[QPID-7063] [Java Broker] SimpleLdap Authentication Provider should be able to override enabled cipher suites and TLS protocols from context variables for TLS connections to LDAP servers - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: qpid-java-6.0, qpid-java-6.1
Fix Version/s: qpid-java-6.1
Component/s: Broker-J
Labels:
None

Description

At the moment, required TLS protocols and cipher suites can not be set in SSLConetextFactory created in SampleLdap Authentication Provider for TLS connections. As result, Qpid users cannot override TLS protocols and cipher suites to use in TLS connections to LDAP servers which might cause a selection of weaker cipher suites during TLS negotiation or even can prevent establishing of TLS connections in JVM implementations not supporting downgrade of TLS protocol

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

0001-QPID-7063-Java-Broker-Allow-TLS-protocols-cipher-sui.patch
23/Mar/16 07:23
24 kB
Keith Wall

Activity

People

Assignee:: Alex Rudyy

Reporter:: Alex Rudyy

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 12/Feb/16 12:35

Updated:: 02/Oct/19 19:21

Resolved:: 25/Mar/16 18:06