[GitHub] [solr] risdenk commented on pull request #1367: SOLR-16669: Fix default checkPeerName in Http2SolrClient

via GitHub Wed, 22 Feb 2023 06:38:34 -0800


risdenk commented on PR #1367:
URL: https://github.com/apache/solr/pull/1367#issuecomment-1440146823


   Oooo thanks for digging @HoustonPutman agree that 
   
   ```
   sslContextFactory.setEndpointIdentificationAlgorithm(
           System.getProperty("solr.jetty.ssl.verifyClientHostName"));
   ```
   
   looks to be the issue. We should default to `HTTPS` if TLS is not enabled. 
It looks like we disable client hostname verification by default and the 
setting `solr.jetty.ssl.verifyClientHostName` only applies if TLS is enabled.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[GitHub] [solr] risdenk commented on pull request #1367: SOLR-16669: Fix default checkPeerName in Http2SolrClient

Reply via email to