rawlinp opened a new issue #2255: Traffic Ops API endpoint for generating SSL keys needs validation URL: https://github.com/apache/incubator-trafficcontrol/issues/2255 The `/api/$version/deliveryservices/sslkeys/generate` route currently doesn't validate the request payload very well. If the request payload is missing `"deliveryservice"` or has that key set to `null`, the request is passed through successfully. However, downstream components such as Traffic Router that make use of the `/cdns/name/*/sslkeys.json` endpoint expect the `"deliveryservice"` key to exist and have a value (the xml_id). Traffic Router can get into a state on startup where it is unable to serve requests until the offending record has been removed from Riak (that in itself is a bug which needs to be fixed - #2254). Example bad request: ``` { "key": "badkey", "hostname": "cdn.anotherbadhostname.foo.net", "country": "US", "state": "CO", "city": "Denver", "organization": "blah", "businessUnit": "blah", "cdn": "my-cdn" } ```
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
