Details
Description
Currently, pax.web configuration must be overridden in jetty.xml to enable certificate revocation checking. The jetty.xml resource does not make use of the port service, so allowing the pax.web PID to specify the configuration would allow use of both the security restrictions and the port service.
Enabling client authentication is supported in the pax.web configuration; however, enabling client authentication without being able to configure revocation checking limits the value of the feature as exposed in the service.
Attachments
Issue Links
- is related to
-
ENTESB-5754 Please complete PCI compliance testing
- Closed