[
https://issues.apache.org/jira/browse/TS-5022?focusedWorklogId=34812&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-34812
]
ASF GitHub Bot logged work on TS-5022:
--------------------------------------
Author: ASF GitHub Bot
Created on: 05/Jan/17 18:38
Start Date: 05/Jan/17 18:38
Worklog Time Spent: 10m
Work Description: Github user shinrich commented on a diff in the pull
request:
https://github.com/apache/trafficserver/pull/1226#discussion_r94824973
--- Diff: iocore/net/SSLNetProcessor.cc ---
@@ -76,6 +77,7 @@ SSLNetProcessor::start(int, size_t stacksize)
SSLError("Can't initialize the SSL client, HTTPS in remap rules will
not function");
}
+ params->InsertCTX(params->clientCertPath, client_ctx);
--- End diff --
And maybe the InsertCTX should be moved to the logic that initializes/sets
up the SSLConfig?
Issue Time Tracking
-------------------
Worklog Id: (was: 34812)
Time Spent: 3.5h (was: 3h 20m)
> Multiple Client Certificate to Origin
> -------------------------------------
>
> Key: TS-5022
> URL: https://issues.apache.org/jira/browse/TS-5022
> Project: Traffic Server
> Issue Type: Improvement
> Components: Security, SSL, TLS
> Reporter: Scott Beardsley
> Assignee: Syeda Persia Aziz
> Labels: yahoo
> Fix For: 7.1.0
>
> Time Spent: 3.5h
> Remaining Estimate: 0h
>
> Yahoo has a use case where the origin is doing mutual TLS authentication
> which requires ATS to send a client certificate. This works fine (for now)
> because ATS supports configuring *one* client cert but this feature should
> really allow multiple client certificates to be configured which would depend
> upon the origin being contacted.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
