[CXF-6279] Introduce X509 Certificate Path validation utility code - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.1, 3.0.5
Component/s: JAX-RS Security
Labels:
None

Estimated Complexity:
Unknown

Description

RS security code has two paths were the client certificates are not validated:
OAuth2 AccessTokenService where a client authenticating via 2-way TLS requests a token and JOSE code where the chain is shipped in JOSE headers (the latter has been highlighted by demo from Anders Rundgren).

Attachments

Activity

People

Assignee:: Sergey Beryozkin

Reporter:: Sergey Beryozkin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 05/Mar/15 17:29

Updated:: 14/Oct/16 14:23

Resolved:: 12/Mar/15 17:05