Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-1643

Default HttpClient should trust gateway certificate

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Duplicate
    • None
    • None
    • None
    • None

    Description

      Currently DefaultHttpClientFactory only trust the gateway certificate when useTwoWaySsl is set to true.

      https://github.com/apache/knox/blob/master/gateway-spi/src/main/java/org/apache/knox/gateway/dispatch/DefaultHttpClientFactory.java#L81

      We should probably trust our own certificate anyway. 

      Attachments

        Issue Links

        duplicates

        Improvement - An improvement or enhancement to an existing feature or task. KNOX-1111 2-way SSL Truststore and Keystore Improvements

        • Major - Major loss of function.
        • Closed
        is related to

        Improvement - An improvement or enhancement to an existing feature or task. KNOX-1812 The Knox Gateway truststore should be configurable

        • Major - Major loss of function.
        • Closed

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            krisden Kevin Risden
            krisden Kevin Risden
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment