Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-7449

solr/server/etc/jetty-https-ssl.xml hard codes the key store file and password rather than pulling them from the sysprops defined in solr/bin/solr.in.{sh,bat}

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 5.1
    • Fix Version/s: 5.2, 6.0
    • Component/s: None
    • Labels:
      None

      Description

      Shalin Shekhar Mangar pointed out this issue out to me.

      The hard-coded values in jetty-https-ssl.xml are the same as the ones in the tutorial, so people creating the keystore as described in the tutorial are able to run Solr in SSL mode.

      Also jetty-https-ssl.xml doesn't configure a trust store (or a password for it), so there's no way currently to have a different trust store from the key store.

        Attachments

          Activity

            People

            • Assignee:
              shalinmangar Shalin Shekhar Mangar
              Reporter:
              steve_rowe Steve Rowe
            • Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: