Uploaded image for project: 'Apache Cassandra'
  1. Apache Cassandra
  2. CASSANDRA-17867

Remove usage of deprecated javax certificate class

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotBulk Copy AttachmentsBulk Move AttachmentsVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    Description

      When initially implemented, we used the older javax.security.cert.X509Certificate when initializing an IAuthenticator with certs - as nobody is yet using this interface, and there is a reasonable way to fix it to use the correct, non-deprecated cert classes, we should switch to the modern java.security.cert.Certificate class.

      The broader reasoning here is that consumers of this interface would have to jump through serialization/deserialization hoops on each authentication check to use the newer X509Certificate implementation, which has data on which we depend for our mTLS implementation, and in this case we can just cast them to the appropriate class.

      See https://docs.oracle.com/javase/9/docs/api/javax/security/cert/X509Certificate.html for further details

      Attachments

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            jmckenzie Josh McKenzie Assign to me
            jmckenzie Josh McKenzie
            Josh McKenzie
            Caleb Rackliffe
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment