Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-5753

expose client auth parameters (CRL checking) within the org.ops4j.pax.web.cfg configuration/pid

    XMLWordPrintable

Details

    • Feature Request
    • Resolution: Done
    • Minor
    • fuse-7.0
    • jboss-fuse-6.2.1
    • CXF, Karaf
    • % %
    • 0
    • 0% 0%
    • 7.0 Sprint 1

    Description

      Currently, pax.web configuration must be overridden in jetty.xml to enable certificate revocation checking. The jetty.xml resource does not make use of the port service, so allowing the pax.web PID to specify the configuration would allow use of both the security restrictions and the port service.

      Enabling client authentication is supported in the pax.web configuration; however, enabling client authentication without being able to configure revocation checking limits the value of the feature as exposed in the service.

      Attachments

        Issue Links

          is related to

          Enhancement - An enhancement to or refactoring of existing functionality that is not configurable by an end user (typically a change made by an internal team that affects users) ENTESB-5754 Please complete PCI compliance testing

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Activity

            People

              yfang@redhat.com Freeman(Yue) Fang
              rhn-support-dhawkins Duane Hawkins
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: