Re: Custom SSLContext

I like the initiative, as long as it is backward compatible. Nathan, the patch attached for ZOOKEEPER-2643 is very old (also missing documentation / tests). Would you like to contribute a new PR against our current master branch? Do we consider

Re: Custom SSLContext

Is there no great way of doing this? Seems like it would solve a lot of problems for us: providing the context rather than key/truststore paths and properties will work a lot more cleanly. Cheers! Nathan On Wed, Oct 7, 2020 at 5:22 PM Nathan Gough wrote: > Hi Enrico, > > Yes, the goal is to be

Re: Custom SSLContext

Hi Enrico, Yes, the goal is to be strict about what protocols and ciphers to allow. We have an SSLContext factory we use consistently across NiFi to provide a better security guarantee. On Wed, Oct 7, 2020 at 5:13 PM Enrico Olivelli wrote: > Nathan, > > Il Mer 7 Ott 2020, 23:06 Nathan Gough ha

Re: Custom SSLContext

Nathan, Il Mer 7 Ott 2020, 23:06 Nathan Gough ha scritto: > Hi, > > I develop for Apache NiFi and was working on adding TLS to one of our > clients that use Zookeeper. I was wondering if it's possible to inject a > custom SSLContext similar in concept to this ticket: > > https://issues.apache.or