[
https://issues.apache.org/jira/browse/CASSANDRA-14064?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17047092#comment-17047092
]
Benjamin Coverston commented on CASSANDRA-14064:
------------------------------------------------
Before I came looking in the project I actually created a similar patch. Is
this something that the project is still interested in? Removing the dependency
on JKS opens a path to integration with ACME and a bunch of other possibilities.
> Allow using file based certificates instead of keystores
> --------------------------------------------------------
>
> Key: CASSANDRA-14064
> URL: https://issues.apache.org/jira/browse/CASSANDRA-14064
> Project: Cassandra
> Issue Type: New Feature
> Components: Legacy/Streaming and Messaging
> Reporter: Stefan Podkowinski
> Priority: Normal
> Labels: security
> Fix For: 4.x
>
> Attachments: 0001-Add-keystore-less-ssl-handling.patch
>
>
> The requirement of having to use a secure archive (keystore) for your
> certificates and keys is not very common outside the Java ecosystem. Most
> servers will accept individual certificate and key files and will come with
> instructions how to generate those using openssl. This should also be an
> option for Cassandra for users who see no reason in additionally having to
> deal with keystores.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
