[CXF-7296] Add support to enable revocation for TLS via configuration - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.1.11, 3.2.0
Component/s: Transports
Labels:
None

Estimated Complexity:
Unknown

Description

This task is to add support to enable revocation for TLS via configuration. Currently it's not possible to support OCSP for example when spring-configuring TLS on the client or service side (Jetty).

A boolean new attribute will be introduced called "enableRevocation" (defaulting to false) for the tlsClientParameters/tlsServerParameters. When enabled OCSP is supported if the Java security property "ocsp.enable" is also set to true.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Colm O hEigeartaigh

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 23/Mar/17 14:22

Updated:: 10/Apr/17 19:04

Resolved:: 23/Mar/17 15:56