]
Brian Stansberry updated WFLY-1598:
-----------------------------------
Fix Version/s: 16.0.0.CR1
(was: 16.0.0.Beta1)
Out of the box SSL - or shortly after.
--------------------------------------
Key: WFLY-1598
URL:
https://issues.jboss.org/browse/WFLY-1598
Project: WildFly
Issue Type: Sub-task
Components: Management, Security
Reporter: Darran Lofthouse
Assignee: Farah Juma
Priority: Critical
Labels: management_security,, management_sso
Fix For: 16.0.0.CR1
There are various reasons that we do not support SSL/TLS out of the box e.g.
- If we ship a default keystore then everyone has access to the private key.
- Generating one on first boot we do not have sufficient information to generate it
correctly, also the performance overhead.
This issue is to explorer other options to encourage their use and make it easier to
configure.
As an example could the admin console detect a non encrypted connection and have an box
that encourages the config along with a wizard like workflow to get it set up?