Uploaded image for project: 'Thorntail'
  1. Thorntail
  2. THORN-1040

can't enable HTTPS without setting swarm.http.certificate.alias

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 2017.3.3
    • Component/s: None
    • Labels:
      None
    • Sprint:
      2017-Mar-A

      Description

      WildFly Core's FileKeystore.load method is clearly able to use a keystore for which a key alias isn't defined (though not sure what would happen if there are multiple keys). However, Swarm's CertInfo.isValid rejects that situation.

      This means that configuration like this

      swarm:
        http:
          keystore:
            path: /path/to/keystore
            password: password
      

      isn't enough to enable HTTPS, the key alias needs to be specified as well. Which isn't always necessary. IMHO, Swarm is being overly cautious here.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                bob.mcwhirter Bob McWhirter
                Reporter:
                lthon Ladislav Thon
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: