Uploaded image for project: 'Directory ApacheDS'
  1. Directory ApacheDS
  2. DIRSERVER-2328

CreateAuthenticator annotation trust manager improvements

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.0.0.AM27
    • None
    • None

    Description

      There are two problems with the CreateAuthenticator annotation trust manager configuration:

      1. delegateSslTrustManagerFQCN + delegateTlsTrustManagerFQCN default to NoVerificationTrustManager, which is not secure.
      2. These values are not plugged through to the DelegatingAuthenticator, which hard-codes NoVerificationTrustManager.

      Attachments

        Issue Links

          relates to

          Task - A task that needs to be done. DIRSERVER-2329 Replication trust manager improvements

          • Major - Major loss of function.
          • Resolved

          Task - A task that needs to be done. DIRSERVER-2330 StartTlsHandler and LdapsInitializer use NoVerificationTrustManager

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #42

          Activity

            People

              coheigea Colm O hEigeartaigh
              coheigea Colm O hEigeartaigh
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: