Directory Client API
  1. Directory Client API
  2. DIRAPI-51

Add cipher suite support to LdapConnectionConfig

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: 1.0.0-M5
    • Fix Version/s: 1.0.0-M6
    • Labels:
      None

      Description

      The current implementation of LdapConnectionConfig exposes properties for KeyManager[] and TrustManager[], but not supported cipher suites. Some clients like to control ciphers on a connection-by-connection basis, restricting to only certain strong ciphers. See http://download.oracle.com/javase/6/docs/api/javax/net/ssl/SSLSocketFactory.html

      It may be more expedient to remove the KeyManager and TrustManager properties and expose a single property for an SSLSocketFactory.

        Activity

        Daniel Fisher created issue -
        Pierre-Arnaud Marcelot made changes -
        Field Original Value New Value
        Project Directory Shared [ 12310770 ] Directory Client API [ 12310962 ]
        Key DIRSHARED-133 DIRAPI-51
        Issue Type Improvement [ 4 ] Bug [ 1 ]
        Affects Version/s 1.0.0-M5 [ 12316851 ]
        Affects Version/s 1.0.0-M5 [ 12316454 ]
        Hide
        Pierre-Arnaud Marcelot added a comment -

        Fixed at revision 1143489.
        http://svn.apache.org/viewvc?rev=1143489&view=rev

        I added a specific field to the LdapConnectionConfig class.
        Our use of Apache Mina's SSL Filter does not allow us to provide a property for SSLSocketFactory.

        Show
        Pierre-Arnaud Marcelot added a comment - Fixed at revision 1143489. http://svn.apache.org/viewvc?rev=1143489&view=rev I added a specific field to the LdapConnectionConfig class. Our use of Apache Mina's SSL Filter does not allow us to provide a property for SSLSocketFactory.
        Pierre-Arnaud Marcelot made changes -
        Status Open [ 1 ] Resolved [ 5 ]
        Assignee Pierre-Arnaud Marcelot [ pamarcelot ]
        Fix Version/s 1.0.0-M6 [ 12316852 ]
        Resolution Fixed [ 1 ]
        Emmanuel Lecharny made changes -
        Status Resolved [ 5 ] Closed [ 6 ]
        Transition Time In Source Status Execution Times Last Executer Last Execution Date
        Open Open Resolved Resolved
        5d 1h 32m 1 Pierre-Arnaud Marcelot 06/Jul/11 17:39
        Resolved Resolved Closed Closed
        197d 15h 46m 1 Emmanuel Lecharny 20/Jan/12 08:25

          People

          • Assignee:
            Pierre-Arnaud Marcelot
            Reporter:
            Daniel Fisher
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development