[jboss-remoting-issues] [JBoss JIRA] Reopened: (JBREM-902) InvocationRequest need SSLSession for certificates and principal in sslsocket transport

ya xiang (JIRA) jira-events at lists.jboss.org
Sun Jun 22 23:15:37 EDT 2008 

     [ http://jira.jboss.com/jira/browse/JBREM-902?page=all ]

ya xiang reopened JBREM-902:
----------------------------

             
indeed, the handshakelistener style process not fit some case. especial future in NIO transports case.
As I before mentioned, we can search the ssl session id by client address, this function provided by 
http://jira.jboss.com/jira/browse/JBREM-758
But in  Pojo case, maybe you don't want to pass the arguments to implementation, like this:
void doService(ClientAddress, otherBizArguments), BTW, ICE use this style. most equivent to 
void doSevice(RequestPayload, otherBizArguments);
OK, In pojo: we just do it like this:
void doService(BizArguments);
so if need client credientals, we must handle it at invoker class and and find seesionid and then put it to threadlocal.
so I advice, just do it and server thread, put ssl session to threadlocal, and set it defualt as default behaviour, (jbossAS use it too). OK, if someone not need it, just config it like CLIENT_ADDRESS configing.


> InvocationRequest need SSLSession for certificates and principal in sslsocket transport
> ---------------------------------------------------------------------------------------
>
>                 Key: JBREM-902
>                 URL: http://jira.jboss.com/jira/browse/JBREM-902
>             Project: JBoss Remoting
>          Issue Type: Feature Request
>      Security Level: Public(Everyone can see) 
>          Components: security
>            Reporter: ya xiang
>
> In a SSL context, there is a real need for check principal and certificates.
> There are ways to do this, but current jboss remoting not provide it, just provider socket remote address as sessionId. seems not enough.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-remoting-issues mailing list