Ferenc Gerlits created MINIFICPP-1401:
-----------------------------------------
Summary: MiNiFi should be able to get certs from Win truststore
Key: MINIFICPP-1401
URL: https://issues.apache.org/jira/browse/MINIFICPP-1401
Project: Apache NiFi MiNiFi C++
Issue Type: Improvement
Reporter: Ferenc Gerlits
Assignee: Ferenc Gerlits
In case MiNiFi C++ could get cert from truststore of the OS, users wouldn't
need to export it manually. Things would just work after installation.
Hint for implementation details:
[https://stackoverflow.com/questions/9507184/can-openssl-on-windows-use-the-system-certificate-store]
The following requirements have been shared by the customer:
* it should be possible to define the CN/DN of the cert to use from the Cert
Store
* it should be possible to define the Key Usage of the cert to use from the
Cert Store
This is because the Cert Store might contain multiple certs and possibly
multiple certs with the same CN/DN. Looking at CN/DN + KeyUsage is required,
the first one matching both filters is the one to use. If no matching cert is
found, the service should not start.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
