Uploaded image for project: 'AeroGear'
  1. AeroGear
  2. AEROGEAR-2224

Document to explain what is it and how it works

    XMLWordPrintable

Details

    • Task
    • Resolution: Done
    • Major
    • None
    • None
    • None

    Description

      What
      Document how the cert pinning implementation works for internal services - how the cert pins are generated based off the hostnames of the servers to where they are consumed by the OkHttp code. We also need to point out that certificate pinning can cause applications to be bricked if done incorrectly, config changed or the services CA changes in production.

      Why
      To make it easy for an end developer know what way pinning is implemented for internal services compared to external services. To warn end developers/operations of the dangers/maintenance of rolling out certificate pinning, and that this is enabled by default for internal services.
      Trello link

      Attachments

        Activity

          People

            akeating-1 Aiden Keating (Inactive)
            lfitzger@redhat.com Laura Fitzgerald (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: