[
https://issues.apache.org/jira/browse/QPID-8367?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17016980#comment-17016980
]
ASF GitHub Bot commented on QPID-8367:
--------------------------------------
vavrtom commented on pull request #44: QPID-8367 [Broker-J] Trusted CA
revocation list
URL: https://github.com/apache/qpid-broker-j/pull/44
* added revocation functionality
* custom CRL file can be added to truststore
* if custom CRL is defined in truststore then custom CRL file will be used
instead of CRL URL in certificate's CRLDistributionPoints
* reworked test certificates generation, it uses openssl instead of certutil
* test certificates are generated every build
* test certificates are in one place
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
> [Broker-J] Trusted CA revocation list
> -------------------------------------
>
> Key: QPID-8367
> URL: https://issues.apache.org/jira/browse/QPID-8367
> Project: Qpid
> Issue Type: Improvement
> Components: Broker-J
> Reporter: Tomas Vavricka
> Priority: Major
> Fix For: qpid-java-broker-8.0.0
>
>
> Qpid Broker-J supports custom CA. When in place clients then can connect with
> certificate signed by custom CA.
> However there is no way to reject compromised certificates. Implementation of
> revocation list for custom CA can solve this issue.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
