[
https://issues.apache.org/jira/browse/SYNAPSE-954?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jeewantha Dharmaparakrama updated SYNAPSE-954:
----------------------------------------------
Attachment: cert_validation_new.diff
Please find the cert_validation_new.diff file attatched with some refactoring.
Also please note that the configuration parameter <CacheDelay> is changed to
<CacheDuration>. I think we can add the following configuration for the HTTPS
TransportSender in the default axis2.xml for synapse.
<parameter name="CertificateRevocationVerifier" enable="false">
<CacheSize>50</CacheSize>
<!-- In minutes -->
<CacheDuration>5</CacheDuration>
</parameter>
The user can enable the feature if its required.
> OCSP/CRL Certificate Validation Feature for Synapse.
> ----------------------------------------------------
>
> Key: SYNAPSE-954
> URL: https://issues.apache.org/jira/browse/SYNAPSE-954
> Project: Synapse
> Issue Type: New Feature
> Components: Transports
> Affects Versions: FUTURE
> Environment: Linux
> Reporter: Jeewantha Dharmaparakrama
> Assignee: Hiranya Jayathilaka
> Labels: security
> Fix For: FUTURE
>
> Attachments: certificate_validation.diff,
> certificate_validation_feature.zip, cert_validation_new.diff
>
>
> Please find the implementation of the feature along with unit tests and a
> working sample in the attached "certificate_validation_feature.zip" file.
> This feature can be plugged into both NHTTP and Passthru transports. For more
> information please read the README.
> Thanks,
> Jeewantha
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
