Hi,

It seems right at first sight.

Do you plan to contribute it? Then I guess engine.setNeedClientAuth(true); should be made configurable depending on the provided parameters.

Don't hesitate to open a pull request so that we look at it and integrate it in the main code.

Regards,

Raphaël.


Le 04/02/2020 à 17:21, Regan, Aaron a écrit :
Hi,

I would like to add client side authentication to Apache James. Some guidance 
on how to implement this would be appreciated.

So far I have Added the required variables to 
james-project/server/protocols/protocols-library/src/main/java/org/apache/james/protocols/lib/netty/AbstractConfigurableAsyncServer.java
 class. (Truststore location, secret) I have added them to the config and 
SSLContext in the same way the keystore is added. They are then entered in the 
smtp and pop3 xml config files.

I have Also added engine.setNeedClientAuth(true); to the SSLEngine in the 
getPipeline method  located at 
james-project/protocols/netty/src/main/java/org/apache/james/protocols/netty/AbstractSSLAwareChannelPipelineFactory.java.

I built the james-cassandra-guice docker image and it appears to be working as 
expected. Could you see any potential issues with my implementation ?

Thanks & Regards,
Aaron


---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org
For additional commands, e-mail: server-dev-h...@james.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org
For additional commands, e-mail: server-dev-h...@james.apache.org

Reply via email to