Uploaded image for project: 'Apache Drill'
  1. Apache Drill
  2. DRILL-3725

Add HTTPS support for Drill web interface

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 1.2.0
    • Client - HTTP
    • None

    Description

      Currently web UI or REST API calls don't support transport layer security (TLS). This jira is to add support for TLS. We need this feature before adding the user authentication to Drill's web interface.

      Proposal is:

      • Always default to HTTPS
      • Cluster admin can set the following SSL configuration to specify their own keystore and/or truststore.
        • java.net.ssl.keyStore
        • java.net.ssl.keyStorePassword
        • java.net.ssl.trustStore
        • java.net.ssl.trustStorePassword
      • If cluster admin didn't specified the above SSL config, generate a self signed certificate programmatically and use it by using libraries such as Bouncy Castle.
      • Make use of the Jetty APIs to add a HTTPS connection. Example is here.

      Let me know if you have any comments.

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            vkorukanti Venki Korukanti
            vkorukanti Venki Korukanti
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment