[
https://issues.apache.org/jira/browse/CAMEL-9638?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15342820#comment-15342820
]
Arno Noordover edited comment on CAMEL-9638 at 6/21/16 11:11 PM:
-----------------------------------------------------------------
Please comment on the changes:
I'm in the process of adding xml-elements for Spring:
{code}
<xs:complexType name="sslContextClientParametersFactoryBean">
<xs:complexContent>
<xs:extension base="tns:abstractJsseUtilFactoryBean">
<xs:all>
<xs:element minOccurs="0" name="cipherSuites"
type="tns:cipherSuitesParameters"/>
<xs:element minOccurs="0" name="cipherSuitesFilter"
type="tns:filterParameters"/>
<xs:element minOccurs="0" name="secureSocketProtocols"
type="tns:secureSocketProtocolsParameters"/>
<xs:element minOccurs="0" name="secureSocketProtocolsFilter"
type="tns:filterParameters"/>
<xs:element minOccurs="0" name="SNIHostNamesDefinition"
type="tns:SNIHostNames"/>
</xs:all>
<xs:attribute name="sessionTimeout" type="xs:string"/>
</xs:extension>
</xs:complexContent>
</xs:complexType>
...
<xs:complexType name="SNIHostNames">
<xs:sequence>
<xs:element maxOccurs="unbounded" minOccurs="0" name="SNIHostName"
nillable="true" type="xs:string"/>
</xs:sequence>
</xs:complexType>
{code}
I suppose the next step would be to change
getSSLSocketFactorySSLSocketConfigurers?
Advice is needed on:
* should I add the SNIHostNames only to the client-side?
* should I check in the above method which implementation I have and cast
accordingly or should I add a method to the BaseSSLContextParameters-class and
let the Client-impl override this?
Looking at the other methods I suppose I should implement the method for
getting the SNIHostNames in BaseSSLContextParameters and override it in the
Client-impl
* testing this functionality
If I understand correctly SNIHostNames is a way to ask for a certain
certificate at the
serverside.
was (Author: anoordover):
Please comment on the changes:
I'm in the process of adding xml-elements for Spring:
{code}
<xs:complexType name="sslContextClientParametersFactoryBean">
<xs:complexContent>
<xs:extension base="tns:abstractJsseUtilFactoryBean">
<xs:all>
<xs:element minOccurs="0" name="cipherSuites"
type="tns:cipherSuitesParameters"/>
<xs:element minOccurs="0" name="cipherSuitesFilter"
type="tns:filterParameters"/>
<xs:element minOccurs="0" name="secureSocketProtocols"
type="tns:secureSocketProtocolsParameters"/>
<xs:element minOccurs="0" name="secureSocketProtocolsFilter"
type="tns:filterParameters"/>
<xs:element minOccurs="0" name="SNIHostNamesDefinition"
type="tns:SNIHostNames"/>
</xs:all>
<xs:attribute name="sessionTimeout" type="xs:string"/>
</xs:extension>
</xs:complexContent>
</xs:complexType>
...
<xs:complexType name="SNIHostNames">
<xs:sequence>
<xs:element maxOccurs="unbounded" minOccurs="0" name="SNIHostName"
nillable="true" type="xs:string"/>
</xs:sequence>
</xs:complexType>
{code}
I suppose the next step would be to change
getSSLSocketFactorySSLSocketConfigurers?
Advice is needed on:
* should I add the SNIHostNames only to the client-side?
* should I check in the above method which implementation I have and cast
accordingly or should I add a method to the BaseSSLContextParameters-class and
let the Client-impl override this?
Looking at the other methods I suppose I should implement the method for
getting the SNIHostNames in BaseSSLContextParameters and override it in the
Client-impl
> JSSE Security - Add support for new Java 8 stuff like SNIHostName
> -----------------------------------------------------------------
>
> Key: CAMEL-9638
> URL: https://issues.apache.org/jira/browse/CAMEL-9638
> Project: Camel
> Issue Type: New Feature
> Components: camel-core
> Reporter: Claus Ibsen
> Fix For: 2.18.0
>
>
> For the jsse security
> http://camel.apache.org/camel-configuration-utilities.html
> in the camel-core we should add support for the new java 8 features.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
