Details
-
New Feature
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
Description
Currently web UI or REST API calls don't support transport layer security (TLS). This jira is to add support for TLS. We need this feature before adding the user authentication to Drill's web interface.
Proposal is:
- Always default to HTTPS
- Cluster admin can set the following SSL configuration to specify their own keystore and/or truststore.
- java.net.ssl.keyStore
- java.net.ssl.keyStorePassword
- java.net.ssl.trustStore
- java.net.ssl.trustStorePassword
- If cluster admin didn't specified the above SSL config, generate a self signed certificate programmatically and use it by using libraries such as Bouncy Castle.
- Make use of the Jetty APIs to add a HTTPS connection. Example is here.
Let me know if you have any comments.
Attachments
Issue Links
- is depended upon by
-
DRILL-3201 Drill UI Authentication
-
- Closed
-
- links to
