[
https://issues.apache.org/jira/browse/ZOOKEEPER-2094?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14305398#comment-14305398
]
Flavio Junqueira commented on ZOOKEEPER-2094:
---------------------------------------------
A couple of additional things about the patch:
# The server complains that clientPort isn't set when I turn secure cnxns on.
It should spit out a better message, like "secure client port is 2182" or
similar
# With this patch the CLI script we distribute won't connect straight away to
an SSL-enabled server, and it would be nice to be able to enable secure
connections with the zkCli.sh script
# We need to decide where to put the sample jks and cert files, perhaps they
should be under conf? I'm also ok with creating a new folder under the project
root, like auth or data/auth
> SSL feature on Netty
> --------------------
>
> Key: ZOOKEEPER-2094
> URL: https://issues.apache.org/jira/browse/ZOOKEEPER-2094
> Project: ZooKeeper
> Issue Type: Sub-task
> Components: server
> Affects Versions: 3.4.6, 3.5.0
> Reporter: Ian Dimayuga
> Assignee: Ian Dimayuga
> Fix For: 3.5.1, 3.6.0
>
> Attachments: ZOOKEEPER-2094.patch, ZOOKEEPER-2094.patch,
> ZOOKEEPER-2094.patch, ZOOKEEPER-2094.patch, ZOOKEEPER-2094.patch,
> ZOOKEEPER-2094.patch, test.cert, testKeyStore.jks, testTrustStore.jks,
> testUntrustedKeyStore.jks
>
>
> Add SSL handler to Netty pipeline, and a default X509AuthenticationProvider
> to perform authentication.
> Review board: https://reviews.apache.org/r/30576/diff/#
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
