Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-5868

HttpClient should be configured to use ALLOW_ALL_HOSTNAME hostname verifier to simplify SSL setup

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 4.7
    • 4.9, 6.0
    • None
    • None

    Description

      The default HttpClient hostname verifier is the BROWSER_COMPATIBLE_HOSTNAME_VERIFIER which verifies the hostname that is being connected to matches the hostname presented within the certificate. This is meant to protect clients that are making external requests out across the internet, but requests within the the SOLR cluster should be trusted and can be relaxed to simplify the SSL/certificate setup process.

      Attachments

        1. SOLR-5868.patch
          7 kB
          Steve Davids
        2. SOLR-5868.patch
          2 kB
          Steve Davids

        Issue Links

          is related to

          New Feature - A new feature of the product, which has yet to be developed. SOLR-4407 SSL Certificate based authentication for SolrCloud

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              markrmiller@gmail.com Mark Miller
              sdavids Steve Davids
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: