Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
Security Level: Users (General product issues)
-
UNDECIDED
Description
- use system properties for worker HTTP client
- ignore worker.ssl.*
- add Server config property to disable certificate validation (see CLO-13984)
- in 4.9.1, only the worker will use it
- in 5.0, it will be used by the Cluster as well
- name proposal: cluster.ssl.disableCertificateValidation
- pass both Java passwords and worker passwords encrypted to the worker process
- worker passwords will be decrypted and passed to the new connector
- Java passwords will be decrypted and the system properties will be overwritten with the decrypted values
- hide or update documentation for worker.ssl.trustStore and worker.ssl.trustStorePassword
- they are only used for two-way authentication