Details
-
New Feature
-
Status: Closed
-
Major
-
Resolution: Fixed
-
0.11.1
-
None
-
None
Description
In reference to QPIDJMS-183, please add back the implementation of setSslContext().
The originating ticket which implemented this feature is: QPID-6400. The main reason was to support the use of HSM (https://en.wikipedia.org/wiki/Hardware_security_module) to hold the keystores. This was implemented for 0.32.
In subsequent releases, this implementation was removed.
Here is an example of how to use HSM to access the keystore: http://www.pixelstech.net/article/1420699130-Different-types-of-keystore-in-Java----PKCS11. Once you have the keystore you you can initialize the SSLcontext and pass that to the connection factory. As mentioned in QPID-6400, other vendors provide this API as well.
If possible, please keep the API calls similar to the one in 0.32 as discussed in QPID-6400.
Thank you!