[WINDUPRULE-303] Webservices "IgnoreHttpsHost CN Check" System Property Change in JBoss EAP 7 - JBoss Issue Tracker

XML

Word

Printable

Details

Type: Feature Request
Status: Resolved (View Workflow)
Priority: Major
Resolution: Done
Affects Version/s: None
Fix Version/s: 4.1.0.Final
Component/s: EAP6 -> EAP7
Labels:
None

Epic Link:
EAP7->71-RULES
Story Points:
3
Git Pull Request:
https://github.com/windup/windup-rulesets/pull/279

Description

From JBoss EAP 7.1 Migration Guide:

"5.1.8. IgnoreHttpsHost CN Check Change
In previous releases, you could disable the HTTPS URL hostname check against a service’s Common Name (CN) given in its certificate by setting the system property org.jboss.security.ignoreHttpsHost to true. This system property name has been replaced with cxf.tls-client.disableCNCheck"

A new RHAMT Rule should be added to address this app migration issue.
When: app sets system property "org.jboss.security.ignoreHttpsHost" to true
Perform: alert the user that in JBoss EAP 7 the property name has changed to cxf.tls-client.disableCNCheck

Gliffy Diagrams

Attachments

Activity

People

Assignee:

Marek Novotny

Reporter:

Eduardo Martins

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

25/Sep/17 1:12 PM

Updated:

03/Oct/17 11:59 AM

Resolved:

03/Oct/17 11:59 AM