[jira] [Commented] (GEODE-6833) p2p SSL connections always require clients to authenticate

ASF subversion and git services (JIRA) Tue, 11 Jun 2019 07:58:28 -0700


    [ 
https://issues.apache.org/jira/browse/GEODE-6833?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16861115#comment-16861115
 ]


ASF subversion and git services commented on GEODE-6833:
--------------------------------------------------------

Commit 85feb52d986745dd20b8b244b563ab6b4fc66a8a in geode's branch 
refs/heads/feature/GEODE-6833 from Ernest Burghardt
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=85feb52 ]

GEODE-6833: Adding new test and test cert files.


> p2p SSL connections always require clients to authenticate
> ----------------------------------------------------------
>
>                 Key: GEODE-6833
>                 URL: https://issues.apache.org/jira/browse/GEODE-6833
>             Project: Geode
>          Issue Type: Bug
>          Components: core
>            Reporter: Bruce Schuchardt
>            Priority: Major
>
> The SSL over NIO code is configuring the SSL engine to always require a 
> connection to do two-way authentication.  Connection.createIoFilter() is 
> currently doing this:
> {code:java}
> if (!clientSocket) {
>   engine.setWantClientAuth(true);
>   engine.setNeedClientAuth(true);
> }
> {code}
> but needs to do this instead:
> {code:java}
> if (!clientSocket) {
>   
> engine.setNeedClientAuth(SSLConfigurationFactory.getSSLConfigForComponent(getConduit().config,
>       SecurableCommunicationChannel.CLUSTER).isRequireAuth());
> }
> {code}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (GEODE-6833) p2p SSL connections always require clients to authenticate

Reply via email to