Details
-
New Feature
-
Status: Closed
-
Major
-
Resolution: Fixed
-
v1.0-incubating-M1
-
None
-
Security Level: public (Regular issues)
-
None
Description
Geronimo needs some hooks equivalent to what it is using with the Sun and IBM ORB implementations to enable the ORB for secure transport. The specific functions need for Geronimo to implement equivalent function are:
1) Ability to configure the ORB listening thread to use an SSL connection. This includes delegating creating of the SSLSocket to Geronimo so it can use its configured key management services for truststore and keystore.
2) Ability to examine the IOR for a client connection and create the appropriate socket for the connection. Use of the key management services in 1) is also a requirement.
3) In a server request interceptor, have a mechanism that allows the interceptor access to the socket used for the connection so the Geronimo security services can access potential SSLSession information for the request.