rabbah commented on issue #2517: Support client certificate verify on server side URL: https://github.com/apache/incubator-openwhisk/pull/2517#issuecomment-323736410 I had a long chat with @ningyougang on slack about the changes in this PR and side effects to other repositories. It will in fact need changes for the catalog installation and providers otherwise this feature can't be turned on. But we also found some inconsistencies. 1. A client certificate must be provided with CN equal to subject 2. Every subject must have their own cert So the installation of openwhisk supports two subjects: whisk.system and guest. It is not clear how Travis passed because the guest account is inoperable without a valid client certificate. Similarly some tests which create new subjects will not work without also addressing the certificate issue as well. As noted this also affects the other repositories and their CI for the change to be consistent throughout a deployment. We would further need changes to the documentation which describes "wskadmin user" etc. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
With regards, Apache Git Services
