truststore
containing the test CA certificate
- Include test certificate resources: CA cert (ca.pem), combined server
cert+key (server.pem), and JKS truststore (ca-truststore.jks)
# Description
<!--
- Write a pull request description that is detailed enough to understand
what the pull request does, how, and why.
-->
# Target
- [x] I checked that the commit is targeting the correct branch (Camel 4
uses the `main` branch)
# Tracking
- [x] If this is a large change, bug fix, or code improvement, I checked
there is a [JIRA issue](https://issues.apache.org/jira/browse/CAMEL) filed for
the change (usually before you start working on it).
<!--
# *Note*: trivial changes like, typos, minor documentation fixes and other
small items do not require a JIRA issue. In this case your pull request should
address just this issue, without pulling in other changes.
-->
# Apache Camel coding standards and style
- [x] I checked that each commit in the pull request has a meaningful
subject line and body.
<!--
If you're unsure, you can format the pull request title like `[CAMEL-XXX]
Fixes bug in camel-file component`, where you replace `CAMEL-XXX` with the
appropriate JIRA issue.
-->
- [x] I have run `mvn clean install -DskipTests` locally from root folder
and I have committed all auto-generated changes.
<!--
You can run the aforementioned command in your module so that the build
auto-formats your code. This will also be verified as part of the checks and
your PR may be rejected if if there are uncommited changes after running `mvn
clean install -DskipTests`.
You can learn more about the contribution guidelines at
https://github.com/apache/camel/blob/main/CONTRIBUTING.md
-->
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
