[
https://issues.apache.org/jira/browse/KNOX-1550?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16684201#comment-16684201
]
Kevin Risden commented on KNOX-1550:
------------------------------------
ClientAuth is the name of the ExtendedKeyUsage attributed for the TLS/SSL
certificate when doing client authentication. From
https://docs.oracle.com/javase/8/docs/technotes/tools/windows/keytool.html
{noformat}
EKU or ExtendedKeyUsage
Values: usage(,usage)*, where usage can be one of anyExtendedKeyUsage,
serverAuth, clientAuth, codeSigning, emailProtection, timeStamping,
OCSPSigning, or any OID string. The usage argument can be abbreviated with the
first few letters or in camel-case style, as long as no ambiguity is found. The
usage values are case-sensitive.{noformat}
We can use a different name not sure what would be better :)
> TLS/SSL clientAuth provider
> ---------------------------
>
> Key: KNOX-1550
> URL: https://issues.apache.org/jira/browse/KNOX-1550
> Project: Apache Knox
> Issue Type: New Feature
> Reporter: Kevin Risden
> Assignee: Kevin Risden
> Priority: Major
> Fix For: 1.3.0
>
> Attachments: KNOX-1550.patch, KNOX-1550.patch
>
>
> The ability to identify a user based on the CN of a clientAuth certificate
> could be useful.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
