Uploaded image for project: 'CloverDX'
  1. CloverDX
  2. CLO-13982

Worker SSL tweaks

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • rel-4-9-1
    • None
    • Security Level: Users (General product issues)

    Description

      • use system properties for worker HTTP client
        • ignore worker.ssl.*
      • add Server config property to disable certificate validation (see CLO-13984)
        • in 4.9.1, only the worker will use it
        • in 5.0, it will be used by the Cluster as well
        • name proposal: cluster.ssl.disableCertificateValidation
      • pass both Java passwords and worker passwords encrypted to the worker process
        • worker passwords will be decrypted and passed to the new connector
        • Java passwords will be decrypted and the system properties will be overwritten with the decrypted values
      • hide or update documentation for worker.ssl.trustStore and worker.ssl.trustStorePassword
        • they are only used for two-way authentication

      Attachments

        Issue Links

          Activity

            People

              krivanekm Milan Krivanek
              krivanekm Milan Krivanek
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day
                  1d