]
Steven Hawkins commented on TEIID-3894:
---------------------------------------
It would also be good to add some validation of the parameters (such as protocol) on the
transport start rather than waiting for the initial connection.
Teiid transport ssl attributes should add some default values
-------------------------------------------------------------
Key: TEIID-3894
URL:
https://issues.jboss.org/browse/TEIID-3894
Project: Teiid
Issue Type: Feature Request
Components: Server
Reporter: Kylin Soong
Assignee: Steven Hawkins
Fix For: 9.0, 8.12.5
Execute the following cli
{code}
/subsystem=teiid/transport=jdbc:write-attribute(name=ssl-mode,value=enabled)
/subsystem=teiid/transport=jdbc:write-attribute(name=ssl-authentication-mode,value=1-way)
/subsystem=teiid/transport=jdbc:write-attribute(name=ssl-ssl-protocol,value=TLSv1)
/subsystem=teiid/transport=jdbc:write-attribute(name=ssl-keymanagement-algorithm,value=SunX509)
/subsystem=teiid/transport=jdbc:write-attribute(name=ssl-enabled-cipher-suites,value="SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_RC4_128_SHA")
/subsystem=teiid/transport=jdbc:write-attribute(name=keystore-type,value=JKS)
{code}
no suggested value pop up, some values only allow existed value, so I think add some
default value is necessary.
h3. ssl-mode allowed value
* enabled
* login
* enabled
h3. ssl-authentication-mode allowed value
* 1-way
* 2-way
* anonymous
h3. ssl-ssl-protocol default value
* TLSv1
h3. ssl-keymanagement-algorithm default value
* SunX509
h3. ssl-enabled-cipher-suites default value
* SSL_RSA_WITH_RC4_128_MD5,SSL_RSA_WITH_RC4_128_SHA
h3. keystore-type default value
* JKS