Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-7296

Add support to enable revocation for TLS via configuration

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 3.1.11, 3.2.0
    • Transports
    • None
    • Unknown

    Description

      This task is to add support to enable revocation for TLS via configuration. Currently it's not possible to support OCSP for example when spring-configuring TLS on the client or service side (Jetty).

      A boolean new attribute will be introduced called "enableRevocation" (defaulting to false) for the tlsClientParameters/tlsServerParameters. When enabled OCSP is supported if the Java security property "ocsp.enable" is also set to true.

      Attachments

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            coheigea Colm O hEigeartaigh
            coheigea Colm O hEigeartaigh
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment