Uploaded image for project: 'Apache Drill'
  1. Apache Drill
  2. DRILL-3725

Add HTTPS support for Drill web interface

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.2.0
    • Component/s: Client - HTTP
    • Labels:
      None

      Description

      Currently web UI or REST API calls don't support transport layer security (TLS). This jira is to add support for TLS. We need this feature before adding the user authentication to Drill's web interface.

      Proposal is:

      • Always default to HTTPS
      • Cluster admin can set the following SSL configuration to specify their own keystore and/or truststore.
        • java.net.ssl.keyStore
        • java.net.ssl.keyStorePassword
        • java.net.ssl.trustStore
        • java.net.ssl.trustStorePassword
      • If cluster admin didn't specified the above SSL config, generate a self signed certificate programmatically and use it by using libraries such as Bouncy Castle.
      • Make use of the Jetty APIs to add a HTTPS connection. Example is here.

      Let me know if you have any comments.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                vkorukanti Venki Korukanti
                Reporter:
                vkorukanti Venki Korukanti
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: